Report - lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=docsend.com/view/ycaz2rzkt87rtaix

Report Overview

Submitted URL
lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=docsend.com/view/ycaz2rzkt87rtaix
IP
104.21.25.86
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-27 23:44:51
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
cfl.dropboxstatic.com	13598	2017-01-30T05:53:29Z	2023-03-29T18:14:21Z	420 B	70 kB	104.16.99.29
js.intercomcdn.com	2440	2020-02-19T12:43:00Z	2023-03-29T11:44:26Z	735 B	146 kB	54.230.111.62
consent.dropbox.com	27413	2021-06-16T17:13:58Z	2023-03-28T19:01:40Z	700 B	1.4 kB	143.204.55.85
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-29T09:11:13Z	1.1 kB	3.0 kB	54.230.80.227
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	52.27.198.70
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T08:59:28Z	340 B	963 B	104.18.32.68
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	343 B	699 B	142.250.74.131
d2qvtfnm75xrxf.cloudfront.net	unknown	2015-07-20T12:03:28Z	2023-03-28T02:32:40Z	3.9 kB	3.2 MB	143.204.42.157
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-29T09:11:41Z	350 B	946 B	54.230.80.227
d.dropbox.com	1300	2012-11-25T21:07:07Z	2023-03-28T18:13:16Z	1.1 kB	1.1 kB	162.125.7.20
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	813 B	1.3 kB	142.250.74.138
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	3.0 kB	8.0 kB	23.36.76.226
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	55 kB	34.120.237.76
www.dropbox.com	1994	2012-05-21T22:31:28Z	2023-03-29T18:12:32Z	4.1 kB	24 kB	162.125.71.18
widget.intercom.io	2417	2020-07-20T14:16:46Z	2023-03-29T14:38:39Z	365 B	4.0 kB	54.230.111.95
nexus-websocket-a.intercom.io	2137	2015-06-26T12:17:57Z	2023-03-29T12:41:51Z	729 B	281 B	35.174.127.31
api-iam.intercom.io	2892	2018-08-02T22:07:54Z	2023-03-29T11:44:27Z	465 B	974 B	54.197.128.240
lc1.shwtrk.com	unknown	2022-06-12T11:51:06Z	2023-03-28T01:44:25Z	942 B	104 kB	172.67.133.228
docsend.com	58938	2014-04-04T12:48:39Z	2023-03-28T20:23:08Z	5.5 kB	32 kB	52.20.78.240
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	341 B	739 B	192.229.221.95
d5doxliz2zm8u.cloudfront.net	unknown	2021-11-04T18:17:10Z	2023-03-28T02:32:41Z	2.3 kB	192 kB	54.230.245.25
c.evidon.com	1097	2017-03-09T22:38:50Z	2023-03-29T07:15:31Z	2.3 kB	75 kB	23.32.100.208
l.evidon.com	8143	2020-08-25T21:57:20Z	2023-03-29T07:15:31Z	960 B	382 B	52.72.138.232

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-27 23:44:59	high	162.125.71.18	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use
2023-03-27 23:45:01	high	162.125.7.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	c.evidon.com/sitenotice/3401/translations/en.js	43 kB	2023-03-14	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/translations/en.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:08:30 Last Seen2023-04-02 21:30:47 Times Seen66 Hash 657b6bb22752382cbdc4208cce7687cb b5eca88f80bab534624fbdd43c59522d25ea75bf 85856b6da83b941b434643e4558d1edc658cb46c69063c6aa770c7289ab4fa9b Loading...

	c.evidon.com/sitenotice/3401/snthemes.js	125 kB	2023-03-07	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/snthemes.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2023-04-02 21:30:48 Times Seen64 Hash 0e8f664fca39681028b4b07b5be34f2d 7298f430eb83f9116df80423cf956d09d0e6f8c4 4f71436a97288b116c8b61d62030fa6549acb42827ca7f7aeaacab78132190a8 Loading...

	c.evidon.com/sitenotice/evidon-banner.js	13 kB	2023-03-26	2023-12-08
Pretty URL c.evidon.com/sitenotice/evidon-banner.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:04:13 Last Seen2023-12-08 21:03:18 Times Seen594 Hash cdaadb12aae95d97f7b22c7a6963eb3e 0dfaba61a790a36957947d763338e78918c4580f 1f1571e1cd601781ae374246e53ea47fd86b33a760620a8dbc9391247cca651d Loading...

	docsend.com/view/ycaz2rzkt87rtaix	4.2 kB	2023-03-29	2023-03-29
Pretty URL docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:27:27 Times Seen1 Hash cb7bbdccfefcfd45024494047fa87a93 aa47d8c9750d40d39c305f6fe83fc2dab8ebc23f a570eee230c052204e22e8ff4f622f86c87c3313e15c161360a58ccaca8bd66e Loading...

	widget.intercom.io/widget/lv6lji7h	8.5 kB	2023-03-29	2023-03-29
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.95 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:24:49 Last Seen2023-03-29 23:30:19 Times Seen4 Hash ffefa97371d6727fe3af719cd53514eb d64433d03ae0c6c2749c18bcbb5a18b957e3bdc1 40b2408c259e4d67c7eb718293b19e116f04c7bf2d0d15ca3f5eb479c978f9f9 Loading...

	www.dropbox.com/pithos/privacy_consent_service	13 kB	2023-03-29	2023-03-29
Pretty URL www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:27:27 Times Seen1 Hash 097b7faecc93faa3cf118676bca6b512 e97b5f5fad0253a4a73cd8cf9ff033369772cdad 31131fa095c0f0dcb77f74025a1089ee18349bf11c6fd99f688a170881b2e170 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflD0Yw0F.js	120 kB	2023-03-29	2023-03-29
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflD0Yw0F.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:56:33 Times Seen8 Hash 0f4630d050c0e86089770b2a8e71c466 0c71c781c17a6367d1957f1a57575f521dbf5062 80c6c8cf2327acfb9bb57245988d71dd4c9ed0f2a2f2291d8074d18bdff1e580 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vfluIIH5J.js	231 kB	2023-03-29	2023-03-29
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vfluIIH5J.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:56:33 Times Seen7 Hash b88207e49b4dd4ad957a43c4a5acfb16 43a1cedc7c4f2518ce6e57af6cf5fa95642b3a33 61955f3a536c0ea0334e997b505eb8ae549746b32a8ded0a508cde04a3f1952c Loading...

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&should_use_floating_button=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	569 B	2023-03-07	2023-04-05
Pretty URL consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&should_use_floating_button=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.85 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-04-05 02:11:39 Times Seen83 Hash 61b81b2411a67a89aad55835c4e864f2 623c4e487131583d402815eb75cfced9b694017d 929203495e37db6972ddc172e9664002093c6bb973da2ca7a5001c26d680d2de Loading...

	docsend.com/view/ycaz2rzkt87rtaix	31 B	2023-03-07	2024-05-01
Pretty URL docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-05-01 12:27:45 Times Seen470 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	76 kB	2023-03-26	2023-06-20
Pretty URL c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 14:04:13 Last Seen2023-06-20 03:04:09 Times Seen218 Hash c3ee938bd3d9d03945abc0972e4a1c06 e1d339cc254c3ed06c4ba3e3c90b6720e9e23824 53336aa630db1e3624ea59594157016c2999c600cc847c90defa1c8560d08b41 Loading...

	c.evidon.com/sitenotice/3401/dropbox/settings.js	5.7 kB	2023-03-14	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/dropbox/settings.js IP 23.32.100.208 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:08:30 Last Seen2023-04-02 21:30:46 Times Seen66 Hash dcb013ce5f00abe84675f6343f644539 eaf1302710b93f286a640d04e80d04d67cee8a02 a15aeb744bf1016099ba1d237c3b6940b184ce7de278b87d8caa7e55226a2dd2 Loading...

	unknown	0 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 05:55:52 Times Seen37354454 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	docsend.com/view/ycaz2rzkt87rtaix	777 B	2023-03-07	2024-05-01
Pretty URL docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-05-01 12:27:45 Times Seen489 Hash eed47e70bb30c26af1d2b05cb6cbb36e a6280e737500da85f94d5dd1b4bcf53e8ab7ebb6 33f828b1c1cc8d01a5365dda26f42257988e5ab755e9d1c9c06c8b650564b612 Loading...

	docsend.com/view/ycaz2rzkt87rtaix	303 B	2023-03-13	2023-05-22
Pretty URL docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 20:16:17 Last Seen2023-05-22 21:46:59 Times Seen88 Hash c4ba3ed09b1b5daa4f5669df1358fa6f ed09f1f1c6d2f8786e864ef84805732132ada42f 45b6408e534ecfd1ba65fa3d47b9de7614090e311914216653a59f305e94ffce Loading...

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f.js	105 kB	2023-03-29	2023-04-01
Pretty URL d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f.js IP 143.204.42.157 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-04-01 11:06:54 Times Seen7 Hash 7a7061c0a6b661b227dc082dbf79d5f7 7c079f627e9f7fb97a4930178c82d01efe43011b bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f Loading...

	docsend.com/view/ycaz2rzkt87rtaix	623 B	2023-03-29	2023-03-29
Pretty URL docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:27:27 Times Seen1 Hash d621025df336400303fa3cfe57d260fd 48c5294a0ec708d04ac8970b31b5ab8222a227fe 85e70fbb7d4f7acc149fc1f7fd7ea3e8a93c0523542288252cb7724c48623831 Loading...

	www.dropbox.com/pithos/privacy_consent	9.2 kB	2023-03-29	2023-03-29
Pretty URL www.dropbox.com/pithos/privacy_consent IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:27:27 Last Seen2023-03-29 23:39:24 Times Seen2 Hash 99eca6cdb09ac89ce0cf9d161e33048c 955c9cc3a4cee5cfac5381f23b678343629c2f9c e80f17189a1925fb42d5c30f9ec49c9ef2c9e97315b7c12006a9b2ab057afd0a Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-05-04 22:47:36 Times Seen14481 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (74)

	URL	IP	Response	Size
	lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix	172.67.133.228	301 Moved Permanently	0 B
URL HTTP/1.1 lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix IP 172.67.133.228:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix HTTP/1.1 Host: lc1.shwtrk.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Mon, 27 Mar 2023 23:44:38 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Tue, 28 Mar 2023 00:44:38 GMT Location: https://lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zCFl1rcjwO1lSzuBa43Z6YfjCp91%2BrEcAhhLHvtQp%2F%2FDvm5XJ3%2B85CfkpFUAfKqkdQ1u559xQoR0GZvvJlN4GMhIOKHIRlu9MMKJzKKSa3UCqTx2hljmKYGHvb1KO1M3Xg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7aeb80a22d99069b-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 911d74784325663a0d95b463b0e9ae9b 21e999229be584d8e42696bce71236ad5bcb9a25 f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7638 Expires: Tue, 28 Mar 2023 01:51:56 GMT Date: Mon, 27 Mar 2023 23:44:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12614 Expires: Tue, 28 Mar 2023 03:14:52 GMT Date: Mon, 27 Mar 2023 23:44:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5ad3eec59bebbf969f175627757507c1 b176af3a70db378c9e1f219bab24d9d446070d6f 704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2232 Expires: Tue, 28 Mar 2023 00:21:50 GMT Date: Mon, 27 Mar 2023 23:44:38 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 27 Mar 2023 23:15:46 GMT content-type: application/json age: 1732 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: dH6cN4nzieYSKJFdl/yHNryoSS6q+nZr62tU9SNjnjhlXoZySHtbc+4ypREwdxXlZ6EX0Z6Bj2JLTIbA0W5Zpw== x-amz-request-id: K7K024HNB0Z8YZ8Q x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 27 Mar 2023 22:55:58 GMT age: 2920 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 27 Mar 2023 23:44:39 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 27 Mar 2023 23:14:35 GMT age: 1804 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 76a0aba3ddb470751c690f5a725159f2 8cb789e8e0dfa336270700ef1e607173f2aee6cd e76de476654125a06994065d66e30c6fb6c354d0f67fd4e31a3f78679e2bfdcb HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E76DE476654125A06994065D66E30C6FB6C354D0F67FD4E31A3F78679E2BFDCB" Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6073 Expires: Tue, 28 Mar 2023 01:25:52 GMT Date: Mon, 27 Mar 2023 23:44:39 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.27.198.70	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.27.198.70:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: gUtU+QXggkprZ/XbTlK/uA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: tZ1lahOiujeCdRaP3/EwayC2Qmw=`

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash f74042eeb283cbef59978e7cd0962443 cc3e304f344b7f441308fb01008a3646ff2a99db 9ce78bcee1c6b679dce299435dd441f7153f1256966a1580f52396816e54ccc0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 27 Mar 2023 23:44:40 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Fri, 24 Mar 2023 15:57:50 GMT Expires: Fri, 31 Mar 2023 15:57:49 GMT Etag: "cc3e304f344b7f441308fb01008a3646ff2a99db" Cache-Control: max-age=316988,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7aeb80a9d99cb4fa-OSL`

	docsend.com/view/ycaz2rzkt87rtaix	52.20.78.240	200 OK	8.9 kB
URL HTTP/1.1 docsend.com/view/ycaz2rzkt87rtaix IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4213) Size 8.9 kB (8914 bytes) Hash 5c4e7eae5e100609e20083b7fa43c480 6fa9d48ac6b0be5ca74ceca8eaccd1a8c8e735ae 3cf38f8f96a33f5198172d2cc5031d07c910d085db503e66d32804765d4ee8b3 HTTP Headers `GET /view/ycaz2rzkt87rtaix HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:40 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"5bbe187efe47bc9fa94941a85a54b473" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-Dyi+jCcbDVPV9zdfwc0beQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; domain=.docsend.com; path=/; expires=Wed, 27 Mar 2024 23:44:40 GMT; SameSite=None; secure _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Fri, 27 Mar 2043 23:44:40 GMT; SameSite=None; secure _dss_=87751b607ba84d808e39681be000cd77; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None X-Request-Id: 01315d5a-006f-469d-a534-7fee93c2a900 X-Runtime: 0.110962 Vary: Accept-Encoding, Origin Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 23:44:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css	143.204.42.157	200 OK	948 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type exported SGML document, ASCII text Size 948 B (948 bytes) Hash a7ace942f4f580ee5902c36fed888af9 ca1c01b03c6763b0f458af9eea82b8f00b430141 514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0 HTTP Headers `GET /assets/ie_specific_hacks_v2.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 24 Mar 2023 23:14:58 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) Content-Encoding: br Date: Mon, 27 Mar 2023 06:02:42 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 4AetBTVI33-NZO5EHttO8CBQcS4Ih_FnwTtW5UUFY2N3bEMhldDsdQ== Age: 63895

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-9cc15b7adc2c9918f17433d70bfc637fb68e48dfd0e3d6c8171dff8166ec80e5.css	143.204.42.157	200 OK	24 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-9cc15b7adc2c9918f17433d70bfc637fb68e48dfd0e3d6c8171dff8166ec80e5.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 24 kB (23807 bytes) Hash 16187d128fc5c0bc620e8e3e8d640159 4321a2ad005b73d748fbcfce6a03ecc240f5dfd3 631ae99aa638c46941c00afb62482ab23da6090da3d7c4d889ee3ddb30109eac HTTP Headers `GET /assets/javascripts/presentation-9cc15b7adc2c9918f17433d70bfc637fb68e48dfd0e3d6c8171dff8166ec80e5.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 24 Mar 2023 19:03:20 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront) Content-Encoding: br Date: Mon, 27 Mar 2023 19:37:23 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: _PRVCdSrfu7gpef8bKhCTVDH1y7_7Me4XhoLPAnpY-VL9kUZ1RQ4LA== Age: 81431

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f.js	143.204.42.157	200 OK	24 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 24 kB (24542 bytes) Hash 80db96e816b57dfe620a6c80ffdb0d16 4d09a708345d6f3d0e4fd0e44f3f129296b4e9e6 6280b715052d4de7b3342d7590bffefaab2cdf3ce5623b6ce586f8513fd8b2c5 HTTP Headers `GET /assets/javascripts/langpacks/en-bbdae07a9e8a05b30a7acca520e5ef8302bbb53bb1c5eab9ed874e7e6f802f3f.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 20:17:24 GMT Last-Modified: Mon, 27 Mar 2023 20:02:07 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ZslI46H7ULJ2QPXSrdU_65KWhlbxel5K04uPAxzauy3NMKSpsbA2aQ== Age: 12436

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-ab2ed322c657ccdc59f25daa24728210c8ff8035d738bcfd7d8b50e613adb193.js	143.204.42.157	200 OK	2.2 MB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-ab2ed322c657ccdc59f25daa24728210c8ff8035d738bcfd7d8b50e613adb193.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (15729) Size 2.2 MB (2153173 bytes) Hash 925626d13c0450bd963424a1471feb21 b22748195dcb6c96999dfee58122bc761b5f6780 32246b2a1e130acf89c8bac0b69440b93c490dd66a295327b247038db42242e6 HTTP Headers `GET /assets/javascripts/presentation-ab2ed322c657ccdc59f25daa24728210c8ff8035d738bcfd7d8b50e613adb193.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 19:27:42 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Mon, 27 Mar 2023 19:06:02 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 5YfNAR3FWq5TevXSp2L0RC8R5sJI3MfEMKB8Rn0Wpzhq9iNJVAltEA== Age: 15417

	lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix	172.67.133.228	307 Temporary Redirect	102 kB
URL HTTP/2 lc1.shwtrk.com/r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix IP 172.67.133.228:0 ASN #13335 CLOUDFLARENET File type gzip compressed data, from Unix\012- data Size 102 kB (102453 bytes) Hash b170f6030deb7a7310c363602bf2333f b5ae5943af6e8c8291f8a475c7d8c1bf3faa13a6 5de7560bfe63946fdfba29b19dbe554cd0f1b3e50d8a7a766e89176afe23a439 HTTP Headers GET /r/c/7vrr6cvkaNIRrXxbgsX9VrjtoYQo?r=https://docsend.com/view/ycaz2rzkt87rtaix HTTP/1.1 Host: lc1.shwtrk.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 307 Temporary Redirect date: Mon, 27 Mar 2023 23:44:39 GMT content-type: text/html; charset=UTF-8 location: https://docsend.com/view/ycaz2rzkt87rtaix cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZJGYdadqlVPU0oT2jrq7VZfJaFHX7hLXe6pCWzSdlL1k%2BO7%2Bx93hb4UEGnh05rkPqo%2F5%2Btkoylk0dyk8BPYF6QgnVa86HlGlmobKYsXEaI1RN%2FFQ9HoT69Z03K9oREEaA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7aeb80a3a96c0b45-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b00218000c35a265af5ea708008d41b7 fd2c2a52791115094f5e03d7a7924cd5016145b2 ccbf764537f16ef44619c973ca57d1c3df71415e510dcbd16503475c0d946780 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2505 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 27 Mar 2023 23:44:40 GMT Last-Modified: Mon, 27 Mar 2023 23:02:55 GMT Server: ECAcc (ska/F756) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13863 Expires: Tue, 28 Mar 2023 03:35:44 GMT Date: Mon, 27 Mar 2023 23:44:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13863 Expires: Tue, 28 Mar 2023 03:35:44 GMT Date: Mon, 27 Mar 2023 23:44:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13863 Expires: Tue, 28 Mar 2023 03:35:44 GMT Date: Mon, 27 Mar 2023 23:44:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13863 Expires: Tue, 28 Mar 2023 03:35:44 GMT Date: Mon, 27 Mar 2023 23:44:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13863 Expires: Tue, 28 Mar 2023 03:35:44 GMT Date: Mon, 27 Mar 2023 23:44:41 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9859 bytes) Hash da174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9859 x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRP5DG2BoAMFrdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:50:10 GMT age: 6871 etag: "c38827a9ac1218768839877263e1f2984fbdc454" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6970 bytes) Hash e5d955ec5d3a9f655e4ca0523acfd039 e8b2cd28a02a2cee1b4e57c57570f2598721ff57 e7753ef91d6f04dce00f83cb1ba3ea4f1abb52140993fbee375e506597cee529 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6970 x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdn3zGn7oAMFwNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ== via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 23:12:05 GMT age: 1956 etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10744 bytes) Hash ada29e049501b12a35b0bcc5f68e3e57 5c1ba9bffbcc9007e7f119dbb3197db34a12f8da b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10744 x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbogF0poAMFTAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA== via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:48:21 GMT age: 6980 etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5578 bytes) Hash e7f11a7b2bcf82694495805df139feed 45e59e98fb4aeb3ca44c15e3e3bb77466cffe5e6 96ba810197f578fb975bd853acbe948c8e984a7b94d172305d411d4381cf80ea HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36e95c63-932a-495b-b82b-9c578f43ec5a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5578 x-amzn-requestid: 7e76212a-4621-45ca-9212-da6957f4861f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdb5bGSiIAMFtoA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220d08-507bf48c3eeba38b719de318;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:39:20 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: Zy7ItZQS-88zGHgnpCOzsRh6BL36AzV2MM-zUB5nCcLnaqgbJh8NxA== via: 1.1 ee32c7a76e2727d565413cc6c352ef48.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:14:11 GMT age: 5430 etag: "45e59e98fb4aeb3ca44c15e3e3bb77466cffe5e6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49097af8-e74d-4670-ac44-90496d512c5f.webp	34.120.237.76	200 OK	9.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49097af8-e74d-4670-ac44-90496d512c5f.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.6 kB (9602 bytes) Hash e0c2feef2fb3d173ebedd7e98d641f2b 7026836a4649636db957f1efbe4a86037e87f495 02a3320fdf25623ae30527abceea87b67f3adc806f944e6e3bed8c9a550ca579 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49097af8-e74d-4670-ac44-90496d512c5f.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9602 x-amzn-requestid: e9e0a9d7-db69-4d20-98bf-89e13a727bb7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbogERYIAMFS9A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-4978bf5809ecc0ac11b5c891;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 6KCCfStmt8lePLmuMuNkY0hX5ZgGL9GUVoXlfFxGrm1eHW3F6MHPHw== via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:48:36 GMT age: 6965 etag: "7026836a4649636db957f1efbe4a86037e87f495" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b52cdb6-fba9-4cd0-86e0-0d86c6c552fe.jpeg	34.120.237.76	200 OK	5.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b52cdb6-fba9-4cd0-86e0-0d86c6c552fe.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.8 kB (5753 bytes) Hash 4dd00d7589433a33096cb824062c9b58 818ffa87758531c2951e5aa7f8a38bb42422027e a4e60c0761223cabbe504ed42301b31562603b4aa3fd57449b06668cb74f5645 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b52cdb6-fba9-4cd0-86e0-0d86c6c552fe.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5753 x-amzn-requestid: 50e6db48-a3db-4370-be33-fe0167564b9d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbofEWhoAMFQkw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-3245359e633022301b959458;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: zu3XEBObpyM8hpYDfqk8-CexBVYxyiJofRNJp1jSd4zBJwbGjFtyIQ== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:48:31 GMT age: 6970 etag: "818ffa87758531c2951e5aa7f8a38bb42422027e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2	54.230.245.25	200 OK	46 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers GET /assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) Date: Mon, 27 Mar 2023 07:42:57 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: gRxVfDA14U8VXIlup8te4B6L-8hkJcfJzqeJ0FQoaKKD6FI16CQlNA== Age: 57704

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vfluIIH5J.js	104.16.99.29	200 OK	69 kB
URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vfluIIH5J.js IP 104.16.99.29:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (36426), with LF, NEL line terminators Size 69 kB (69365 bytes) Hash 46b96b792548205639e4da7b3a8e6466 4362f6d7e8f79d56f4ac1723548bc838cbe1b3e1 68f23fe0ddc2729daef073f860937ef5c8b466181d65da41fc8c6f6f5104704d HTTP Headers `GET /static/metaserver/static/pithos/privacy_consent.bundle-vfluIIH5J.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 23:44:41 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Sat, 25 Mar 2023 00:33:39 GMT x-dropbox-request-id: ba42e6453ff4f37eae39af376ec46c46 x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 27387 server: cloudflare cf-ray: 7aeb80b15814b524-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif	143.204.42.157	200 OK	49 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 144 x 144\012- data Size 49 kB (48903 bytes) Hash ceb150ad0df5017df3c4f3599cd61779 e61e9bbd8a97d9b544b131e0340e371b9f9bf2d8 216a694fc417dce27076f118e45ca73ead42a1be5004a8550eeca3e99af3ea02 HTTP Headers `GET /public/loading_images/large-loader.gif HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/gif Content-Length: 48903 Connection: keep-alive Last-Modified: Mon, 23 May 2016 23:39:27 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 27 Mar 2023 04:18:55 GMT ETag: "ceb150ad0df5017df3c4f3599cd61779" X-Cache: Hit from cloudfront Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pyQfubzITxOzRWoduwkmcI_HXjJqIj2uFX3z_5rNq5_qWX-t3c0oHg== Age: 71077`

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2	54.230.245.25	200 OK	43 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data Size 43 kB (43308 bytes) Hash 93b6f18ec99bcb7c3fa7ea570a75e240 60b9e3062fe532cbc18b897fac542c56a03544c7 43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db HTTP Headers GET /assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 43308 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) Date: Mon, 27 Mar 2023 07:12:40 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: em02-ic3C8NThDKhAGdklR5AJQOj7uxA3Puyyf1DGzecS3sJ5p7wGw== Age: 59521

	docsend.com/favicon-196x196.png	52.20.78.240	200 OK	4.1 kB
URL HTTP/1.1 docsend.com/favicon-196x196.png IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:41 GMT Content-Type: image/png Content-Length: 4131 Last-Modified: Mon, 27 Mar 2023 20:17:52 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur`

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	3.6 kB
URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type data Size 3.6 kB (3595 bytes) Hash 2372c419483de7a443744b4e2325ca06 5a6bc72833ac5c380288458290537e032ddc7893 65b885c0cb6526633be261e7869d8ed935687753c53e505073f366aba7a22562 HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: gvc=MTY2OTY2OTIzNDQ3NzA0NjE4MTk2MzIxOTM4NDUxNjE4MTIyNzAz; t=xxnGogzILgLpHP9DWX1JU00x; __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-NNhym6WWbi85LAjQnr7d' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-NNhym6WWbi85LAjQnr7d' 'nonce-nvyTZAotvcl0dIMynbEX' referrer-policy: strict-origin-when-cross-origin set-cookie: t=xxnGogzILgLpHP9DWX1JU00x; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; expires=Thu, 26 Mar 2026 23:44:41 GMT; Path=/; SameSite=None; Secure __Host-ss=ObhsnElp98; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChAMFmIUMtyu+a+c7DRHUvMjEOnUiKEGGi5BR0hRZEY5NVAzUXlIcmM4aEJNRmc1Z3kxV19iMlF3SnZDOVY3TFpEN2x3VFln; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 15 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Mon, 27 Mar 2023 23:44:40 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: c5f587c4f9a546d39a8f8a89fa1e25e1 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3994 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-WT16uhderG8V4b36KYDC' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-WT16uhderG8V4b36KYDC' 'nonce-MgG88q8NaukoA9zA1sFI' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=OTYwNzI5NTM0MTM3ODYyODQ1NTgyMjA4OTYyMTE0NjUxNjE3NzA%3D; expires=Sat, 25 Mar 2028 23:44:41 GMT; HttpOnly; Path=/; SameSite=None; Secure t=fsOUvJ3nlBUGLC1xN57iYm4D; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=fsOUvJ3nlBUGLC1xN57iYm4D; expires=Thu, 26 Mar 2026 23:44:41 GMT; Path=/; SameSite=None; Secure __Host-ss=_nzlRPckH4; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 25 Mar 2028 23:44:41 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 27 Mar 2023 23:44:41 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 9038594ebf75435a88219c6db12eca9a X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3962 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-uEJCigmp0fFCZ+YNZQGi' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-uEJCigmp0fFCZ+YNZQGi' 'nonce-SAxGrHoMZr6VhcgjFBN+' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTgxMDUzNjgzNTY0MTQ0MjM1MTU5MDM1MDU0NTkyNDM4OTU1NzI%3D; expires=Sat, 25 Mar 2028 23:44:41 GMT; HttpOnly; Path=/; SameSite=None; Secure t=6GFELLNdsJkzVvpAw3zIDPVB; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=6GFELLNdsJkzVvpAw3zIDPVB; expires=Thu, 26 Mar 2026 23:44:41 GMT; Path=/; SameSite=None; Secure __Host-ss=bZ34NduyMM; expires=Thu, 26 Mar 2026 23:44:41 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 25 Mar 2028 23:44:41 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 27 Mar 2023 23:44:41 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: b24e4268d77d45fcbeab037b8712e2d6 X-Firefox-Spdy: h2

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2	54.230.245.25	200 OK	45 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 45008, version 1.66\012- data Size 45 kB (45008 bytes) Hash 38846f0a3b6bb0b9d1b4f21b61e57c54 8893fa19d5550ae165dcdee85935d67677e5888d 39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff HTTP Headers GET /assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 45008 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) Date: Mon, 27 Mar 2023 05:50:57 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 5F9S8LBIjRQedPj_tYXer1AikL835sX9Ym7fe56Vn41ZSx1RJeXQQQ== Age: 64425

	d5doxliz2zm8u.cloudfront.net/assets/SharpGroteskDBCyrBook20-UVUPP24D-00f90db31f42975fcdc5fa1f70660568be68792ec11be2aac36362f435a6e555.woff2	54.230.245.25	200 OK	55 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/SharpGroteskDBCyrBook20-UVUPP24D-00f90db31f42975fcdc5fa1f70660568be68792ec11be2aac36362f435a6e555.woff2 IP 54.230.245.25:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 54666, version 1.0\012- data Size 55 kB (54666 bytes) Hash ebee194a9b773f166dc16096f8614aaa 9d6a893af295c90e9e9792d7e54a80034192255b 00f90db31f42975fcdc5fa1f70660568be68792ec11be2aac36362f435a6e555 HTTP Headers GET /assets/SharpGroteskDBCyrBook20-UVUPP24D-00f90db31f42975fcdc5fa1f70660568be68792ec11be2aac36362f435a6e555.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 54666 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) Date: Mon, 27 Mar 2023 06:35:56 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: NYQ59qaml5xmyJW89pWUFtsNk-65HPqsn0BFg5UD5B9CRUC6_9RXfg== Age: 61725

	docsend.com/metrics/events	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------208518440021385468902817855343 Content-Length: 1088 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:42 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-4LjEJHSogFdpYEOyz6Msww=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 38b9030a-4256-4479-b007-0872d67931f8 X-Runtime: 0.013554 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur

	widget.intercom.io/widget/lv6lji7h	54.230.111.95	200 OK	3.3 kB
URL HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8520), with no line terminators Size 3.3 kB (3267 bytes) Hash 1e32e22382c77ba5199017a82305b6e8 04dabc82f594a9f666b447d6986ec420a25dddba ad2f8ab087196db989f681e77ee3a3c92fdeec3c0d3c8938630c32482ef9419a HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 3267 last-modified: Mon, 27 Mar 2023 17:17:10 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: xG975hjHgR8cRJB.5ounICE2ckkhqri. accept-ranges: bytes server: AmazonS3 date: Mon, 27 Mar 2023 23:37:28 GMT cache-control: max-age=900, s-maxage=900, public etag: "1e32e22382c77ba5199017a82305b6e8" x-cache: Error from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: lCHvfFC3tnYVoYtu6Vd-Sx07nV6jdv09Vx0JwuilMbBrBp6527E3Rw== age: 444 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	docsend.com/metrics/properties	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/properties IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: Y9xpYAWekl4zArrKP9OHP+ZlOWspdXdY7z8iIaIIndK5L6XCYcAfHOJ16RIsruEhn7B4i4IYgOxbwV0pmca78g== X-Requested-With: XMLHttpRequest Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:42 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-1Ts/dM0VsBxtatvwvKNw9w=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 01c7556a-07e4-48cf-8b48-10456e17608c X-Runtime: 0.012431 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur

	js.intercomcdn.com/frame.550c80f8.js	54.230.111.62	200 OK	145 kB
URL HTTP/2 js.intercomcdn.com/frame.550c80f8.js IP 54.230.111.62:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 145 kB (144841 bytes) Hash 463b84daf1aff8c1be965040046c45d2 6288f75ecc06e1907ce222a6ae854c357967fa36 384edc08b2e840455db8b09478fc185b50e7b24e3c7e9f732cf8a6430cda9045 HTTP Headers `GET /frame.550c80f8.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 144841 last-modified: Mon, 27 Mar 2023 17:14:58 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: CYMJzlBV0tFd5VN9WXfjWHzHzg0pgP9u accept-ranges: bytes server: AmazonS3 date: Mon, 27 Mar 2023 21:54:14 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "463b84daf1aff8c1be965040046c45d2" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: Ly5Y4d5BRe--K73POJCgJTx8EHigjwg5aHnw8umCZZi64otNhFdLFQ== age: 6629 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&should_use_floating_button=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	143.204.55.85	200 OK	854 B
URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&should_use_floating_button=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.85:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 854 B (854 bytes) Hash dc63fb23d6563676b3090bae3f02ccde dd6c4202705f760dd5744caee7ccb31f703fc880 c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&should_use_floating_button=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: t=xxnGogzILgLpHP9DWX1JU00x; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/html content-length: 854 last-modified: Tue, 06 Sep 2022 19:00:36 GMT x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ server: AmazonS3 date: Mon, 27 Mar 2023 16:19:11 GMT etag: "dc63fb23d6563676b3090bae3f02ccde" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 9GBwnihCVwNOw7X5ezf0ZjtMddnEj4f4OzXzzdkAqN5iSn7yU-T4GA== age: 27250 X-Firefox-Spdy: h2`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 8f3526088438daab6ca810e3d9ff2afc f5db2f4a1a242c21117dd4b655f7806418cd0626 2948025f53c2f86bb6926493761142b523957b7e3d2c02a28b64d161092581f0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=108954 Date: Mon, 27 Mar 2023 23:44:42 GMT Etag: "6421248c-1d7" Expires: Wed, 29 Mar 2023 06:00:36 GMT Last-Modified: Mon, 27 Mar 2023 05:07:24 GMT Server: ECAcc (bsa/EB26) X-Cache: Miss from cloudfront Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ZeQ6XpLDEXHJbq_wRpG7CO0nQ5fho4N2tVLo9_wYWMgkaRZwzSy3vg== Age: 3192

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash ee8d07793e7002c9a3ffe258361f91dd f95f0942b65412b66d9d5c0b2b91fb6637d234a2 b625e87a334903638742ee05aaac892eca0cd95dc0f29de3510a57338623eaf9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 27 Mar 2023 23:44:42 GMT Last-Modified: Mon, 27 Mar 2023 22:38:40 GMT Server: ECAcc (nya/7946) X-Cache: Miss from cloudfront Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 0QXtsmKTKUfWqLTreDsprl48Zm1CvBa69TmZm2GVw7iHTSWOON0fHQ== Age: 3962`

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	200 OK	0 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Mon, 27 Mar 2023 23:44:42 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 548fd8f0681645a38d3b4d36367530a8 X-Firefox-Spdy: h2`

	docsend.com/metrics/events	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------58027407741481560681168933466 Content-Length: 788 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:42 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-HdDkFRWq1xRttJBqkvHVVA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: e96e2d67-3774-4334-b754-eb65920d642f X-Runtime: 0.020017 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur

	docsend.com/view/ycaz2rzkt87rtaix/page_data/1?nda=true&viewLoadTime=1679960680&timezoneOffset=0	52.20.78.240	200 OK	711 B
URL HTTP/1.1 docsend.com/view/ycaz2rzkt87rtaix/page_data/1?nda=true&viewLoadTime=1679960680&timezoneOffset=0 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 711 B (711 bytes) Hash c1def6e5beee6547063f09d79cea5c0d 717ef1bfe7a14d814800257a82580224b50178aa 14fb2dfb803a707e0af3f4db686c14f185599dbe111e449f31f18787a76b7421 HTTP Headers GET /view/ycaz2rzkt87rtaix/page_data/1?nda=true&viewLoadTime=1679960680&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: Y9xpYAWekl4zArrKP9OHP+ZlOWspdXdY7z8iIaIIndK5L6XCYcAfHOJ16RIsruEhn7B4i4IYgOxbwV0pmca78g== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=UYmmE8R9jI2g9KNsK33aCGJFB6qdWUzEwzSgpkeEgccI81ZtZFwowuwF1L4fnJQZJVBnyLnJ1cSKsWmQknW3JuaYKkVuRGacV%2BjkaNg%3D--x8OLGeJcMlW%2BAwTx--AKddVlS8DfUuJqkBckwnuA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:42 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"5cb60ca7c07de9329cc9db560d4d964b" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-YNGyHBJx6w9PNoegy4LO1g=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=6KanHFkkD5wrWJuiAHKIpMPV2d1kBB3xbH3HI0hNxJEXjdo6IrFJ%2F8CtJDVxOdM%2Bs6HNMl3T7wIROa3jxDiufEtDqxLwJwg%2B3ok29Io%3D--LAEQfqR9P2%2BQ2u5l--kbheoPq50vRdVEfQuPuoUg%3D%3D; domain=.docsend.com; path=/; expires=Wed, 27 Mar 2024 23:44:42 GMT; SameSite=None; secure X-Request-Id: f7a03425-cf20-4403-b780-a8e06396f612 X-Runtime: 0.052439 Vary: Accept-Encoding, Origin Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F1?Expires=1679960742&Signature=WCyrHApy6hjK4YDZw64~Dzu-7aBqDTMAHNW9MJZhP25rpEaYCszETUhQQe-QSLm5mc1hMWkvg7bqN331r78iEhqIm-Yt-MmjZDgAlUsbu-2nHVguHdFZ2eP0EWxDfmp~COMPkVQYLgMKCYcBZQP724cgmd0-Bbh80JphbufDIKMZDANQZiWc---6lmAR5XcCo3Xnmwj2U2Vw7OyMmNPNQoKjonX-2udBV5~neDsbhdBlhVqefhfKw~KNXHK6WgKefJfbDtjrhPuYorH2f~Eh2WGichs5Wl827dLs-fIMzc51ewnDoyQuY6ZbpvNTLBVOp3s0edrkM1pP1WZjjUF3Yg__&Key-Pair-Id=K3IVFO0KFGPSF4	143.204.42.157	200 OK	680 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F1?Expires=1679960742&Signature=WCyrHApy6hjK4YDZw64~Dzu-7aBqDTMAHNW9MJZhP25rpEaYCszETUhQQe-QSLm5mc1hMWkvg7bqN331r78iEhqIm-Yt-MmjZDgAlUsbu-2nHVguHdFZ2eP0EWxDfmp~COMPkVQYLgMKCYcBZQP724cgmd0-Bbh80JphbufDIKMZDANQZiWc---6lmAR5XcCo3Xnmwj2U2Vw7OyMmNPNQoKjonX-2udBV5~neDsbhdBlhVqefhfKw~KNXHK6WgKefJfbDtjrhPuYorH2f~Eh2WGichs5Wl827dLs-fIMzc51ewnDoyQuY6ZbpvNTLBVOp3s0edrkM1pP1WZjjUF3Yg__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type PNG image data, 1865 x 2635, 8-bit/color RGBA, non-interlaced\012- data Size 680 kB (680313 bytes) Hash b92ab0f914613dedb53d087b1817bcba 204682637a3fb947607267cdc8ac71a056552984 09e6c74fc211d05fb66d0b994484222bf578ea01a5399e4816dd0b282bf61a3a HTTP Headers GET /docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F1?Expires=1679960742&Signature=WCyrHApy6hjK4YDZw64~Dzu-7aBqDTMAHNW9MJZhP25rpEaYCszETUhQQe-QSLm5mc1hMWkvg7bqN331r78iEhqIm-Yt-MmjZDgAlUsbu-2nHVguHdFZ2eP0EWxDfmp~COMPkVQYLgMKCYcBZQP724cgmd0-Bbh80JphbufDIKMZDANQZiWc---6lmAR5XcCo3Xnmwj2U2Vw7OyMmNPNQoKjonX-2udBV5~neDsbhdBlhVqefhfKw~KNXHK6WgKefJfbDtjrhPuYorH2f~Eh2WGichs5Wl827dLs-fIMzc51ewnDoyQuY6ZbpvNTLBVOp3s0edrkM1pP1WZjjUF3Yg__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 680313 Connection: keep-alive Last-Modified: Tue, 21 Mar 2023 18:37:33 GMT x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 27 Mar 2023 13:11:06 GMT ETag: "b92ab0f914613dedb53d087b1817bcba" X-Cache: Hit from cloudfront Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 6orm3f9u6WHVzejwwo1i5DtRSTZxThG55CnIiODiDn19NjsNqWi1sA== Age: 38016`

	docsend.com/view/ycaz2rzkt87rtaix/page_data/2?nda=true&viewLoadTime=1679960680&timezoneOffset=0	52.20.78.240	200 OK	711 B
URL HTTP/1.1 docsend.com/view/ycaz2rzkt87rtaix/page_data/2?nda=true&viewLoadTime=1679960680&timezoneOffset=0 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 711 B (711 bytes) Hash 9370559abc814c4bd8c0a5bbe362f64d c1e4fc80968692d0350323af2f9e9b9bf5078d9a 6683003c379a6547da29b29cca572787a19fb38389b5cbc06fb9fc2d89c4540d HTTP Headers GET /view/ycaz2rzkt87rtaix/page_data/2?nda=true&viewLoadTime=1679960680&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: Y9xpYAWekl4zArrKP9OHP+ZlOWspdXdY7z8iIaIIndK5L6XCYcAfHOJ16RIsruEhn7B4i4IYgOxbwV0pmca78g== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/ycaz2rzkt87rtaix Cookie: _v_=6KanHFkkD5wrWJuiAHKIpMPV2d1kBB3xbH3HI0hNxJEXjdo6IrFJ%2F8CtJDVxOdM%2Bs6HNMl3T7wIROa3jxDiufEtDqxLwJwg%2B3ok29Io%3D--LAEQfqR9P2%2BQ2u5l--kbheoPq50vRdVEfQuPuoUg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=87751b607ba84d808e39681be000cd77 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 27 Mar 2023 23:44:42 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"219437382cf2513d52fda17d1d530df5" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-mfYQHRKeyWq2aoj/QsGWeA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=MeV5STvg%2FLOP0AZnOI%2ByVPnhaycoqq3qa0mB0wdGiE%2FHE4Cn9MmUXiXy4H3b1GxELHxY73iOjeR0hPxMblBeZw8FHleSxYg9xuXy2no%3D--Uu0TuyaGsqAjFscZ--SNHhwzLAdzzwPnZDHZC82A%3D%3D; domain=.docsend.com; path=/; expires=Wed, 27 Mar 2024 23:44:42 GMT; SameSite=None; secure X-Request-Id: 927cdd1c-2540-4ffc-ade7-93b47d62d55d X-Runtime: 0.068777 Vary: Accept-Encoding, Origin Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	c.evidon.com/sitenotice/3401/translations/en.js	23.32.100.208	200 OK	6.6 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (42787), with no line terminators Size 6.6 kB (6584 bytes) Hash c5d467fd5818f85d5066106b4acb1056 c8302ad096a473b1cf2f3a46a6e5e2e0fbc7022a af64972f1271bbf13e0186512d3f4740628b523b82f56c23ac33f3546a54e5b5 HTTP Headers `GET /sitenotice/3401/translations/en.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "657b6bb22752382cbdc4208cce7687cb:1677001491.712443" last-modified: Tue, 21 Feb 2023 17:44:51 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 29 Mar 2023 23:44:42 GMT date: Mon, 27 Mar 2023 23:44:42 GMT content-length: 6584 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	202 Accepted	21 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-03-27T23:45:00.966Z Content-Length: 549 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: 5611559f-7f23-414d-88b8-3d5f1a847705 content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Mon, 27 Mar 2023 23:44:42 GMT referrer-policy: strict-origin-when-cross-origin via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: dbada84ab6514135b19db036abd1a2ba X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	23.32.100.208	200 OK	54 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type data Size 54 kB (54059 bytes) Hash 6e8e33426f59195e9390d0fa29823eb9 9d93d0bb33e87d0f2417e99035386725eb27456f a031c856ceff8f9099f5550994373848f7d8558a3b94c4b9f9ae1454dac9db63 HTTP Headers `GET /sitenotice/evidon-sitenotice-tag.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "c3ee938bd3d9d03945abc0972e4a1c06:1679416916.28457" last-modified: Tue, 21 Mar 2023 16:41:56 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 29 Mar 2023 23:44:42 GMT date: Mon, 27 Mar 2023 23:44:42 GMT content-length: 19653 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settings.js	23.32.100.208	301 Moved Permanently	0 B
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/3401/dropbox/settings.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently server: AkamaiGHost content-length: 0 location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js date: Mon, 27 Mar 2023 23:44:42 GMT vary: Origin cache-control: max-age=432000, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/snthemes.js	23.32.100.208	200 OK	5.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 5.7 kB (5695 bytes) Hash 9a975aa3305c4011b3e07119d2376913 4545dc0986810ba851360f910219b34ce7c4446d 400f7ad9cb8378b5839d4f3449381d936f37fd0762f8507d283304c82068d122 HTTP Headers `GET /sitenotice/3401/snthemes.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398" last-modified: Fri, 29 Jul 2022 21:56:25 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 29 Mar 2023 23:44:42 GMT date: Mon, 27 Mar 2023 23:44:42 GMT content-length: 5695 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settingsV2.js	23.32.100.208	200 OK	1.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (5665), with no line terminators Size 1.7 kB (1739 bytes) Hash 9fc9edffc1f73630f77b4929bb120dcb 9e38c6ea96581cfcb3a147cc9bdae7b5a90dd11f 9680d501bfe65dd0e8823eadb470617005def411de6be197642edfa2c794e404 HTTP Headers `GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "dcb013ce5f00abe84675f6343f644539:1677001492.000343" last-modified: Tue, 21 Feb 2023 17:44:51 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 29 Mar 2023 23:44:42 GMT date: Mon, 27 Mar 2023 23:44:42 GMT content-length: 1739 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-banner.js	23.32.100.208	200 OK	3.5 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js IP 23.32.100.208:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (12622), with no line terminators Size 3.5 kB (3535 bytes) Hash cb964c2d95926812d9a2ece2da706c5d fee8ac82650b1700f73cb5729758ca789768ff25 629dd362a06116cf2c41ec3873c9c590d72e36ddc05766111fefcb540724acda HTTP Headers `GET /sitenotice/evidon-banner.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "cdaadb12aae95d97f7b22c7a6963eb3e:1679416916.867387" last-modified: Tue, 21 Mar 2023 16:41:56 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 29 Mar 2023 23:44:42 GMT date: Mon, 27 Mar 2023 23:44:42 GMT content-length: 3535 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	d2qvtfnm75xrxf.cloudfront.net/docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F2?Expires=1679960742&Signature=BMQMEpXUTvzl6GNUUgZq5K71OS2aKoDK9TpZ6Xq086QoBx3bOCE7uemqLsfrtuUzgXauqpARSTarIDSgJZyei-JQyBdRbMdVXJklhaxH~xw7Pp~GiA5ZFp3JTMOwXi4I6VCrlKV69ikqgkOYJxNIBtlGr8JR1i0fAu2XPilKin2iK7l1wyk7YNgnvQiqCIMlOypbc9e~gXrCM7fE71pkmCYQ~IxQgjnXEEFwIvmhKYrBq-cyDN-0ewPLJg5bENBRlEcRTexMNpU4OHjCmuMWzUVs3pDLLV4DJPnXwiSRvFDBT4IPoGGaK~zMHawonsWhFhx~d3FEi3haEaAE3be5YA__&Key-Pair-Id=K3IVFO0KFGPSF4	143.204.42.157	200 OK	306 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F2?Expires=1679960742&Signature=BMQMEpXUTvzl6GNUUgZq5K71OS2aKoDK9TpZ6Xq086QoBx3bOCE7uemqLsfrtuUzgXauqpARSTarIDSgJZyei-JQyBdRbMdVXJklhaxH~xw7Pp~GiA5ZFp3JTMOwXi4I6VCrlKV69ikqgkOYJxNIBtlGr8JR1i0fAu2XPilKin2iK7l1wyk7YNgnvQiqCIMlOypbc9e~gXrCM7fE71pkmCYQ~IxQgjnXEEFwIvmhKYrBq-cyDN-0ewPLJg5bENBRlEcRTexMNpU4OHjCmuMWzUVs3pDLLV4DJPnXwiSRvFDBT4IPoGGaK~zMHawonsWhFhx~d3FEi3haEaAE3be5YA__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type PNG image data, 1865 x 2635, 8-bit/color RGBA, non-interlaced\012- data Size 306 kB (305683 bytes) Hash eaab1d2424697f100e3262cf2b0189ba 2c0d8c7eda1475cdbe73efdca92dc4c29a2ccc3a 5887f9319bd095ae79c2af4b9e08abe37253112ac1a1542fd7221b534298552a HTTP Headers GET /docs%2F30794421-5aea-4881-ac9e-66688f5fc903%2Fv2_images%2F2?Expires=1679960742&Signature=BMQMEpXUTvzl6GNUUgZq5K71OS2aKoDK9TpZ6Xq086QoBx3bOCE7uemqLsfrtuUzgXauqpARSTarIDSgJZyei-JQyBdRbMdVXJklhaxH~xw7Pp~GiA5ZFp3JTMOwXi4I6VCrlKV69ikqgkOYJxNIBtlGr8JR1i0fAu2XPilKin2iK7l1wyk7YNgnvQiqCIMlOypbc9e~gXrCM7fE71pkmCYQ~IxQgjnXEEFwIvmhKYrBq-cyDN-0ewPLJg5bENBRlEcRTexMNpU4OHjCmuMWzUVs3pDLLV4DJPnXwiSRvFDBT4IPoGGaK~zMHawonsWhFhx~d3FEi3haEaAE3be5YA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 305683 Connection: keep-alive Last-Modified: Tue, 21 Mar 2023 18:37:32 GMT x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 27 Mar 2023 13:11:07 GMT ETag: "eaab1d2424697f100e3262cf2b0189ba" X-Cache: Hit from cloudfront Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: GDXyJwKaf4_NoPijCwSIEEeFZVumOViuYfscYjvRE_smw6WC_GU0jQ== Age: 38016`

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3994 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-HRibZ2E2KZWlA2T03zz1' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-HRibZ2E2KZWlA2T03zz1' 'nonce-ENV0nDmV5hYLDmm6wIHe' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzI2OTM4NTAxNDkyNTYxNTQyMDg3MjQwNzA5ODI5NDcwNjg3NzIw; expires=Sat, 25 Mar 2028 23:44:42 GMT; HttpOnly; Path=/; SameSite=None; Secure t=5GaavrgvwiygUHklC65RvQ9E; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=5GaavrgvwiygUHklC65RvQ9E; expires=Thu, 26 Mar 2026 23:44:42 GMT; Path=/; SameSite=None; Secure __Host-ss=0wjHSw7mqI; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 25 Mar 2028 23:44:42 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 27 Mar 2023 23:44:42 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: c9e0c3e850f9496eb307ba18542421fe X-Firefox-Spdy: h2

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash fc44e4ae95349c5522e671bf5ae5239a 13c71505f304c0e495dc68b2ace38fd22fd8e0bb 7c4aa5ca896b729dffddfc984f9c2bf33d5c0ffe582211c8affd8bd308488a7e HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=163186 Date: Mon, 27 Mar 2023 23:44:43 GMT Etag: "6421f493-1d7" Expires: Wed, 29 Mar 2023 21:04:29 GMT Last-Modified: Mon, 27 Mar 2023 19:54:59 GMT Server: ECAcc (nya/796A) X-Cache: Miss from cloudfront Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 0L8fptkLoqozm4754K9obpVlF8Pqa2HNWQqSS93WAxxKZoLDqxy5-Q== Age: 4170

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash fc44e4ae95349c5522e671bf5ae5239a 13c71505f304c0e495dc68b2ace38fd22fd8e0bb 7c4aa5ca896b729dffddfc984f9c2bf33d5c0ffe582211c8affd8bd308488a7e HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 27 Mar 2023 23:44:43 GMT Last-Modified: Mon, 27 Mar 2023 21:58:44 GMT Server: ECAcc (nya/79F3) X-Cache: Miss from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: xV-lALjnEwGUPpd7KmyeRTQrb9BH_qfm5armb1E6yQXWZ5O8jV35Aw== Age: 6359`

	l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/	52.72.138.232	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ IP 52.72.138.232:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Mon, 27 Mar 2023 23:44:43 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/	52.72.138.232	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ IP 52.72.138.232:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Mon, 27 Mar 2023 23:44:43 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	nexus-websocket-a.intercom.io/pubsub/5-CYLVAy-eybd0mO5bZzKjS2DLUU2N5_1B6I-Mr2wPlnhrxFs1ubWF5BIzwQQinCZn362FKT5K1BavfXlidUUQNPKHRquydHdnK3vT?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	35.174.127.31	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-CYLVAy-eybd0mO5bZzKjS2DLUU2N5_1B6I-Mr2wPlnhrxFs1ubWF5BIzwQQinCZn362FKT5K1BavfXlidUUQNPKHRquydHdnK3vT?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 35.174.127.31:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-CYLVAy-eybd0mO5bZzKjS2DLUU2N5_1B6I-Mr2wPlnhrxFs1ubWF5BIzwQQinCZn362FKT5K1BavfXlidUUQNPKHRquydHdnK3vT?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: slfXoVC7vNqmRI1akdqjVw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Mon, 27 Mar 2023 23:44:43 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: +9EwsqjFegL0KZnPc8/ZR/9B+oY= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3994 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-mKOHY62tRAlWACjtLlNs' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-mKOHY62tRAlWACjtLlNs' 'nonce-eNdQO67hyow0hTeBNRNR' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTE1MzY0Mzk3NTY2NDIxNzE0MDgwNDk3NjQxMDM2MDk4OTg4Mzg5; expires=Sat, 25 Mar 2028 23:44:44 GMT; HttpOnly; Path=/; SameSite=None; Secure t=-Cnb9o8DTLVmL9BvYbrA0e5c; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:44 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=-Cnb9o8DTLVmL9BvYbrA0e5c; expires=Thu, 26 Mar 2026 23:44:44 GMT; Path=/; SameSite=None; Secure __Host-ss=kKd7Y5QWL0; expires=Thu, 26 Mar 2026 23:44:44 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 25 Mar 2028 23:44:44 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 27 Mar 2023 23:44:44 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: b88e80397a7c4abc955bbd415acb3bb7 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent_service	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MTY2OTY2OTIzNDQ3NzA0NjE4MTk2MzIxOTM4NDUxNjE4MTIyNzAz; t=xxnGogzILgLpHP9DWX1JU00x; __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; locale=en; __Host-logged-out-session=ChAMFmIUMtyu+a+c7DRHUvMjEOnUiKEGGi5BR0hRZEY5NVAzUXlIcmM4aEJNRmc1Z3kxV19iMlF3SnZDOVY3TFpEN2x3VFln Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service referrer-policy: strict-origin-when-cross-origin set-cookie: t=xxnGogzILgLpHP9DWX1JU00x; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; expires=Thu, 26 Mar 2026 23:44:42 GMT; Path=/; SameSite=None; Secure __Host-ss=ObhsnElp98; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Mon, 27 Mar 2023 23:44:42 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 291e06cb0b8244e08d08714085501ef4 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MTY2OTY2OTIzNDQ3NzA0NjE4MTk2MzIxOTM4NDUxNjE4MTIyNzAz; t=xxnGogzILgLpHP9DWX1JU00x; __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; locale=en; __Host-logged-out-session=ChAMFmIUMtyu+a+c7DRHUvMjEOnUiKEGGi5BR0hRZEY5NVAzUXlIcmM4aEJNRmc1Z3kxV19iMlF3SnZDOVY3TFpEN2x3VFln Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-NNhym6WWbi85LAjQnr7d' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-NNhym6WWbi85LAjQnr7d' 'nonce-nvyTZAotvcl0dIMynbEX' referrer-policy: strict-origin-when-cross-origin set-cookie: t=xxnGogzILgLpHP9DWX1JU00x; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; expires=Thu, 26 Mar 2026 23:44:42 GMT; Path=/; SameSite=None; Secure __Host-ss=ObhsnElp98; expires=Thu, 26 Mar 2026 23:44:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 15 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Mon, 27 Mar 2023 23:44:42 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 531ebff4f19f4368838218f6b2871890 X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	54.197.128.240	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 54.197.128.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 354 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 27 Mar 2023 23:44:43 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1679960690 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13325 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 15fe6008ac42547e1b3bf5694988662ae089dac4 x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0005bh0v8u6irgfktrjg access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"40335c127af3d831de375aba3f0842ff" x-runtime: 0.346209 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-087c2d0cb2ae07534 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic	142.250.74.138	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic IP 142.250.74.138:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 27 Mar 2023 23:44:40 GMT date: Mon, 27 Mar 2023 23:44:40 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Homemade+Apple	142.250.74.138	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Homemade+Apple IP 142.250.74.138:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Homemade+Apple HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 27 Mar 2023 23:44:40 GMT date: Mon, 27 Mar 2023 23:44:40 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers `GET /pithos/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTY2OTY2OTIzNDQ3NzA0NjE4MTk2MzIxOTM4NDUxNjE4MTIyNzAz; expires=Sat, 25 Mar 2028 23:44:40 GMT; HttpOnly; Path=/; SameSite=None; Secure t=xxnGogzILgLpHP9DWX1JU00x; Domain=dropbox.com; expires=Thu, 26 Mar 2026 23:44:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=xxnGogzILgLpHP9DWX1JU00x; expires=Thu, 26 Mar 2026 23:44:40 GMT; Path=/; SameSite=None; Secure __Host-ss=ObhsnElp98; expires=Thu, 26 Mar 2026 23:44:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 25 Mar 2028 23:44:40 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Mon, 27 Mar 2023 23:44:40 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 74211ba922cf485ebea5019b0e26ec2b X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.e2122b50.js	54.230.111.62	200 OK	0 B
URL HTTP/2 js.intercomcdn.com/vendor.e2122b50.js IP 54.230.111.62:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vendor.e2122b50.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 108575 last-modified: Mon, 27 Mar 2023 17:14:58 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: 8dmvkdN.2ydk0edqQW7uu6DBNXHg8dnE accept-ranges: bytes server: AmazonS3 date: Mon, 27 Mar 2023 21:54:14 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "e86b218869e9cab21fd121efb9620f68" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: LMdTY126Sv8z9bSX5iF4Mx4RUVvwDP7h244uDtqLnZag8ZdnnH1cpw== age: 6629 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML