Report - 0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=docsend.com/view/pfj7gagc6j7pcx7d

Report Overview

Submitted URL
0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=docsend.com/view/pfj7gagc6j7pcx7d
IP
104.18.22.199
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-30 17:59:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	340 B	963 B	172.64.155.188
www.dropbox.com	1994	2012-05-21T22:31:28Z	2023-03-13T07:55:48Z	4.2 kB	17 kB	162.125.71.18
consent.dropbox.com	27413	2021-06-16T17:13:58Z	2023-03-12T23:42:49Z	821 B	1.4 kB	54.230.111.63
nexus-websocket-a.intercom.io	2137	2015-06-26T12:17:57Z	2023-03-13T05:38:27Z	729 B	281 B	35.174.127.31
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	142.250.74.131
docsend.com	58938	2014-04-04T12:48:39Z	2023-03-13T08:14:34Z	18 kB	56 kB	3.220.57.224
d.dropbox.com	1300	2012-11-25T21:07:07Z	2023-03-12T18:12:06Z	1.1 kB	1.1 kB	162.125.6.20
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.10.184.136
c.evidon.com	1097	2017-03-09T22:38:50Z	2023-03-13T07:50:56Z	2.3 kB	40 kB	104.88.23.136
api-iam.intercom.io	2892	2018-08-02T22:07:54Z	2023-03-13T07:27:25Z	465 B	103 kB	107.21.107.85
0e111420-91c4-41ec-b020-562db5502663.pipedrive.email	unknown	2022-11-09T17:20:48Z	2023-02-14T08:15:16Z	1.0 kB	14 kB	104.18.22.199
d2qvtfnm75xrxf.cloudfront.net	unknown	2015-07-20T12:03:28Z	2023-03-12T17:13:45Z	12 kB	2.6 MB	54.230.245.210
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
js.intercomcdn.com	2440	2020-02-19T12:43:00Z	2023-03-13T07:32:58Z	735 B	141 kB	54.230.111.118
l.evidon.com	8143	2020-08-25T21:57:20Z	2023-03-13T07:50:57Z	976 B	382 B	54.172.171.250
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
widget.intercom.io	2417	2020-07-20T14:16:46Z	2023-03-13T07:32:58Z	365 B	6.8 kB	54.230.111.95
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.4 kB	3.9 kB	54.230.245.100
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	422 B	630 B	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-30 17:59:55	high	162.125.6.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3cd35d17db9370d5345c.js	45 kB	2023-03-13	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3cd35d17db9370d5345c.js IP 54.230.245.210 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:29:49 Last Seen2023-03-13 12:36:46 Times Seen1 Hash 369ee3ecdf8cd1f455ab74f53158bdeb 64133e707745caa90671221a87613acf03f614c9 23bc16bc7260e971d3e980722ad3f6b228f901874a69e140cb570943c26b3630 Loading...

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-674a932e37e120d4c2e9.js	10 kB	2023-03-13	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-674a932e37e120d4c2e9.js IP 54.230.245.210 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:29:48 Last Seen2023-03-13 12:36:46 Times Seen1 Hash b574d40837672088ad800de1b5339144 591e8e7cc474b885059be6d4e7a65e7c62353e1b 3e35b3dd99e3a08a6ff2a0e9bb68f67908e9f31a67aac191d7f4d6c1e2470d13 Loading...

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	75 kB	2023-03-09	2023-03-13
Pretty URL c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:15:50 Last Seen2023-03-13 19:09:27 Times Seen1 Hash b9539a2e77d15a946ad29fbada55c14c 01b157a8436cb78c9ff3364c629b5390429b0308 973e0be9ad095c6bea8d2a9b22df3acbc368ecb234823059ddac700ed103c593 Loading...

	c.evidon.com/sitenotice/evidon-banner.js	13 kB	2023-03-09	2023-03-26
Pretty URL c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:10:59 Last Seen2023-03-26 13:12:38 Times Seen50 Hash 953f08dcce4b8af3f743056f673c8514 4e8acdae78b9b5f1c228cb28de23cca6ad5b3c4e f82f137e8e73611fa376c19abe5d768d8880cfce9082c8cb8a5819d3350bc881 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js	218 kB	2023-03-13	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:46:02 Last Seen2023-03-13 15:11:50 Times Seen1 Hash c09157ad4df79ea30313688e19981ac2 2284f9ce2b52b5e356c96351ded93ce38627507a 84edf4212bc1a17eec7b00aaf7fcd3e36c62c47864fef0135067851724dadcbf Loading...

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	569 B	2023-03-07	2023-04-05
Pretty URL consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 54.230.111.63 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-04-05 02:11:39 Times Seen83 Hash 61b81b2411a67a89aad55835c4e864f2 623c4e487131583d402815eb75cfced9b694017d 929203495e37db6972ddc172e9664002093c6bb973da2ca7a5001c26d680d2de Loading...

	widget.intercom.io/widget/lv6lji7h	19 kB	2023-03-13	2023-03-13
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.95 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:32:21 Last Seen2023-03-13 13:12:40 Times Seen1 Hash 653061b5953e2926bbdd4366032db78b 4221f304c9d503c8c7dae3c7bc755e1306f0a742 a855d9dbf70ceb2931b112ee3f179b7153a8caeee9acad488f2c10794fbe3090 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vfllph1M9.js	108 kB	2023-03-13	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vfllph1M9.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:25:48 Last Seen2023-03-13 15:11:09 Times Seen1 Hash 96987533d4700e38006e30ad8fad9edb 3b784dec2308460a9f40585423936c4e54fc93ff fc677b17157c0d63f0f8a552aab9080d73c07aa4b1da0b5db178dc7e67ada14b Loading...

	c.evidon.com/sitenotice/3401/dropbox/settings.js	5.1 kB	2023-03-07	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 7119db14253f426ac1ed52da3fd5d054 9377f384c543a5211174e97b4cec458e2a801d34 4a01a147c430ebeffa841da984db9622de37957eed294ed3dcf4fa4deb7422df Loading...

	docsend.com/view/pfj7gagc6j7pcx7d	3.3 kB	2023-03-13	2023-03-13
Pretty URL docsend.com/view/pfj7gagc6j7pcx7d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:36:46 Last Seen2023-03-13 12:36:46 Times Seen1 Hash fc326a9d4b4046a815a15d8d4542b5bc a177ed1bd257ae9339b92a29d4a0ef19523556cd 3302e7fd215141dfad81b8293567577f1382b6f1dfbf74452650599cd4683c72 Loading...

	docsend.com/view/pfj7gagc6j7pcx7d	587 B	2023-03-13	2023-03-13
Pretty URL docsend.com/view/pfj7gagc6j7pcx7d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:36:46 Last Seen2023-03-13 12:36:46 Times Seen1 Hash 32c4c3cbf7be8e5b048a9d9ea4fd74a0 8dcda97e981512c4f79f7b7ba8b0ed546cf331df b22f4ba27bcffb3147b2382d1221635f474e7cea1eead07d18bb6444dab3cecb Loading...

	www.dropbox.com/pithos/privacy_consent_service	12 kB	2023-03-13	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:31 Last Seen2023-03-13 12:36:46 Times Seen1 Hash e1011c29c0948daad768f2873bd0d889 266ad9bd1a4f782439bd8416cd323c2cd1a54dc8 15fec549f66c6bb584d4d8305a8237a0b9cc1fc8f602e8aa0665ce12bcf0fa18 Loading...

	c.evidon.com/sitenotice/3401/snthemes.js	125 kB	2023-03-07	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/snthemes.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2023-04-02 21:30:48 Times Seen64 Hash 0e8f664fca39681028b4b07b5be34f2d 7298f430eb83f9116df80423cf956d09d0e6f8c4 4f71436a97288b116c8b61d62030fa6549acb42827ca7f7aeaacab78132190a8 Loading...

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-b8f188b6b2e52ad287e1.js	7.4 MB	2023-03-13	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-b8f188b6b2e52ad287e1.js IP 54.230.245.210 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:36:47 Last Seen2023-03-13 12:36:47 Times Seen1 Hash db9493e9b9c1c2a5dd7348541d8d905d a00914106df7e7ff1e62f98572fcfd48425a55db 1ec86c3e3f9c6e739da1b5ef541c728fb8f99c26d6629cd7542b31c1e4a5c140 Loading...

	docsend.com/view/pfj7gagc6j7pcx7d	31 B	2023-03-07	2024-05-10
Pretty URL docsend.com/view/pfj7gagc6j7pcx7d IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-05-10 23:36:31 Times Seen475 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	www.dropbox.com/pithos/privacy_consent	8.4 kB	2023-03-13	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:48:46 Last Seen2023-03-13 15:11:50 Times Seen1 Hash 1109f4067f063577f565304b2de41396 c2fec2f18baebb58501776b0111f64d897d5fb6d 19ec4d569b1a5d307dcdc90fc97df9ebb45b865fac6e254f11fa64c5eafbe68d Loading...

	c.evidon.com/sitenotice/3401/translations/en.js	41 kB	2023-03-08	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:03:09 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 92ddb3e3355b422d8513e225548bbf64 0d9a331620a7153aa3c70f20fbda54bdc7ed2b8c 83798cc9c57adec03a4547e9cec6a563696f0318ec6e0f885d325e226c34fe06 Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-05-10 23:36:31 Times Seen14664 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (89)

	URL	IP	Response	Size
	0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d	104.18.22.199	301 Moved Permanently	0 B
URL HTTP/1.1 0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d IP 104.18.22.199:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d HTTP/1.1 Host: 0e111420-91c4-41ec-b020-562db5502663.pipedrive.email User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Mon, 30 Jan 2023 17:59:38 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Mon, 30 Jan 2023 18:59:38 GMT Location: https://0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d Set-Cookie: __cf_bm=y06xrPRisHuIgLq5zvtP8m1p5rKhc.cwbIzrbDtmgn8-1675101578-0-AboqZFy4lh49Lc7u6gW14t7d2mbJl+JBKlL0sAD56STwuQHTNi3WFe7XWsEPknoh40SuXBmInazlWhyG8ummrFA=; path=/; expires=Mon, 30-Jan-23 18:29:38 GMT; domain=.pipedrive.email; HttpOnly; SameSite=None Vary: Accept-Encoding X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 791c1a428ac0b4f3-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5eb7c9bc996a0ff420e58af45526f053 8c2614832b8efe1c9da0bbd465d6f3f172d95a9e c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F" Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20247 Expires: Mon, 30 Jan 2023 23:37:05 GMT Date: Mon, 30 Jan 2023 17:59:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3eb88dea4fe00db1182370e72683c3ab ca520abf1e91bfd2aef40c6a1270a911071e8922 d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7" Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5121 Expires: Mon, 30 Jan 2023 19:24:59 GMT Date: Mon, 30 Jan 2023 17:59:38 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash dcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 30 Jan 2023 17:35:45 GMT content-type: application/json age: 1433 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 09ee4b0fe6cf4ca5ed31b24452338d00 7e62b6e20f0d4737f4a8d94f9818a0883027839e 56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3125 Expires: Mon, 30 Jan 2023 18:51:43 GMT Date: Mon, 30 Jan 2023 17:59:38 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash f6a9aa55c6ed79292388aedf2d8b4dc5 101418980796ba0899ec64ee918fa448e6faf2b5 2aab04f97b9a1d53d1ff1cc5ec9fc8a4e70f73a5a0a2e360924fa766106b9c05 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6467 Cache-Control: max-age=101239 Content-Type: application/ocsp-response Date: Mon, 30 Jan 2023 17:59:38 GMT Etag: "63d6d4be-118" Expires: Tue, 31 Jan 2023 22:06:57 GMT Last-Modified: Sun, 29 Jan 2023 20:19:10 GMT Server: ECS (amb/6BAD) X-Cache: HIT Content-Length: 280`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 9sOiE7BhlcYzwjQO2OuYzjGdrw2WiKGLSPMbxPEqwp0rNaueRPVyjM8AzZXIylBp1xTze7BGnXw= x-amz-request-id: 5XE9SA5QMKVFN6F7 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 30 Jan 2023 17:50:49 GMT age: 529 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 30 Jan 2023 17:59:38 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 30 Jan 2023 17:49:04 GMT age: 635 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sectigo.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 88759fe296f6aeb911b37dd6654cfa79 9f91a8204832a000d2b5d2133f3f06b7fdbc9b41 6bc130fc0bb8693bc317f9229c6f0b891538722838f3e7b7af5338adccd1e6c1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 30 Jan 2023 17:59:39 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Fri, 27 Jan 2023 15:57:46 GMT Expires: Fri, 03 Feb 2023 15:57:45 GMT Etag: "9f91a8204832a000d2b5d2133f3f06b7fdbc9b41" Cache-Control: max-age=337685,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 791c1a47a8a10b61-OSL`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a 86f640e134a741a0f906a8e3a0f5c6659dd0e394 a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E" Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14989 Expires: Mon, 30 Jan 2023 22:09:28 GMT Date: Mon, 30 Jan 2023 17:59:39 GMT Connection: keep-alive`

	0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d	104.18.22.199	302 Found	12 kB
URL HTTP/2 0e111420-91c4-41ec-b020-562db5502663.pipedrive.email/c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d IP 104.18.22.199:0 ASN #13335 CLOUDFLARENET File type data Size 12 kB (11992 bytes) Hash 3cfa8b172e72124cd0ae58d574dfbea3 7af73097f0f61bf13ebc33b9d1c5edd584fb443e e555c6204945196a8115db23ad1a06e109c528eff713d68dd177b6d4694a96db HTTP Headers GET /c/84l0v5oq40/0499378ge4/o4jodr6rpk/1?redirectUrl=https://docsend.com/view/pfj7gagc6j7pcx7d HTTP/1.1 Host: 0e111420-91c4-41ec-b020-562db5502663.pipedrive.email User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 302 Found date: Mon, 30 Jan 2023 17:59:39 GMT content-type: text/html; charset=utf-8 location: https://docsend.com/view/pfj7gagc6j7pcx7d vary: Accept x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains cf-cache-status: DYNAMIC set-cookie: __cf_bm=GTjsfQ_p.gyfIsFKZhb6Ca91iKB9lJLHJADYJOjsA.I-1675101579-0-AcjzEZSCq4W26A4/BZsF1R/B0mfHp/hGPQv+68ur0CMsBfHJXYePZ4Iio8mr0+o0a1ppp7kTEeOHZ9B0Z5uU2WA=; path=/; expires=Mon, 30-Jan-23 18:29:39 GMT; domain=.pipedrive.email; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 791c1a44bf23b4ed-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	push.services.mozilla.com/	52.10.184.136	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.10.184.136:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: fVcyyN6Qac4epQhAA3v0vQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: enQZa7bCsz4jnU8AFZLgMqgD2+Y=`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a61d61b14d150bff3ab7f5930faf0a54 09ffdc0ef4c360e0002f44f4eda0c38b166379c4 df135509ac47482922e5a722824f2fb1075c14b853735d99d55c5d26a1987144 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3494 Cache-Control: max-age=144345 Content-Type: application/ocsp-response Date: Mon, 30 Jan 2023 17:59:40 GMT Etag: "63d788c0-1d7" Expires: Wed, 01 Feb 2023 10:05:25 GMT Last-Modified: Mon, 30 Jan 2023 09:07:12 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 75bf326700e29b1b06e57fb96ee2b064 4f979f28905b65637a058cd44be6c25bb51a42e4 385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 30 Jan 2023 17:59:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3cd35d17db9370d5345c.js	54.230.245.210	200 OK	14 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3cd35d17db9370d5345c.js IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (44994), with no line terminators Size 14 kB (13741 bytes) Hash 588d23342aa92fa6913319a4f1eef6dd 4a51b0c8e7cbe6d895066b8198df4f09cd657628 cd0dd25dba189af519d9a245fd1a7cfd77fae3dfa4a136995323e24c09e4bc3d HTTP Headers `GET /packs/js/javascripts/error_handling-3cd35d17db9370d5345c.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 27 Jan 2023 03:28:54 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) Content-Encoding: gzip Date: Mon, 30 Jan 2023 07:18:47 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 5K-fqwtj9Fopz7fYnQrH3gvxNvQNSsgoa4MMpjrNVsjL0C2uWQ0x4g== Age: 64241

	d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-d2140367.css	54.230.245.210	200 OK	22 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-d2140367.css IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 22 kB (22302 bytes) Hash 0e8be56d42fbf28638d9862650bc5668 d8be714954abd2a6ec75d1b8bf76f48214a9dfc6 6e08ce2e3450a14cbc069dc748804ba0a7b8aeb90e5b2328ab013c244caeffb7 HTTP Headers `GET /packs/css/javascripts/presentation-d2140367.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 14:20:36 GMT Last-Modified: Mon, 30 Jan 2023 13:59:49 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: avPuAIewQbvDZPszWAdYFIPxE6fD1JGeB3YWN-cgfnmgR3Z3Mz_uZA== Age: 13144

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-674a932e37e120d4c2e9.js	54.230.245.210	200 OK	3.3 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-674a932e37e120d4c2e9.js IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (10541), with no line terminators Size 3.3 kB (3344 bytes) Hash 1c7ad53b5ec67ffbfa1848c8685db84c 34ab38ca43ef860cd2c243c992f2293155c10489 425d816b4c1de2515888b238841f5d1a9b1047e50f92ebf9ac66ead89a2a0e65 HTTP Headers `GET /packs/js/javascripts/langpacks/en-674a932e37e120d4c2e9.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 27 Jan 2023 03:28:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) Content-Encoding: br Date: Mon, 30 Jan 2023 00:07:28 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ls_9IyDolY4vQoTVi-zd1qzNaz3oFuwdksv_yt8RWtql-hWND8wcDw== Age: 64332

	d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-54d550b9.css	54.230.245.210	200 OK	87 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-54d550b9.css IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65517) Size 87 kB (87270 bytes) Hash da3248d31f97882edbcdd494912563e1 0bdcbaa91493b41d679da56adfe4ed659a02a5ce 721f4646e1be266d7f9abf08af0b2ee81ca85bbe7a94f4933db656a5bc782b58 HTTP Headers `GET /packs/css/stylesheets/presentation-54d550b9.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 14:20:36 GMT Last-Modified: Mon, 30 Jan 2023 13:59:49 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: uzBWghTCdERDIzSVnHVbQ8pSa2gtUXRltF6Xj3HKEl0IUyRxqqmIxw== Age: 13144

	d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css	54.230.245.210	200 OK	1.1 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type exported SGML document, ASCII text Size 1.1 kB (1060 bytes) Hash 846cc3bd920ad3d2d127740dddcfaa80 e58a977586878de53c8a86877b35ffe145f88f6a 26c0ded99b1e406601f18d7fa652cce17ff355c55ebfa27d3d98fd83133495bd HTTP Headers `GET /assets/ie_specific_hacks_v2.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Fri, 27 Jan 2023 01:55:30 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) Content-Encoding: gzip Date: Mon, 30 Jan 2023 07:18:47 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: hzB5QI6G-YRFGfCvlmCpy-ar39YP9UBSxbcJODe3EgEFArvj7bKCjg== Age: 59909

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 75bf326700e29b1b06e57fb96ee2b064 4f979f28905b65637a058cd44be6c25bb51a42e4 385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 30 Jan 2023 17:59:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2	54.230.245.210	200 OK	43 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data Size 43 kB (43308 bytes) Hash 93b6f18ec99bcb7c3fa7ea570a75e240 60b9e3062fe532cbc18b897fac542c56a03544c7 43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db HTTP Headers `GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 43308 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Fri, 27 Jan 2023 01:55:30 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) Date: Mon, 30 Jan 2023 06:06:10 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: s1k5JmhxmzoMiNPEhAjTtD3qsOsybMlApRp99I8gxkXiS3oVVYDAWA== Age: 42810

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2	54.230.245.210	200 OK	46 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers `GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Fri, 27 Jan 2023 01:55:30 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) Date: Mon, 30 Jan 2023 02:38:37 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: rIDbLwnTnhcn2pGQTWlxIsnk-T5iADZ11ddmNHPiRZQZArwdhO4-kg== Age: 55263

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2	54.230.245.210	304 Not Modified	0 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site If-Modified-Since: Fri, 27 Jan 2023 01:55:30 GMT HTTP/1.1 304 Not Modified Connection: keep-alive Date: Mon, 30 Jan 2023 17:59:40 GMT Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: IpH8JA9ZGymBKhiO61P5IP8iD5anWD-nGg5KgSIIyIyh1IpAlDYDeA== Age: 55263

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4297 Expires: Mon, 30 Jan 2023 19:11:18 GMT Date: Mon, 30 Jan 2023 17:59:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4297 Expires: Mon, 30 Jan 2023 19:11:18 GMT Date: Mon, 30 Jan 2023 17:59:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4297 Expires: Mon, 30 Jan 2023 19:11:18 GMT Date: Mon, 30 Jan 2023 17:59:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4297 Expires: Mon, 30 Jan 2023 19:11:18 GMT Date: Mon, 30 Jan 2023 17:59:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4297 Expires: Mon, 30 Jan 2023 19:11:18 GMT Date: Mon, 30 Jan 2023 17:59:41 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10997 bytes) Hash 65c02d8a1b0d6a210cb2a649c5c67469 027dbc7a104c922904f067ed15d696c363c11774 89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10997 x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fhj30FX7IAMFa5w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 21:53:08 GMT age: 72393 etag: "027dbc7a104c922904f067ed15d696c363c11774" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7538 bytes) Hash 131eb343c5abd61939457d69bd371348 ffb2035cf64fc83f01db5c6f26ffa264b6aac95b 8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7538 x-amzn-requestid: 8bec493a-9c81-4cfd-b6e9-66f4f3d55cb7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fOOJQEZSoAMFb1w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cf2a3b-5f0c9f3e4cac1ba26c802050;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 00:45:47 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 3uybP14DBtrEK8ieNWHaQfz3Zl_JMl0_L9CGZgcusTjVCFIIaTpwIQ== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Mon, 30 Jan 2023 00:23:18 GMT age: 63383 etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg	34.120.237.76	200 OK	7.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.7 kB (7679 bytes) Hash 3e04b9eaf7449828136ad59e4c9d69f1 b820be4ed885dcf288eb6460c57e1fa7b1c7c476 df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7679 x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fhkEtEfHoAMFaNA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 21:52:09 GMT age: 72452 etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4475 bytes) Hash 4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4475 x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fa_e6HsaIAMF5Lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 21:56:46 GMT age: 72175 etag: "ab4f6528594a1725934727dc7d834c028a79c609" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.5 kB (9457 bytes) Hash 51aa950d5eed7b90cab6632107092edc e4388ced02e5576867e77547496dec1ac2338ef7 588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9457 x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fhkBOGHVoAMFQtw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 22:00:38 GMT age: 71943 etag: "e4388ced02e5576867e77547496dec1ac2338ef7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8464 bytes) Hash fe31ee140c2fd62e616c8a1edc9e78bb 7aa5fbdc8156514770ae620e81f1afef1c77890f 799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8464 x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fhj3qGeboAMFzNw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 29 Jan 2023 21:55:21 GMT etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f" content-type: image/jpeg age: 72260 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3995 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-JzpkTgT6omS5tFw6iBno' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-JzpkTgT6omS5tFw6iBno' 'nonce-R2RlO9S/N3MLQv95aivq' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzEyMDc5NjM4NTY4ODMzMjU4MjYxMDU4NzkwOTMyODQ4ODAzMjgx; expires=Sat, 29 Jan 2028 17:59:41 GMT; HttpOnly; Path=/; SameSite=None; Secure t=lkiQ5TKobkORSvh7wlDt2TbF; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:41 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=lkiQ5TKobkORSvh7wlDt2TbF; expires=Thu, 29 Jan 2026 17:59:41 GMT; Path=/; SameSite=None; Secure __Host-ss=bIJgIUgxa0; expires=Thu, 29 Jan 2026 17:59:41 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 29 Jan 2028 17:59:41 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 30 Jan 2023 17:59:41 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 8a32ab2818e64f55a5e5c711aab96d15 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4028 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-R1lFxPLYHYRPT0QbOULj' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-R1lFxPLYHYRPT0QbOULj' 'nonce-Jz/+jnMYF7sHnXJdj9Dv' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzA3MTYxNDg2MjQ5NzQzNDc0OTI2Nzc4NjQ4MjcxNTE4MjA3Njk1; expires=Sat, 29 Jan 2028 17:59:41 GMT; HttpOnly; Path=/; SameSite=None; Secure t=TCteNIyxGWrZihix8bHs3m5S; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:41 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=TCteNIyxGWrZihix8bHs3m5S; expires=Thu, 29 Jan 2026 17:59:41 GMT; Path=/; SameSite=None; Secure __Host-ss=gHN0maz2xE; expires=Thu, 29 Jan 2026 17:59:41 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 29 Jan 2028 17:59:41 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 30 Jan 2023 17:59:41 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 0348f62072934141b83b18562152cc02 X-Firefox-Spdy: h2

	d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif	54.230.245.210	200 OK	49 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 144 x 144\012- data Size 49 kB (48903 bytes) Hash ceb150ad0df5017df3c4f3599cd61779 e61e9bbd8a97d9b544b131e0340e371b9f9bf2d8 216a694fc417dce27076f118e45ca73ead42a1be5004a8550eeca3e99af3ea02 HTTP Headers `GET /public/loading_images/large-loader.gif HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/gif Content-Length: 48903 Connection: keep-alive Last-Modified: Mon, 23 May 2016 23:39:27 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 30 Jan 2023 05:45:06 GMT ETag: "ceb150ad0df5017df3c4f3599cd61779" X-Cache: Hit from cloudfront Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: vGQTPvSFlTjrN7IAKQARzZEiLbKEXNb2CVldBZ0rQdEx4BeyjOZxqw== Age: 45605`

	d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png	54.230.245.210	200 OK	2.4 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 207 x 40, 8-bit colormap, non-interlaced\012- data Size 2.4 kB (2430 bytes) Hash 0b50c78d0f0f86275c8f61c4b205b457 868bea9e3911611556fa257c4f68be3cf9dc91ce a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19 HTTP Headers `GET /assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/png Content-Length: 2430 Connection: keep-alive Server: nginx Last-Modified: Wed, 06 Jul 2022 19:07:24 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) Date: Mon, 30 Jan 2023 06:51:44 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: wJuIwSBEorlZVQsQvLu-JmuHopdIHo62jR-FFRWujfs9aRFO_zrqiQ== Age: 40077`

	d2qvtfnm75xrxf.cloudfront.net/public/blank.gif	54.230.245.210	200 OK	43 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/blank.gif IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash f837aa60b6fe83458f790db60d529fc9 14af87ccec7f81bb28d53c84da2fd5a9d5925cda dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b HTTP Headers `GET /public/blank.gif HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/gif Content-Length: 43 Connection: keep-alive Last-Modified: Sat, 12 Apr 2014 01:42:38 GMT Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 30 Jan 2023 13:58:48 GMT ETag: "f837aa60b6fe83458f790db60d529fc9" X-Cache: Hit from cloudfront Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: cpkIukKXWBp4oqCLky52jMS1lz2lUtlbetPXUI5aHXjUFyxOwZeMcw== Age: 14454`

	docsend.com/metrics/events	3.220.57.224	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------372777964230750412323700947770 Content-Length: 794 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:41 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-CpI3kZhZEUuv+Pfpz6C3fg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 806ebae6-f9e2-4cd1-b36e-46f438f7fd56 X-Runtime: 0.014619 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/profile_pictures/f6192c57-ce84-4317-9819-812cdecd7abf/0PCZhwsXRM6cQHAL39Vz_Docsity.png	54.230.245.210	200 OK	42 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/profile_pictures/f6192c57-ce84-4317-9819-812cdecd7abf/0PCZhwsXRM6cQHAL39Vz_Docsity.png IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 768 x 768, 8-bit/color RGBA, non-interlaced\012- data Size 42 kB (41839 bytes) Hash 9b65e106d5977b4ab09cdb75af55808b 6226704d4737f05785abfcc7d3edee46f872b303 b30a9b877be419516f03e81e83299eef9f41e1a7bb0250382eae8ffba4a29dea HTTP Headers `GET /profile_pictures/f6192c57-ce84-4317-9819-812cdecd7abf/0PCZhwsXRM6cQHAL39Vz_Docsity.png HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/png Content-Length: 41839 Connection: keep-alive Date: Mon, 30 Jan 2023 09:55:38 GMT Last-Modified: Tue, 27 Sep 2022 15:12:39 GMT ETag: "9b65e106d5977b4ab09cdb75af55808b" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 7Xm41Kd6q4I0XggRXzOoXEjn49cfJbUn5gfQlph9G651VACU6w6JyQ== Age: 29044`

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	54.230.111.63	200 OK	854 B
URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 54.230.111.63:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 854 B (854 bytes) Hash dc63fb23d6563676b3090bae3f02ccde dd6c4202705f760dd5744caee7ccb31f703fc880 c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: t=LHVqUt2hb-UNkcngq7KWHuxV; locale=en; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:30:26.400Z","expireDate":"2023-07-30T17:30:26.400Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":2} Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/html content-length: 854 last-modified: Tue, 06 Sep 2022 19:00:36 GMT x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ server: AmazonS3 date: Mon, 30 Jan 2023 06:27:31 GMT etag: "dc63fb23d6563676b3090bae3f02ccde" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: _oK-EMwaRxIrJFM6awBwfXlomil2Q6WCHfpzN_TvK1ya3lS12FXkaw== age: 43663 X-Firefox-Spdy: h2`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/1?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	868 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/1?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (1196), with no line terminators Size 868 B (868 bytes) Hash dee89cb9f3821a02acedb855ed5eb5c4 1878e6793373bf2e3d63050ecc00c4f2be5108eb 03b0f94ff35176330bd94bfd52c20491bc6e2b20398c375d821f44e6fa2e9fd8 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/1?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:41 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"09257662d1876aef15ce043e94cf7e99" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-D7ZKk/bVznzDSG3gG+SwzA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=vBsdPI1pIFPZL7i7HaeDuv%2Fg6fCkYb0a2yN538mhCfcoF%2B5hPDcIzSpH3%2FmADyvBW08lKadDeAjQTEAjmHk59m%2BO30W%2BeCFQYBaEYag%3D--VdUqMSVO3U3C88U%2F--ucqNfJa%2Bj9AvuBlqOGGd8w%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:41 GMT; SameSite=None; secure X-Request-Id: 8d60a5e7-61f4-424c-a981-f62c01e79654 X-Runtime: 0.050342 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	docsend.com/metrics/events	3.220.57.224	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------2364195036283185035376116481 Content-Length: 1072 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:41 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-q3Bwm3ij6Z48/S2T51dCQw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: fd679c5b-ee16-45c2-95f3-fb1959887ab1 X-Runtime: 0.020991 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	docsend.com/favicon-196x196.png	3.220.57.224	200 OK	4.1 kB
URL HTTP/1.1 docsend.com/favicon-196x196.png IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:41 GMT Content-Type: image/png Content-Length: 4131 Last-Modified: Mon, 30 Jan 2023 13:25:48 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F1?Expires=1675101641&Signature=kpffxw0~8WonZJEQNRMCL6PSwS82mAuGKK-bCoVElrG-~qMXLyOyIwb4E76~YXtFxqCKyQjUXhX2cwmWMYWmIulnowuREFqbpu0JDSY8j1nL9DKVZMSC-7dLsX0K5mwEFrugW-hSSlFII5lPPwEAo~XrO8zzzPnEn~R0gnGSamPbi~P3UAb3FYIssLrSGsCO5lX1mBMAUr0GBQtePrKSZ5Gw2Y-3racdZect2qxFNrP7QGz5wHCh9dXL~bwupJ0HKJtbu~w3yBDuDuhRszK0Zc1ajiSQvNlt69At-DGaslU~gM81QqQi41e-sIGaS7s~RI73BXyY1OzK6GlR~nVVqA__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	170 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F1?Expires=1675101641&Signature=kpffxw0~8WonZJEQNRMCL6PSwS82mAuGKK-bCoVElrG-~qMXLyOyIwb4E76~YXtFxqCKyQjUXhX2cwmWMYWmIulnowuREFqbpu0JDSY8j1nL9DKVZMSC-7dLsX0K5mwEFrugW-hSSlFII5lPPwEAo~XrO8zzzPnEn~R0gnGSamPbi~P3UAb3FYIssLrSGsCO5lX1mBMAUr0GBQtePrKSZ5Gw2Y-3racdZect2qxFNrP7QGz5wHCh9dXL~bwupJ0HKJtbu~w3yBDuDuhRszK0Zc1ajiSQvNlt69At-DGaslU~gM81QqQi41e-sIGaS7s~RI73BXyY1OzK6GlR~nVVqA__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 170 kB (169673 bytes) Hash 71ded41fe2edbd493fa0932e84853f94 1c4398c4c34dc11bf7e4d488c435d9408cfaec25 2fcb574f4bd70ab527e29a6fae6c9420ee11498a9fe81b384d3d669fc9af0103 HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F1?Expires=1675101641&Signature=kpffxw0~8WonZJEQNRMCL6PSwS82mAuGKK-bCoVElrG-~qMXLyOyIwb4E76~YXtFxqCKyQjUXhX2cwmWMYWmIulnowuREFqbpu0JDSY8j1nL9DKVZMSC-7dLsX0K5mwEFrugW-hSSlFII5lPPwEAo~XrO8zzzPnEn~R0gnGSamPbi~P3UAb3FYIssLrSGsCO5lX1mBMAUr0GBQtePrKSZ5Gw2Y-3racdZect2qxFNrP7QGz5wHCh9dXL~bwupJ0HKJtbu~w3yBDuDuhRszK0Zc1ajiSQvNlt69At-DGaslU~gM81QqQi41e-sIGaS7s~RI73BXyY1OzK6GlR~nVVqA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 169673 Connection: keep-alive Date: Mon, 30 Jan 2023 14:34:39 GMT Last-Modified: Mon, 30 May 2022 10:29:26 GMT ETag: "71ded41fe2edbd493fa0932e84853f94" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: b8MHnqlE18YmQGaPF-oUK-7G-WnQQeBB7duPAYSfszuAtOxre2MaWg== Age: 12304`

	docsend.com/favicon-16x16.png	3.220.57.224	200 OK	393 B
URL HTTP/1.1 docsend.com/favicon-16x16.png IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 393 B (393 bytes) Hash a8c678babc40c4ac6d8c70fc560094d4 66002c0719ddbd75c837f5a939689ea6df13b6dc a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:42 GMT Content-Type: image/png Content-Length: 393 Last-Modified: Mon, 30 Jan 2023 13:25:48 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	docsend.com/metrics/properties	3.220.57.224	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/properties IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=bl9Cak0kpCi9MnC2OJi2MEb4C2mIckUf7PeawBIPM7QN5ld9nWiwPcisNSLCyPBP8LCX%2F%2BfT1Wvf8x2zBv32i1I36lHoo5q8opzSJ0s%3D--herqn8Da3qig7nqO--TpV4IGTbrZFpeh%2FsiLQRJQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:42 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-PC6bxSslkFHTvTIShEmBXQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: eb66d68d-1fd2-4875-b965-fa1f4f4435a9 X-Runtime: 0.009717 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d.dropbox.com/crashdash/proxy/sessions	162.125.6.20	200 OK	0 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.6.20:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Mon, 30 Jan 2023 17:59:42 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 042d5a7859d14864a85391713a6a5772 X-Firefox-Spdy: h2`

	widget.intercom.io/widget/lv6lji7h	54.230.111.95	200 OK	6.0 kB
URL HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (18637), with no line terminators Size 6.0 kB (6045 bytes) Hash 24aab96aff3343df9e7467a79e7eec9d 47b6f98b6f6b78486a6af662516b87e5b784f305 13dea13d5b7c3e74a5a3965cc47a14c6d7255b5fff485c757153d2f28c7bb574 HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 6045 last-modified: Mon, 30 Jan 2023 15:40:32 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: DIbeuJuxxULyYbi.xge5eXKeR7Dxq8PO accept-ranges: bytes server: AmazonS3 date: Mon, 30 Jan 2023 17:36:57 GMT cache-control: max-age=900, s-maxage=900, public etag: "24aab96aff3343df9e7467a79e7eec9d" x-cache: Error from cloudfront via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: R6FCbA058nZRIg_3FgwwwaTKS-4uM6tFw3ucb0waXukqXoj-z5dX6Q== age: 1366 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	js.intercomcdn.com/frame.fbb34ef6.js	54.230.111.118	200 OK	140 kB
URL HTTP/2 js.intercomcdn.com/frame.fbb34ef6.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 140 kB (139558 bytes) Hash ea3c12adaa12bd8fb5867282760e2cdd 495b1d4287d7e711466a39798619d6fcc5b031a5 9a562ebf81c89d45037ce28c17a355c9ba927da022773034610df99b0b9ea075 HTTP Headers `GET /frame.fbb34ef6.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 139558 last-modified: Mon, 30 Jan 2023 15:38:45 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: 7K6VqwgzK_n3ve6z1HwUeE_tIW2SDzf9 accept-ranges: bytes server: AmazonS3 date: Mon, 30 Jan 2023 17:40:44 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "ea3c12adaa12bd8fb5867282760e2cdd" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: OAi7641Yl0en7AqKBYN2bFvUCJP1onPsvCyf8b5zfwIxRpcW3R09mg== age: 1139 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash d0c88d4ca0a601b2a09197abd6faba67 be41920cbed1fe45a7f1e4047278822b3d15d05a ab16af78775ccd03ed01485d1d5c1ca3da0ce922ee78d552fd2cd6d741ed3138 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 30 Jan 2023 17:59:42 GMT Last-Modified: Mon, 30 Jan 2023 17:30:35 GMT Server: ECS (nyb/1D1A) X-Cache: Miss from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 58-fo1swrjbpb8lnw0R2RLmxmQxnLRk-PUXlirO9lgWltzEiL3WV8g== Age: 1747`

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 61fca20c48f76c99be770c330932e1ff e6a52723f21b357bc4ea0f1e5e4f0dcfe9e28e19 96fdb3fd6eea1a0013763a862160098b54b9efdc06004f7ad0967c146e368ef5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=148655 Date: Mon, 30 Jan 2023 17:59:42 GMT Etag: "63d79112-1d7" Expires: Wed, 01 Feb 2023 11:17:17 GMT Last-Modified: Mon, 30 Jan 2023 09:42:42 GMT Server: ECS (nyb/1D27) X-Cache: Miss from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Tef5c4711ogUyXvUEIcs8aky295nVlZkHxNY8DdGMPrbvsya-oOyaw== Age: 5675

	d.dropbox.com/crashdash/proxy/sessions	162.125.6.20	202 Accepted	21 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.6.20:0 ASN #19679 DROPBOX File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-01-30T17:59:53.422Z Content-Length: 514 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: 1398c51f-af3c-4d7d-9aa0-835abb02e550 content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Mon, 30 Jan 2023 17:59:42 GMT referrer-policy: strict-origin-when-cross-origin via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 51cb725360ac440bb495e010d13e01db X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	104.88.23.136	200 OK	20 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 20 kB (19598 bytes) Hash 3b00a7ecdaf4bff1751456e89ce005f4 2645658a488474676e934af157bf2164f8edeb6b b8fb30b4d1bdb4738bf563d499929ccdadda6a489d88faf959f40166268ed300 HTTP Headers `GET /sitenotice/evidon-sitenotice-tag.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "b9539a2e77d15a946ad29fbada55c14c:1671558610.191575" last-modified: Tue, 20 Dec 2022 17:50:10 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 01 Feb 2023 17:59:42 GMT date: Mon, 30 Jan 2023 17:59:42 GMT content-length: 19598 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/snthemes.js	104.88.23.136	200 OK	5.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 5.7 kB (5695 bytes) Hash 9a975aa3305c4011b3e07119d2376913 4545dc0986810ba851360f910219b34ce7c4446d 400f7ad9cb8378b5839d4f3449381d936f37fd0762f8507d283304c82068d122 HTTP Headers `GET /sitenotice/3401/snthemes.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398" last-modified: Fri, 29 Jul 2022 21:56:25 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 01 Feb 2023 17:59:42 GMT date: Mon, 30 Jan 2023 17:59:42 GMT content-length: 5695 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settings.js	104.88.23.136	301 Moved Permanently	0 B
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/3401/dropbox/settings.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently server: AkamaiGHost content-length: 0 location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js date: Mon, 30 Jan 2023 17:59:42 GMT vary: Origin cache-control: max-age=432000, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/translations/en.js	104.88.23.136	200 OK	6.4 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (41349), with no line terminators Size 6.4 kB (6406 bytes) Hash 7cdb0408336768c3c8697de7fe062fed 455d1237f3256aba83c5102b10212f8bc767bf22 f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece HTTP Headers `GET /sitenotice/3401/translations/en.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772" last-modified: Tue, 04 Oct 2022 16:06:31 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 01 Feb 2023 17:59:42 GMT date: Mon, 30 Jan 2023 17:59:42 GMT content-length: 6406 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settingsV2.js	104.88.23.136	200 OK	1.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (5082), with no line terminators Size 1.7 kB (1691 bytes) Hash 181b62cb4ca1877b5952d8864d1ddb04 ebae59485369852733c2648e907227b2a7666bc5 425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f HTTP Headers `GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043" last-modified: Tue, 06 Sep 2022 17:34:52 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 01 Feb 2023 17:59:42 GMT date: Mon, 30 Jan 2023 17:59:42 GMT content-length: 1691 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-banner.js	104.88.23.136	200 OK	3.5 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (12607), with no line terminators Size 3.5 kB (3535 bytes) Hash 304674456118422bd448366f7bb05879 c6549199a4fb419c05a3513238a89002307034b9 29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068 HTTP Headers `GET /sitenotice/evidon-banner.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236" last-modified: Tue, 20 Dec 2022 17:50:10 GMT server: AkamaiNetStorage content-encoding: gzip expires: Wed, 01 Feb 2023 17:59:42 GMT date: Mon, 30 Jan 2023 17:59:42 GMT content-length: 3535 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/2?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	710 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/2?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 710 B (710 bytes) Hash 89209d0e25e0e5e9a85443d90bf1d9cc 15089ece7f7bfee1268c46c28119d5d9195f3613 5b62481280b19786298334c184badd46b0ff6fca35658b929783f87956f36263 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/2?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=vBsdPI1pIFPZL7i7HaeDuv%2Fg6fCkYb0a2yN538mhCfcoF%2B5hPDcIzSpH3%2FmADyvBW08lKadDeAjQTEAjmHk59m%2BO30W%2BeCFQYBaEYag%3D--VdUqMSVO3U3C88U%2F--ucqNfJa%2Bj9AvuBlqOGGd8w%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:42 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"8fd84b0d0ca86c1b401a8af1d047273d" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-hBzAOcSx8CVh3oVO6+EscQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=uqKCXzHs4FGlwkIiqO0ckFTict2b%2B%2F4YHDU7xAfmQKmQBVDk6N93a%2BZtObeaB9ohQxVkZMTlbG7gJPIeYAMNaCqaDnd%2FDxRi5diYuBg%3D--2lH1mEoJL%2B0fOt5Y--LNk%2F7eQ4PQTy2OvNaeZlKg%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:42 GMT; SameSite=None; secure X-Request-Id: ce1fbfa9-7de8-4e16-9496-6b4dfd15f694 X-Runtime: 0.071523 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4028 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-SnuHAwfKE+bkc03xB307' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-SnuHAwfKE+bkc03xB307' 'nonce-fYeZQBSjbMpPuwyONQsJ' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=NTg3MzMwMDEzODQ3ODIyNTI1ODQ4NDM5MjM1NDE5MjI0NTA4NDg%3D; expires=Sat, 29 Jan 2028 17:59:42 GMT; HttpOnly; Path=/; SameSite=None; Secure t=nijm3b7iAgArm8hOILIwIVxg; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=nijm3b7iAgArm8hOILIwIVxg; expires=Thu, 29 Jan 2026 17:59:42 GMT; Path=/; SameSite=None; Secure __Host-ss=dWyj127j-k; expires=Thu, 29 Jan 2026 17:59:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 29 Jan 2028 17:59:42 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 30 Jan 2023 17:59:42 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 4601e802cb60402d9caf0b62b2b2a891 X-Firefox-Spdy: h2

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F2?Expires=1675101642&Signature=m~viz~njxMUhAQlhtr65Vm7fdvj0DUrz4X8WlxCfQHG19s~u~QAMUw2aKjdPeoWR2ZPQd50pViYb1iefDmvh545dginJgdW8Db5J2v-dTYHeU~RhwPdKO1AZEK72xXHW-IkUC~2yoTMhdXa2SwpKULD2WQFrzUndjoFEEhxtjYGpQnBMRCq4PK0Zhuuzi9mhp3hZBqluEZ~IW3m8kYkVH-1a5XSbZZl-9WcdtRmdk02h-vasuwkCpnfxVuoJX~HzXFEnSgBlmFGduFhux05qzk~NTsNbqlBn64FYfvKM3YdHY70jTXd1oZgeopEfxNnHDFAQPbYKaldqLFb3SIDVgQ__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	640 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F2?Expires=1675101642&Signature=m~viz~njxMUhAQlhtr65Vm7fdvj0DUrz4X8WlxCfQHG19s~u~QAMUw2aKjdPeoWR2ZPQd50pViYb1iefDmvh545dginJgdW8Db5J2v-dTYHeU~RhwPdKO1AZEK72xXHW-IkUC~2yoTMhdXa2SwpKULD2WQFrzUndjoFEEhxtjYGpQnBMRCq4PK0Zhuuzi9mhp3hZBqluEZ~IW3m8kYkVH-1a5XSbZZl-9WcdtRmdk02h-vasuwkCpnfxVuoJX~HzXFEnSgBlmFGduFhux05qzk~NTsNbqlBn64FYfvKM3YdHY70jTXd1oZgeopEfxNnHDFAQPbYKaldqLFb3SIDVgQ__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 640 kB (639523 bytes) Hash 3f0e406ed46df02a89c98efe21d02995 30ca558bd8a52aca7fa25fa48de0dcf8f8410d4e 3f2e8ebdb480b297f757d9697eccb5231f54c197146218d15971e7b0cf60cbcc HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F2?Expires=1675101642&Signature=m~viz~njxMUhAQlhtr65Vm7fdvj0DUrz4X8WlxCfQHG19s~u~QAMUw2aKjdPeoWR2ZPQd50pViYb1iefDmvh545dginJgdW8Db5J2v-dTYHeU~RhwPdKO1AZEK72xXHW-IkUC~2yoTMhdXa2SwpKULD2WQFrzUndjoFEEhxtjYGpQnBMRCq4PK0Zhuuzi9mhp3hZBqluEZ~IW3m8kYkVH-1a5XSbZZl-9WcdtRmdk02h-vasuwkCpnfxVuoJX~HzXFEnSgBlmFGduFhux05qzk~NTsNbqlBn64FYfvKM3YdHY70jTXd1oZgeopEfxNnHDFAQPbYKaldqLFb3SIDVgQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 639523 Connection: keep-alive Date: Mon, 30 Jan 2023 14:34:46 GMT Last-Modified: Mon, 30 May 2022 10:29:29 GMT ETag: "3f0e406ed46df02a89c98efe21d02995" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: vuFKvg-jkhBqkF0Y7nS5bDTwghHmYLuH5YXloSPK1XSg0SoITSU5mg== Age: 12297`

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 711e853a200253c8956910d282e33eb3 4d9bccb4a8987e4674f8d6f9fcc2165c5e8c64aa f2b1bf68b7ce62f781d12a35642d7916b4d9ac759748a57095a72d4f0ddfea08 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 30 Jan 2023 17:59:42 GMT Last-Modified: Mon, 30 Jan 2023 17:05:00 GMT Server: ECS (bsa/EB1E) X-Cache: Miss from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: xBIMmHCa_5CT8hW-okiSmAPgip_Wvt2X2ePPGgFN0i0CbW9yOe_sVQ== Age: 3282`

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 711e853a200253c8956910d282e33eb3 4d9bccb4a8987e4674f8d6f9fcc2165c5e8c64aa f2b1bf68b7ce62f781d12a35642d7916b4d9ac759748a57095a72d4f0ddfea08 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=165867 Date: Mon, 30 Jan 2023 17:59:42 GMT Etag: "63d7da51-1d7" Expires: Wed, 01 Feb 2023 16:04:09 GMT Last-Modified: Mon, 30 Jan 2023 14:55:13 GMT Server: ECS (bsa/EB1D) X-Cache: Miss from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: OSgRYXVyvb4QgjASK4_ZbPgphYbw-gBAINZvqhFOlRsGKe4M3JGE4A== Age: 4136

	l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	54.172.171.250	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 54.172.171.250:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Mon, 30 Jan 2023 17:59:42 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	54.172.171.250	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 54.172.171.250:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Mon, 30 Jan 2023 17:59:42 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/3?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	709 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/3?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 709 B (709 bytes) Hash de0ed7da22126fdf1f290d457e19df0c 888df078ddb9189f6cbe80aa9afd83cdfa78e6a1 3a50e92337d62c0cf26184ed3e434f438c0944537f1f348aeb2d8eb697f285d5 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/3?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=uqKCXzHs4FGlwkIiqO0ckFTict2b%2B%2F4YHDU7xAfmQKmQBVDk6N93a%2BZtObeaB9ohQxVkZMTlbG7gJPIeYAMNaCqaDnd%2FDxRi5diYuBg%3D--2lH1mEoJL%2B0fOt5Y--LNk%2F7eQ4PQTy2OvNaeZlKg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:43 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"b58777a6084ca5a0e64b3626becf2767" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-btUWM9Aq7rRkZhST/kwqOA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=ab6ZFCwqYZ4zT8AVX1kecYm99ahi%2Bp8U767pxti8kJTr2RG6GcPN5lrQyypELlcHQiMxEbS9mOULMli1%2B%2FLa316%2Fdyn%2BCe2c4MIYkAM%3D--Wqn8JGbsMZk%2ByCGx--xfq3aKQIQIeETq2NbWcT9Q%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:43 GMT; SameSite=None; secure X-Request-Id: 892c1327-bdd9-48f2-ab91-5d265be8b16f X-Runtime: 0.055033 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	api-iam.intercom.io/messenger/web/ping	107.21.107.85	200 OK	102 kB
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 107.21.107.85:0 ASN #14618 AMAZON-AES File type data Size 102 kB (101831 bytes) Hash f61c94b6d5ed08b148d2f6aaf34a6bb9 de7855777588a267d80a56d4a8cbd4bd3cce73d3 1fe2f61455afdad5ba60e2ec8e50bfb88101bccab6507581377f78b098f3cdc3 HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 472 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 30 Jan 2023 17:59:43 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1675101590 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13299 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: a40a60a426d0c15dc7983b4a543bc327421a90b5 x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0004ulsrpqemaajjouj0 access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"057dd2fd10322858a6a0d6fef458137d" x-runtime: 0.283879 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-097189092b4216679 X-Firefox-Spdy: h2

	nexus-websocket-a.intercom.io/pubsub/5-wprM7-tYb0OwUIzhoILONhJxixGhxYEfn0Kx5YIwQs3BLMVEou8wPJaYPoKMwIlI3sKkLcaoYa9zuM1ouPJEPLOoc_1VG3IEwkjd?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	35.174.127.31	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-wprM7-tYb0OwUIzhoILONhJxixGhxYEfn0Kx5YIwQs3BLMVEou8wPJaYPoKMwIlI3sKkLcaoYa9zuM1ouPJEPLOoc_1VG3IEwkjd?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 35.174.127.31:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-wprM7-tYb0OwUIzhoILONhJxixGhxYEfn0Kx5YIwQs3BLMVEou8wPJaYPoKMwIlI3sKkLcaoYa9zuM1ouPJEPLOoc_1VG3IEwkjd?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 7MT3P3K+Tcn9mEbr0zvZJA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Mon, 30 Jan 2023 17:59:43 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: EIS0BBq3jxOmz+dxfG5BX68qoDI= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/4?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	711 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/4?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 711 B (711 bytes) Hash 2bc83db4d9594c66974fc278243d13b9 69ce07585513060e0377bf7a4e6fdd35e38f702e 39cac7504ea14abba947446e72d3ab04814753842df5256bcf961523814ceef5 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/4?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=ab6ZFCwqYZ4zT8AVX1kecYm99ahi%2Bp8U767pxti8kJTr2RG6GcPN5lrQyypELlcHQiMxEbS9mOULMli1%2B%2FLa316%2Fdyn%2BCe2c4MIYkAM%3D--Wqn8JGbsMZk%2ByCGx--xfq3aKQIQIeETq2NbWcT9Q%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:43 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"c729f3648fe9e5f9f0d2414d5c718ece" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-6hP+aF4wsZCxW5aEpRDoIQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=Zl3Dd3jQcc4GstA%2BTUz%2FVIc5qZfIxz%2BIvS3vZvd8Ia9hxGTSBTmIKmKcKdpt5ao%2FevSbZ8cCE2x%2BqMxhkjyArndvRFZZ8o%2BS8P%2BH86g%3D--9Tj9Hs9Tv9i%2BXeRj--up%2FXB%2B%2B8jgqmLeCw3NT2fA%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:43 GMT; SameSite=None; secure X-Request-Id: 7a28a785-51bf-481b-bb07-1d5adb93841d X-Runtime: 0.049425 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F4?Expires=1675101643&Signature=ttvxz-oM2iPpsZFe0B2vG5Q5jKypLFzZf4Cq6KsBafVUtQTieY2ZG~9Q9bsqaLfjCudgdbyR52-qfmTQKBiUGkvOTZwULrIo2KNVwoBMG0rXaBYaabM42d6m27FclzgR19AqkXJR8O5L4k3GTSduYe5l5r-v0FEBQXCsHSkTkVjMXP45LUE7BLQQlh4yGKgYvSqfZBLpaBP2GP8xCzo03MCd7~V9bk4dxgHvnr7SdPNYk-yKE7VzGv0jlMEWXeZw6nBLfIozhQI2jkjoq-pQZZzCG9xXEfbKLfPVHzYx~L2nVFodfoKCtMyFFZAQePTPebQBfULD5THWxe0nj9ga4w__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	271 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F4?Expires=1675101643&Signature=ttvxz-oM2iPpsZFe0B2vG5Q5jKypLFzZf4Cq6KsBafVUtQTieY2ZG~9Q9bsqaLfjCudgdbyR52-qfmTQKBiUGkvOTZwULrIo2KNVwoBMG0rXaBYaabM42d6m27FclzgR19AqkXJR8O5L4k3GTSduYe5l5r-v0FEBQXCsHSkTkVjMXP45LUE7BLQQlh4yGKgYvSqfZBLpaBP2GP8xCzo03MCd7~V9bk4dxgHvnr7SdPNYk-yKE7VzGv0jlMEWXeZw6nBLfIozhQI2jkjoq-pQZZzCG9xXEfbKLfPVHzYx~L2nVFodfoKCtMyFFZAQePTPebQBfULD5THWxe0nj9ga4w__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 271 kB (271401 bytes) Hash 3e363f4d5dcb2bec5953702418031d8e 96687204e9bbd636f525de1de3d51d0c73e023fd 620759b7fbc3f7cff9d180748eb61b09b4c8592a4f92075fb52cff7567563eac HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F4?Expires=1675101643&Signature=ttvxz-oM2iPpsZFe0B2vG5Q5jKypLFzZf4Cq6KsBafVUtQTieY2ZG~9Q9bsqaLfjCudgdbyR52-qfmTQKBiUGkvOTZwULrIo2KNVwoBMG0rXaBYaabM42d6m27FclzgR19AqkXJR8O5L4k3GTSduYe5l5r-v0FEBQXCsHSkTkVjMXP45LUE7BLQQlh4yGKgYvSqfZBLpaBP2GP8xCzo03MCd7~V9bk4dxgHvnr7SdPNYk-yKE7VzGv0jlMEWXeZw6nBLfIozhQI2jkjoq-pQZZzCG9xXEfbKLfPVHzYx~L2nVFodfoKCtMyFFZAQePTPebQBfULD5THWxe0nj9ga4w__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 271401 Connection: keep-alive Date: Mon, 30 Jan 2023 14:34:50 GMT Last-Modified: Mon, 30 May 2022 10:29:26 GMT ETag: "3e363f4d5dcb2bec5953702418031d8e" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: xxO2bF4_92-o2-Zqwkev7dGXvvOcsLq8zV_HEaeaCQ445xuGjagaVQ== Age: 12295`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/5?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	712 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/5?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 712 B (712 bytes) Hash d4ce9b314c1f1c0f0bc804978d9ff19f 714bef41c8b5823bf80692cfb71e430bb7d3d80d 17c17733dca00e591438162d113b2404431c125edeb22cd664eec33dbf6da7e3 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/5?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=Zl3Dd3jQcc4GstA%2BTUz%2FVIc5qZfIxz%2BIvS3vZvd8Ia9hxGTSBTmIKmKcKdpt5ao%2FevSbZ8cCE2x%2BqMxhkjyArndvRFZZ8o%2BS8P%2BH86g%3D--9Tj9Hs9Tv9i%2BXeRj--up%2FXB%2B%2B8jgqmLeCw3NT2fA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:44 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"9d86a3028341603a3a28ea58fa519bf5" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-mcK2FLEFy+DcpPRSUv1wFg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=cCalAvrUIobGnliN5riDhs47S%2F7zuxkZ47xEww9RvA5hmJ5CZG0dPR6PCIlMo6Y2R9xQKvLvlbsLC4Zuu53nHk9KcVwNIaK6hSqWuXE%3D--nwSbmc%2BjHdtvX0Ch--tr%2Fvb7NTPvkTgAAmV%2F1srg%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:44 GMT; SameSite=None; secure X-Request-Id: 67ca6805-fa36-457a-932f-edc676cf2947 X-Runtime: 0.047462 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4028 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-m6eAEltJbKO0yo9EO+/1' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-m6eAEltJbKO0yo9EO+/1' 'nonce-vEJQ2uh6VjS1vtT0uRVx' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzM0OTIwODc2OTgxMjkxMjg5NDQ5MTg0NTczNTc5NjU5NDQ1NjA2; expires=Sat, 29 Jan 2028 17:59:44 GMT; HttpOnly; Path=/; SameSite=None; Secure t=IWIJoBf2En7WKsmAiY6lvoIT; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:44 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=IWIJoBf2En7WKsmAiY6lvoIT; expires=Thu, 29 Jan 2026 17:59:44 GMT; Path=/; SameSite=None; Secure __Host-ss=YWEu76xs6E; expires=Thu, 29 Jan 2026 17:59:44 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Sat, 29 Jan 2028 17:59:44 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Mon, 30 Jan 2023 17:59:44 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 4b57e6f25d624c7cb7cd8357d71e32e8 X-Firefox-Spdy: h2

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F5?Expires=1675101644&Signature=qtn1NMA0VYkiZHEcKOirrwAaOCIfnsTekp6zvYzZbs~FGTQ0Q5tgWYp6NYQuhWNvl6UZVDNHmjfYS0u35QHTzGoDb-CYYcXPfYYUe1aNOEWdk3cjA-E6xXbZ2i7KjssEgoOumF2ZcoBFSrTlLixx-diVfYFUCeNRCyfD9mvgUukKqY-HQYAEq~5evNSmMtwCnekFGEYJt-gGYrf5FW5kH0EUTJMiDEoC9VfRYAdpSyT4bkIWb1mYJHVEYVeTsRINcOxlEBQ1LGH8Mp5iut7n4iECAJuXkmyziJEnGCqZeWJZHYmVf0wTxZPfL6rhohjTkaEslyhkFNYmykTWdTNWRw__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	248 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F5?Expires=1675101644&Signature=qtn1NMA0VYkiZHEcKOirrwAaOCIfnsTekp6zvYzZbs~FGTQ0Q5tgWYp6NYQuhWNvl6UZVDNHmjfYS0u35QHTzGoDb-CYYcXPfYYUe1aNOEWdk3cjA-E6xXbZ2i7KjssEgoOumF2ZcoBFSrTlLixx-diVfYFUCeNRCyfD9mvgUukKqY-HQYAEq~5evNSmMtwCnekFGEYJt-gGYrf5FW5kH0EUTJMiDEoC9VfRYAdpSyT4bkIWb1mYJHVEYVeTsRINcOxlEBQ1LGH8Mp5iut7n4iECAJuXkmyziJEnGCqZeWJZHYmVf0wTxZPfL6rhohjTkaEslyhkFNYmykTWdTNWRw__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 248 kB (247862 bytes) Hash 195a37b8140ea032d3b68e8d75ecc2b7 d53c5b4ca519d76949ab25590042df677849be7a 68482507b5008b7c686b2dc4bc7482850f654f1c201babf08ac533f9909c23d9 HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F5?Expires=1675101644&Signature=qtn1NMA0VYkiZHEcKOirrwAaOCIfnsTekp6zvYzZbs~FGTQ0Q5tgWYp6NYQuhWNvl6UZVDNHmjfYS0u35QHTzGoDb-CYYcXPfYYUe1aNOEWdk3cjA-E6xXbZ2i7KjssEgoOumF2ZcoBFSrTlLixx-diVfYFUCeNRCyfD9mvgUukKqY-HQYAEq~5evNSmMtwCnekFGEYJt-gGYrf5FW5kH0EUTJMiDEoC9VfRYAdpSyT4bkIWb1mYJHVEYVeTsRINcOxlEBQ1LGH8Mp5iut7n4iECAJuXkmyziJEnGCqZeWJZHYmVf0wTxZPfL6rhohjTkaEslyhkFNYmykTWdTNWRw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 247862 Connection: keep-alive Date: Mon, 30 Jan 2023 16:36:56 GMT Last-Modified: Mon, 30 May 2022 10:29:26 GMT ETag: "195a37b8140ea032d3b68e8d75ecc2b7" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: f7SxUWKb-hL6Akh1SzqLVVueZ490LY7pM8Da7p84CSL7MxqnGvjQ-Q== Age: 4969`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/6?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	708 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/6?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 708 B (708 bytes) Hash a87b96d8ad1a6cd9d6ba6ed89215bea6 df4d320656f5525f210f6373ca32770f6e55b46f 514d2aacb8fae1360143456bdb1c4e6cfbe08a97c7260c9794a55d7da7766573 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/6?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=cCalAvrUIobGnliN5riDhs47S%2F7zuxkZ47xEww9RvA5hmJ5CZG0dPR6PCIlMo6Y2R9xQKvLvlbsLC4Zuu53nHk9KcVwNIaK6hSqWuXE%3D--nwSbmc%2BjHdtvX0Ch--tr%2Fvb7NTPvkTgAAmV%2F1srg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:45 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"f2c71a91f627cd7e264aa74555f8f46d" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-P17QwZWx4QKnZKxWzpGS+Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=KttKzk4GsSo%2BP9httQ8odlljbzvQJdU88KlxgJgJB6z13hQ1p%2FH11OUDOidDg8cGuUc0Sr%2B%2F55ruBoIY9ohRwywmn18LK%2BV5H498keI%3D--HeB70cGjy0C3Jpxo--qXELzF%2Fl7hWCzVo5J%2Fx%2BVg%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:45 GMT; SameSite=None; secure X-Request-Id: 090fdbc7-0426-47c8-8fdf-77a78e3c42e8 X-Runtime: 0.049749 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F6?Expires=1675101645&Signature=EcNZeomx8eimGVaTCtDC-6k4XK1yZb8dlYi94AVEyd7-hqY7ANMhp9RnOMyccTmuFL23ynldWnmTi6XgKC2WfNFMt0uVb90P39BKfWR7cYfJaj1odNL5sRMpBMvvY3fdOWjTWxfdfCZBU2hNaP8s5a041YMTMAEw~NDEaOl6KqJqHSVn-AkbnLWwvVPv0ZEw4kvAonOvz4vRFvv3BAnz6hWJjG0dgoSNdG3zzKvWCCpHSaVl6GrPF0sgSLUHlKRynsvmAy6ymcxtOyFL8E7EbpUTtBERbwnOOhZVdL8aDOYK2uncA8JoTlMB~uj9aPkbZY7XSrGUudSEeTwpegh5Sw__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	106 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F6?Expires=1675101645&Signature=EcNZeomx8eimGVaTCtDC-6k4XK1yZb8dlYi94AVEyd7-hqY7ANMhp9RnOMyccTmuFL23ynldWnmTi6XgKC2WfNFMt0uVb90P39BKfWR7cYfJaj1odNL5sRMpBMvvY3fdOWjTWxfdfCZBU2hNaP8s5a041YMTMAEw~NDEaOl6KqJqHSVn-AkbnLWwvVPv0ZEw4kvAonOvz4vRFvv3BAnz6hWJjG0dgoSNdG3zzKvWCCpHSaVl6GrPF0sgSLUHlKRynsvmAy6ymcxtOyFL8E7EbpUTtBERbwnOOhZVdL8aDOYK2uncA8JoTlMB~uj9aPkbZY7XSrGUudSEeTwpegh5Sw__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 106 kB (106185 bytes) Hash f4d765049c328b66ccad1e09e0834e52 0c7e68b0240f7e8269e8b852ec7d516f1a853a99 9e6256c5e2ae5d51b61d532b7db22f59c2d3341974e8a06f4dde54e7487e522f HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F6?Expires=1675101645&Signature=EcNZeomx8eimGVaTCtDC-6k4XK1yZb8dlYi94AVEyd7-hqY7ANMhp9RnOMyccTmuFL23ynldWnmTi6XgKC2WfNFMt0uVb90P39BKfWR7cYfJaj1odNL5sRMpBMvvY3fdOWjTWxfdfCZBU2hNaP8s5a041YMTMAEw~NDEaOl6KqJqHSVn-AkbnLWwvVPv0ZEw4kvAonOvz4vRFvv3BAnz6hWJjG0dgoSNdG3zzKvWCCpHSaVl6GrPF0sgSLUHlKRynsvmAy6ymcxtOyFL8E7EbpUTtBERbwnOOhZVdL8aDOYK2uncA8JoTlMB~uj9aPkbZY7XSrGUudSEeTwpegh5Sw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 106185 Connection: keep-alive Date: Mon, 30 Jan 2023 16:36:58 GMT Last-Modified: Mon, 30 May 2022 10:29:26 GMT ETag: "f4d765049c328b66ccad1e09e0834e52" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 3Owvhd0Av8laSQ5cqlhNnCSFS3IWSaHmsy54-_3AWrO74lfwHPRZwA== Age: 4968`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/7?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	712 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/7?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 712 B (712 bytes) Hash 0720ea5d6be401a05dbe6c171d53398a 7ddc21a5e1b2c9eadd24d8533c0020570ea94a6b a02ab1eef544f172943e128f13414b70b7fa133c30d57354eb9179b67e2f84bd HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/7?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=KttKzk4GsSo%2BP9httQ8odlljbzvQJdU88KlxgJgJB6z13hQ1p%2FH11OUDOidDg8cGuUc0Sr%2B%2F55ruBoIY9ohRwywmn18LK%2BV5H498keI%3D--HeB70cGjy0C3Jpxo--qXELzF%2Fl7hWCzVo5J%2Fx%2BVg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:45 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"91df25f35d7dc2cb08cd0f73121342b0" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-3L9+ZdUBYV8f3Aka/MlhZQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=vXWFj2%2Fo6gZUsoVfV%2F7FhZwZPJhmKf0J%2BdFo9X5qkWn1rFU%2BYGW5VZEWMRRYzvlsZmYkWn7z67GGUTzxRvosd3IVx5PdL45I12hxP%2Fs%3D--i4XzJ4Qf7C6vJ0VI--LxKjYzPCs%2FsF1HRVSgBYGA%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:45 GMT; SameSite=None; secure X-Request-Id: 3a49e933-099e-47d7-91d2-6b4fe9d06ef6 X-Runtime: 0.048011 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F7?Expires=1675101645&Signature=vIKNBGTDtzfb2PJHSV6duqz8MWaYhCIcuDsfg0yyoB~mYk7Nfp3tmykuzVhlhjOT1OvpoLmQ~QmCNCS9XiDkv65ZbHrMcOe9eqpEvgAWIrDi0OsWAZHN9zkeyTKujpX5zpXCDl3x4-jc-YjQpXFcIkI3qqnwi-BuZqEfUNLBF2V~BvT~QUQsugZd0vwKjyk7sXbkIElnScXsCHMYAg1SSz2ZxfKLuFcRmU1zegWMNUiLCAdTxG7YsgnLhiSoworK1y7gEzQqy0f45jvio0DsChDEXTgEfE5IQ6PfJbbtR7L~f7DGA4SF6xGkNLyNJrGbTT-xsSt6BBf3TpyBRg873w__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	592 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F7?Expires=1675101645&Signature=vIKNBGTDtzfb2PJHSV6duqz8MWaYhCIcuDsfg0yyoB~mYk7Nfp3tmykuzVhlhjOT1OvpoLmQ~QmCNCS9XiDkv65ZbHrMcOe9eqpEvgAWIrDi0OsWAZHN9zkeyTKujpX5zpXCDl3x4-jc-YjQpXFcIkI3qqnwi-BuZqEfUNLBF2V~BvT~QUQsugZd0vwKjyk7sXbkIElnScXsCHMYAg1SSz2ZxfKLuFcRmU1zegWMNUiLCAdTxG7YsgnLhiSoworK1y7gEzQqy0f45jvio0DsChDEXTgEfE5IQ6PfJbbtR7L~f7DGA4SF6xGkNLyNJrGbTT-xsSt6BBf3TpyBRg873w__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 592 kB (592253 bytes) Hash 38677eedc124e60c6f32e027c7e805be bc619c0732346af9a573d66ca0ecc812aa7c025f 35c71e677d2ef5fac2dbab33e3abac345d00bc532e2468b3e4373433e54a4f28 HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F7?Expires=1675101645&Signature=vIKNBGTDtzfb2PJHSV6duqz8MWaYhCIcuDsfg0yyoB~mYk7Nfp3tmykuzVhlhjOT1OvpoLmQ~QmCNCS9XiDkv65ZbHrMcOe9eqpEvgAWIrDi0OsWAZHN9zkeyTKujpX5zpXCDl3x4-jc-YjQpXFcIkI3qqnwi-BuZqEfUNLBF2V~BvT~QUQsugZd0vwKjyk7sXbkIElnScXsCHMYAg1SSz2ZxfKLuFcRmU1zegWMNUiLCAdTxG7YsgnLhiSoworK1y7gEzQqy0f45jvio0DsChDEXTgEfE5IQ6PfJbbtR7L~f7DGA4SF6xGkNLyNJrGbTT-xsSt6BBf3TpyBRg873w__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 592253 Connection: keep-alive Date: Mon, 30 Jan 2023 16:37:00 GMT Last-Modified: Mon, 30 May 2022 10:29:27 GMT ETag: "38677eedc124e60c6f32e027c7e805be" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: yP7wsHZIP_PDlXT-If-IiDQf5YGX0-0cmmY-riMOfqtH11znvPrkbw== Age: 4967`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/8?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	709 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/8?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 709 B (709 bytes) Hash ab6ea7e8f0b0ab76befe3d96796e757b 6f056177de6c00b9fb268cb21f3ae1a3761aa6e9 51d37dee522be8b47f4297fc15660f0a7d6148e155adb9728fab9e0f6725dd31 HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/8?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=vXWFj2%2Fo6gZUsoVfV%2F7FhZwZPJhmKf0J%2BdFo9X5qkWn1rFU%2BYGW5VZEWMRRYzvlsZmYkWn7z67GGUTzxRvosd3IVx5PdL45I12hxP%2Fs%3D--i4XzJ4Qf7C6vJ0VI--LxKjYzPCs%2FsF1HRVSgBYGA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:46 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"18c3cc85845f4b135340f840ff2e829e" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-Gbce5nU9AwYc2cnzLOvCFA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=pMKGGPa7MAh0oUwkTLOu3eCEfS%2BKqn6r4W3gRBIPCSHcHfFo8kVL%2FixbbTNtngZCa1UDYj6ebw2w1PjaTYlOCqUp2t5YOncgpz4ruGQ%3D--SVdPyAUg4DwoRMlp--QC3IDb9ma0L3usv1Rtiuww%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:46 GMT; SameSite=None; secure X-Request-Id: 1e1f6278-1aa8-4711-8996-9da4e12e1627 X-Runtime: 0.073881 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F8?Expires=1675101646&Signature=bBzbim781GOdlw-BmoNIm9zc-tlf~M-8bnAUMLJMPurqwJIlxLbqYwVgJmefV4YA3BpEoxllP-pM5c3BJB-ZBS2e~2ZCzehwO5rcYeRyGDOj3RG~aAd1grXfh2gMxrsUxKqDxlJ2FnYN-lRqPf0ydglJOCxz1L9P0g31BfdY6TVgJAMDcFOkPFp4w3lUJj1cmTPqgZ7GudsF1F-ma2SP1ghBuE2GOK93kt9cLBuyqWtW3gGR5IBS2j-eZNdvEQqQfP3FP8XoWJgnuhMB28M1rbhU53LHdLWfs~SndFCiWC-rqifrmL~8t7WVqDaCgzjqtyfZ519uZh-cq4Bbj1CRJg__&Key-Pair-Id=K3IVFO0KFGPSF4	54.230.245.210	200 OK	277 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F8?Expires=1675101646&Signature=bBzbim781GOdlw-BmoNIm9zc-tlf~M-8bnAUMLJMPurqwJIlxLbqYwVgJmefV4YA3BpEoxllP-pM5c3BJB-ZBS2e~2ZCzehwO5rcYeRyGDOj3RG~aAd1grXfh2gMxrsUxKqDxlJ2FnYN-lRqPf0ydglJOCxz1L9P0g31BfdY6TVgJAMDcFOkPFp4w3lUJj1cmTPqgZ7GudsF1F-ma2SP1ghBuE2GOK93kt9cLBuyqWtW3gGR5IBS2j-eZNdvEQqQfP3FP8XoWJgnuhMB28M1rbhU53LHdLWfs~SndFCiWC-rqifrmL~8t7WVqDaCgzjqtyfZ519uZh-cq4Bbj1CRJg__&Key-Pair-Id=K3IVFO0KFGPSF4 IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type PNG image data, 2637 x 1864, 8-bit/color RGBA, non-interlaced\012- data Size 277 kB (277155 bytes) Hash 57696ee60b4f3f67af253e70112c897b 633e38fc7fee0f6786844135f225692c8afbfe5d 6519b5839a02b3669c182fc1ce7cadc1464d6f2d921f3a4682b1b3ab86d505bd HTTP Headers GET /docs%2Fa8aa9dcf-a65a-43fa-8735-307e53061ad8%2Fv2_images%2F8?Expires=1675101646&Signature=bBzbim781GOdlw-BmoNIm9zc-tlf~M-8bnAUMLJMPurqwJIlxLbqYwVgJmefV4YA3BpEoxllP-pM5c3BJB-ZBS2e~2ZCzehwO5rcYeRyGDOj3RG~aAd1grXfh2gMxrsUxKqDxlJ2FnYN-lRqPf0ydglJOCxz1L9P0g31BfdY6TVgJAMDcFOkPFp4w3lUJj1cmTPqgZ7GudsF1F-ma2SP1ghBuE2GOK93kt9cLBuyqWtW3gGR5IBS2j-eZNdvEQqQfP3FP8XoWJgnuhMB28M1rbhU53LHdLWfs~SndFCiWC-rqifrmL~8t7WVqDaCgzjqtyfZ519uZh-cq4Bbj1CRJg__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 277155 Connection: keep-alive Date: Mon, 30 Jan 2023 16:37:03 GMT Last-Modified: Mon, 30 May 2022 10:29:26 GMT ETag: "57696ee60b4f3f67af253e70112c897b" x-amz-server-side-encryption: AES256 Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: oq5aD28sftCblZVd46ZRU73UdNXU_obi26WehNNlt4w82Y-39h8y4Q== Age: 4964`

	docsend.com/view/pfj7gagc6j7pcx7d/page_data/9?viewLoadTime=1675101579&timezoneOffset=0	3.220.57.224	200 OK	716 B
URL HTTP/1.1 docsend.com/view/pfj7gagc6j7pcx7d/page_data/9?viewLoadTime=1675101579&timezoneOffset=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators Size 716 B (716 bytes) Hash 0610fb97ca81b8a6e8618a32f879e017 85099a4dfd4268db75462733785f571ed0c1ae6e 7f013e61a1ff7bd04183fafff136cd61f3393bda00d0df5ab004e397aca50c2c HTTP Headers GET /view/pfj7gagc6j7pcx7d/page_data/9?viewLoadTime=1675101579&timezoneOffset=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: sG7RB472Cx+Lc7i7S2/1GZrZVnqSzddGGRT3ijqnl4M/TGHMNArs8yNuPvgf0j2dAgyjamVonJbr72p/Sm/gIA== X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://docsend.com/view/pfj7gagc6j7pcx7d Cookie: mutiny.user.token=38f4f22f-b1c1-40a5-b30f-bd31561b2ae2; mutiny.user.session=51961516-a235-4fa2-b6fd-4b0627951ef3; mutiny.defaultOptOut=true; intercom-id-lv6lji7h=f193c915-2d92-48c7-8e54-a31752cb2057; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7f0d6e69-2ae9-4279-8bf4-4bb479ceebd1; _v_=pMKGGPa7MAh0oUwkTLOu3eCEfS%2BKqn6r4W3gRBIPCSHcHfFo8kVL%2FixbbTNtngZCa1UDYj6ebw2w1PjaTYlOCqUp2t5YOncgpz4ruGQ%3D--SVdPyAUg4DwoRMlp--QC3IDb9ma0L3usv1Rtiuww%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=fd2ba7dbdb8f153e896cbddf9a50b903; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:59:55.690Z","expireDate":"2023-07-30T17:59:55.690Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1} Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 17:59:47 GMT Content-Type: application/json; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"6a2d22f89aa3029301d1ca83a7ac162a" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-UkO2BxGDok0HJDJJySV1BA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=n4cZaOVywTONmqf7VcZ5e1miWy9vasv%2BAvPhasHNj9TVzcqRhgL0MNfyXBMiMkx%2FkhXGQIpluFOQRQdF9KbRJkk6byZMvjk%2F6heHmYA%3D--i2hpC503ML8ySA1b--aPt0Po6XdzpHen8RWuQ62g%3D%3D; domain=.docsend.com; path=/; expires=Tue, 30 Jan 2024 17:59:47 GMT; SameSite=None; secure X-Request-Id: deb39e52-d6a4-48d6-abaa-7b801731474d X-Runtime: 0.064556 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-b8f188b6b2e52ad287e1.js	54.230.245.210	200 OK	0 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-b8f188b6b2e52ad287e1.js IP 54.230.245.210:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /packs/js/javascripts/presentation-b8f188b6b2e52ad287e1.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Mon, 30 Jan 2023 14:20:37 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Mon, 30 Jan 2023 13:59:49 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: JknARIqvnTIzGTdHpGRvUDfLoLf-qztIXVq-DGtD1ovGrnFfoRGJIQ== Age: 13143

	fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 30 Jan 2023 17:59:40 GMT date: Mon, 30 Jan 2023 17:59:40 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Cookie: gvc=MTk3ODQ5Nzk3MzQ1NjA2NDU0MTI2OTIxNTAwOTk3NjA0NTcxMTE0; t=LHVqUt2hb-UNkcngq7KWHuxV; __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; locale=en; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:30:26.400Z","expireDate":"2023-07-30T17:30:26.400Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":2} Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 307 Temporary Redirect cache-control: no-cache,no-cache, no-store content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent referrer-policy: strict-origin-when-cross-origin set-cookie: t=LHVqUt2hb-UNkcngq7KWHuxV; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; expires=Thu, 29 Jan 2026 17:59:40 GMT; Path=/; SameSite=None; Secure __Host-ss=OO2sJ87UFc; expires=Thu, 29 Jan 2026 17:59:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChCPxZIS2RmzolZVTsCkKeh+EIyL4J4GGi5BRm56T2lxdGpLVHh2bG5pYWl0Vjhlb1lCbUVOZld3NHR2NGY4SktldVlIaWpn; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Mon, 30 Jan 2023 17:59:39 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: f1ccc06161394df6a6cc4ece45f39edc X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: gvc=MTk3ODQ5Nzk3MzQ1NjA2NDU0MTI2OTIxNTAwOTk3NjA0NTcxMTE0; t=LHVqUt2hb-UNkcngq7KWHuxV; __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; locale=en; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:30:26.400Z","expireDate":"2023-07-30T17:30:26.400Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":2}; __Host-logged-out-session=ChCPxZIS2RmzolZVTsCkKeh+EIyL4J4GGi5BRm56T2lxdGpLVHh2bG5pYWl0Vjhlb1lCbUVOZld3NHR2NGY4SktldVlIaWpn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK cache-control: no-cache,no-cache, no-store content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-H3mp+IjRf3Brd+5qqHPL' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-H3mp+IjRf3Brd+5qqHPL' 'nonce-ovVrF7XnbbD9e7lBefdF' referrer-policy: strict-origin-when-cross-origin set-cookie: t=LHVqUt2hb-UNkcngq7KWHuxV; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; expires=Thu, 29 Jan 2026 17:59:40 GMT; Path=/; SameSite=None; Secure __Host-ss=OO2sJ87UFc; expires=Thu, 29 Jan 2026 17:59:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 29 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Mon, 30 Jan 2023 17:59:40 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 9cce88927ba644e2878975fc53643b0b X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent_service	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MTk3ODQ5Nzk3MzQ1NjA2NDU0MTI2OTIxNTAwOTk3NjA0NTcxMTE0; t=LHVqUt2hb-UNkcngq7KWHuxV; __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; locale=en; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-30T17:30:26.400Z","expireDate":"2023-07-30T17:30:26.400Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":2}; __Host-logged-out-session=ChCPxZIS2RmzolZVTsCkKeh+EIyL4J4GGi5BRm56T2lxdGpLVHh2bG5pYWl0Vjhlb1lCbUVOZld3NHR2NGY4SktldVlIaWpn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 307 Temporary Redirect cache-control: no-cache,no-cache, no-store content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service referrer-policy: strict-origin-when-cross-origin set-cookie: t=LHVqUt2hb-UNkcngq7KWHuxV; Domain=dropbox.com; expires=Thu, 29 Jan 2026 17:59:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=LHVqUt2hb-UNkcngq7KWHuxV; expires=Thu, 29 Jan 2026 17:59:42 GMT; Path=/; SameSite=None; Secure __Host-ss=OO2sJ87UFc; expires=Thu, 29 Jan 2026 17:59:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Mon, 30 Jan 2023 17:59:41 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: e93d2c3a8a5344c0b9c7ed03dd2d17c0 X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.093ba5d6.js	54.230.111.118	200 OK	0 B
URL HTTP/2 js.intercomcdn.com/vendor.093ba5d6.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vendor.093ba5d6.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 108273 last-modified: Mon, 30 Jan 2023 15:38:46 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: 68hR4SddAYJ4YSqUMfba8rnYV7YKVEHn accept-ranges: bytes server: AmazonS3 date: Mon, 30 Jan 2023 17:40:44 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "b07617332a2da4edc9e0f73e8c835864" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: EnEmsKEW1JCRiRJ07duHoMQBOlhWLRM55JEen6IL-CJfE8uXbH92Eg== age: 1139 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML