proxy.quickmail.com/click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next
301 Moved Permanently 0 B URL HTTP/1.1 proxy.quickmail.com/click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Cowboy
Date: Wed, 18 Jan 2023 04:53:34 GMT
Connection: keep-alive
Content-Type: text/html
Location: https://proxy.quickmail.com/click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next
Transfer-Encoding: chunked
Via: 1.1 vegur
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10849
Expires: Wed, 18 Jan 2023 07:54:23 GMT
Date: Wed, 18 Jan 2023 04:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14049
Expires: Wed, 18 Jan 2023 08:47:43 GMT
Date: Wed, 18 Jan 2023 04:53:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14018
Expires: Wed, 18 Jan 2023 08:47:12 GMT
Date: Wed, 18 Jan 2023 04:53:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 04:49:19 GMT
content-type: application/json
age: 255
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9v4sKYMZRnEW1iCsOcl/qjIIe7YStQ8hD1kCkREVRKVpd+n1OLmFgpDME99SYoINR4fpTTUsPBU=
x-amz-request-id: XMBE134CV4516RSW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 04:45:16 GMT
age: 498
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 04:53:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7f60796205be98a1dc49d4b4cccedd36
8a4a4cdaf5ee7b9d0af9db0480424bc1789e8031
5bbbe2cb52f6fef4b47125e9d127499e94b0f0a66eb46aaeb1be0582f98fa7ce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5BBBE2CB52F6FEF4B47125E9D127499E94B0F0A66EB46AAEB1BE0582F98FA7CE"
Last-Modified: Mon, 16 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19543
Expires: Wed, 18 Jan 2023 10:19:18 GMT
Date: Wed, 18 Jan 2023 04:53:35 GMT
Connection: keep-alive
proxy.quickmail.com/click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next
301 Moved Permanently 107 B URL HTTP/1.1 proxy.quickmail.com/click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next
IP
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 1d6f47d78a7697ba909d7a66db11fbf6
ca5607a2670eb83679f37f266bed405464ef8db8
fbe4439ce0d7da062b2ff1fc08905d41b2c92c3607f7b1d4bc067e077b3cf5b5
Analyzer Verdict Alert fortinet Phishing
GET /click/1/533194640/5ed94d26f39397d6e68c28ede26771e2/c38599aefa771ad59a2f2988bc6cb4be/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://docsend.com/view/ixrtsfq6baghdvci
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
X-Request-Id: 7d265991-2e51-42e3-8d08-8537bb1a1bc3
X-Runtime: 0.029046
Server:
Date:
Last-Modified:
Strict-Transport-Security: max-age=63072000; includeSubDomains
Transfer-Encoding: chunked
Via: 1.1 vegur
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 04:48:57 GMT
age: 278
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4689
Cache-Control: max-age=106283
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:35 GMT
Etag: "63c66529-1d7"
Expires: Thu, 19 Jan 2023 10:24:58 GMT
Last-Modified: Tue, 17 Jan 2023 09:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 471 B IP
Hash 63ec55ec31b9e544ae14ae034a51c751
6864f869ebc0c35e8c91fb1d0176dc20edd635bd
3b85ea34cb950b1617327fb7fbac2bc99a0fdda0482265f73b3d6ba5bdc24cb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 04:53:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 03:57:43 GMT
Expires: Tue, 24 Jan 2023 03:57:42 GMT
Etag: "6864f869ebc0c35e8c91fb1d0176dc20edd635bd"
Cache-Control: max-age=514446,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b4ba50debcb4ee-OSL
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: famUogXxXcDk8qy1oDvglw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ab6nJ5sU826IWw6NZY1auzi6ZQ8=
docsend.com/view/ixrtsfq6baghdvci
200 OK 14 kB URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5461)
Hash 89945fa1bdd4431eeab17a0c859221cb
c8e3312ffa5485e9fd3217cfcce06517a7a265e2
30fbb973186620bd07c41ae62a24a5ed64914c7a2efa1b2194c6b406d7845b15
GET /view/ixrtsfq6baghdvci HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:35 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"d4a116b0ac4eadd879379d0fa8bce5c4"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-RM4K8DcWrl56QaUm4AkNcw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:35 GMT; SameSite=None; secure
_us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Sun, 18 Jan 2043 04:53:35 GMT; SameSite=None; secure
_dss_=d36b8beb689b078364b24b5fb25eaa41; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None
X-Request-Id: ff8cd997-d97b-47b3-a5a9-778c5f8948e9
X-Runtime: 0.098796
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js
200 OK 14 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js
IP
File type ASCII text, with very long lines (44763), with no line terminators
Hash fead8e8f6ce7597cf5b222435f880933
bcc41c5866acd83b64034126abb836455464023f
5707fe99d46a8836ab38f8070a97a0aa51ebadc0f693d83a740d4945f5f89c37
GET /packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Tue, 17 Jan 2023 21:54:31 GMT
Last-Modified: Tue, 17 Jan 2023 19:36:12 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BQ5nPDVG7DWVzSlPN9hGvBYcvRws3iQisHIRhUzYlB4tTLkLZevi4A==
Age: 25145
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js
200 OK 2.1 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js
IP
File type ASCII text, with very long lines (65445)
Size 2.1 MB (2099824 bytes)
Hash cfb5d1bf904f285c4694a2d9451a77f1
5b89186dd04ae65f16c95e2f5820bfad21d102d8
be17ee84a1a76a8bb02c8d78f2066a3894e409d18eeb51f84dcd153b6db02811
GET /packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Tue, 17 Jan 2023 22:46:58 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z_8OYKkkalfaK_AaWMxRxRKr-1EFkt4ZGoITG6mTi6tesMwVVOVqkQ==
Age: 21998
d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-cc45d76f.css
200 OK 88 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-cc45d76f.css
IP
File type Unicode text, UTF-8 text, with very long lines (65517)
Hash 67528b329e7332a144158d6ae0a74e36
e987384350f3c04f16de6d744e90689e8cf5ddd9
d76ae7ec2dfb6d0444a7576da37cda39b60efac33fe07a180f3ca4966a47cfbb
GET /packs/css/stylesheets/presentation-cc45d76f.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Tue, 17 Jan 2023 22:46:52 GMT
Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SNdWCVShTDDxub-_n5Dfy-Z9dzG5KgZGKfMf7SYcAm_babOKr5_bRA==
Age: 22004
ocsp.digicert.com/
200 OK 471 B IP
Hash c737c7ab4095c23b2852f9f69d9dc49d
6861f0e35dea6b8b44000ca3345f49bfc21ad3d0
f557eb67d3420d5e0f2e4b974686f4c3591db342ba27ab76af7effd042522ca5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2336
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:36 GMT
Last-Modified: Wed, 18 Jan 2023 04:14:40 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2b02c407fd912449a1b278f0bf3d8574
817bcff5b7c0444426b19027c772bddce84cf130
67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
200 OK 43 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data
Hash 93b6f18ec99bcb7c3fa7ea570a75e240
60b9e3062fe532cbc18b897fac542c56a03544c7
43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db
GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 43308
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Fri, 13 Jan 2023 21:46:01 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
Date: Tue, 17 Jan 2023 04:55:16 GMT
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 06J2I9f8v7dg6j7YmDYmBbHMxrgoFCxHG3Qpss1cxTiqYGBCBSXYMw==
Age: 86300
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
200 OK 46 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data
Hash dfc5e24cbc1b134e0c00c61e84ec999a
d3b1a8ef1d0f6f9162986479252570525719f203
b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3
GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 46188
Connection: keep-alive
Server: nginx
Date: Tue, 17 Jan 2023 23:24:43 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YRH092LH_1Sv-5O0f6CnYJDafBVqog822vDMPTy3K6QdvRso3xGCAw==
Age: 19733
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
304 Not Modified 0 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 17 Jan 2023 21:58:17 GMT
HTTP/1.1 304 Not Modified
Connection: keep-alive
Date: Wed, 18 Jan 2023 04:53:36 GMT
Server: nginx
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lTs9eJN-Pd6KhQO4bZ8pDzE_gn_AXJIjY08Q-4wWFD72ztwIilYARg==
Age: 19733
ocsp.digicert.com/
200 OK 471 B IP
Hash 7c58acc8ab66874496f33940fa6288ba
9df520efafb7b58335785c3b28b733021d57d659
b4bcd40c5504c7f69649d1b0ee488ef49e4ff06c4ac7d25174b346dee6ff06a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:36 GMT
Last-Modified: Wed, 18 Jan 2023 03:11:41 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 7c58acc8ab66874496f33940fa6288ba
9df520efafb7b58335785c3b28b733021d57d659
b4bcd40c5504c7f69649d1b0ee488ef49e4ff06c4ac7d25174b346dee6ff06a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6115
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:36 GMT
Last-Modified: Wed, 18 Jan 2023 03:11:41 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
200 OK 70 kB URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
IP
Hash f062c1a0640ba6f5ffb962655d0de005
e719bf2427f781ed64dae608b076d884e797cb59
1ac2ee3a479f493cf358f4a3121b7c9576d706edccae688ba561a05e0a6c4f52
GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Cookie: gvc=MTY0NjI0MjYyNzAxMDE1Mjk4MTIyNzIyMDQ2NTUyNzY2NzY2NjQx; t=el8rFeaVgXfPmpRovZyQ70OO; __Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; locale=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-cache, no-store
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-jdCfaJ0Cey01Xoqe4e9J' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-jdCfaJ0Cey01Xoqe4e9J' 'nonce-+dqhArjrrgCI7b64fw77'
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=el8rFeaVgXfPmpRovZyQ70OO; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:36 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; expires=Sat, 17 Jan 2026 04:53:36 GMT; Path=/; SameSite=None; Secure
__Host-ss=zYrnPic_dc; expires=Sat, 17 Jan 2026 04:53:36 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
__Host-logged-out-session=ChAflin%2FFQcUItc19HCEHjTgEND2nZ4GGi5BRmhLQ3pnckpzaDU5Z1NQTEpyNWN5OEZmRmxMWUk2c0tWX1VCeTRsdWx2T2JR; HttpOnly; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-server-response-time: 30
x-xss-protection: 1; mode=block
content-type: text/javascript; charset=UTF-8
date: Wed, 18 Jan 2023 04:53:36 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: b2ae06e2d0314897877de7aff3fbcc6d
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17793
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 04:53:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17793
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 04:53:37 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17793
Expires: Wed, 18 Jan 2023 09:50:10 GMT
Date: Wed, 18 Jan 2023 04:53:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 24210
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 160148de-85b1-4456-a580-e079f391f979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gErTIAMF_eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-52efcd642bd209373b16cf72;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ARZobaKhEsHSEJdma3SXwCn_IKwRJaDbgjHfq_p_0HypKFWoqJIOJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:52:59 GMT
age: 25238
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 816accd72419764cabc1d038af58446c
ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08
d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 00:41:55 GMT
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
age: 15102
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 5061
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26fa7bd40b5c3a3b5a6f95e7fca843b9
d8064f74f1e40bf6be4ea8ab4e319db22026c462
3e7744acf3e7ace6931c28cb5a5d3d7a77d9b97855b864c5c774368f2d0719c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7361
x-amzn-requestid: 54e3621a-ec24-4d56-85bf-84239fa7811e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e23ZvGtnIAMFivg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5d2a4-7ce0e7924c03aeaa3ea684c3;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 22:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hamm4_4ud3QWXK2EeTcYUSN7ot6m-d-1z_NN29tSFYP25Itmz25jaA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:18:31 GMT
age: 23706
etag: "d8064f74f1e40bf6be4ea8ab4e319db22026c462"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:53:53 GMT
age: 25184
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3995
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-d2R9vtX1ov9MLjIzKvV8' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-d2R9vtX1ov9MLjIzKvV8' 'nonce-eWHtLckLjLrvD9e/WLtm'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MjU1NDU5MTEyNDgxNzY3MzkyOTcxMjA2MDEzMzUwMjczMTQzOTY1; expires=Mon, 17 Jan 2028 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=mBzn3FfZTD86Fryz-ieavray; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=mBzn3FfZTD86Fryz-ieavray; expires=Sat, 17 Jan 2026 04:53:37 GMT; Path=/; SameSite=None; Secure
__Host-ss=aHOS8gQ-O0; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:53:37 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Wed, 18 Jan 2023 04:53:37 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: f3a85e16059c4f9fa99466810df66fb4
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-GA+JfIpUaMpS9KAt0fzu' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-GA+JfIpUaMpS9KAt0fzu' 'nonce-4SBmoNKHuO0GXIpWalTo'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=NzA2MDQyMTc4Mjc3MzM5NzAzNTM0MTE1Njg5Nzc2NDgyMzE0Mjc%3D; expires=Mon, 17 Jan 2028 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=XoEFFMVQLnIlMsx6gTt1J18B; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=XoEFFMVQLnIlMsx6gTt1J18B; expires=Sat, 17 Jan 2026 04:53:37 GMT; Path=/; SameSite=None; Secure
__Host-ss=Uena4Vu6zk; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:53:37 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Wed, 18 Jan 2023 04:53:37 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: add92f4a566a4bf99ee612c75d501f01
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
200 OK 2.4 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
IP
File type PNG image data, 207 x 40, 8-bit colormap, non-interlaced\012- data
Hash 0b50c78d0f0f86275c8f61c4b205b457
868bea9e3911611556fa257c4f68be3cf9dc91ce
a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19
GET /assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2430
Connection: keep-alive
Server: nginx
Last-Modified: Wed, 06 Jul 2022 19:07:24 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
Date: Tue, 17 Jan 2023 07:31:28 GMT
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VaA6x3Jrygp2-oVL351IIEmGAx8PLPeEiCPt6MOOEzyVCetu1uA_xg==
Age: 76929
d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
200 OK 49 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
IP
File type GIF image data, version 89a, 144 x 144\012- data
Hash ceb150ad0df5017df3c4f3599cd61779
e61e9bbd8a97d9b544b131e0340e371b9f9bf2d8
216a694fc417dce27076f118e45ca73ead42a1be5004a8550eeca3e99af3ea02
GET /public/loading_images/large-loader.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 48903
Connection: keep-alive
Last-Modified: Mon, 23 May 2016 23:39:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 17 Jan 2023 06:38:22 GMT
ETag: "ceb150ad0df5017df3c4f3599cd61779"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ED3EVpl0iZRUBXo8sGPGJSa6JBMOqGf9atRUaQjCOGiJjvTTpVKZgw==
Age: 80116
d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
200 OK 43 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /public/blank.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Sat, 12 Apr 2014 01:42:38 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 17 Jan 2023 16:32:59 GMT
ETag: "f837aa60b6fe83458f790db60d529fc9"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DIdhdrNzqscVl2C6LhJmnzJWqqbx8DljEp1IY_boLD0wa2jJKDIL4w==
Age: 44439
docsend.com/metrics/events
204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------24180062298109538072537177306
Content-Length: 788
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-tCHGKLXpTIlU5jQOvuMnUA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 5a067360-8ef7-438e-8b47-471341fb4b40
X-Runtime: 0.010821
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e7d3349e6da76cd19f99fe1c04096482
808decdfe73ff4f6a6fecca63f35fafc9d774f03
6cda8ccb829aca73ca5a2ebb589e69ace81033776ffb502b9def93bcff04fb4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d5doxliz2zm8u.cloudfront.net/packs/media/preso/stats-page-background-1e262cd3.png
200 OK 41 kB URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/packs/media/preso/stats-page-background-1e262cd3.png
IP
File type PNG image data, 550 x 490, 8-bit colormap, non-interlaced\012- data
Hash 4e39837566ec7d68160eef6af1d2bc11
b8046a7413e42c708b24c7eed5366c2d6d91829d
2bd40acd16e9487ad24ac742b315be386ddf74e823943f93265bae785aaf5867
GET /packs/media/preso/stats-page-background-1e262cd3.png HTTP/1.1
Host: d5doxliz2zm8u.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 41139
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 01:52:09 GMT
Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -QPNjz8Q5RwJ1PQMMxtz_FcE09TDh4SDm4nzfXLJm63uGkY4kzQHcA==
Age: 10888
docsend.com/view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674017615&timezoneOffset=0
200 OK 712 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 37e6bb1a2198638dc084b87a11e868e8
22f44b0ff871b1c2207bc2f970bdbdaf02c67687
822382f03d7501a1063ec38a082144b730d8f684bb8d9ce18648efe0df0bd7cc
GET /view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"e474bc7111f58693e14bd6e4a30ba7c3"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-RgMInt5gSDW0X1D5xJPLYA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=NRScT%2FXqkwGW7GH6n%2Ff92Bo%2Bpj0fWxlV93XOkKQUpb5hM8QdrIZhG%2B0WO%2B7tbf9y7UQsvuXledk2BnJEy%2FaaY2mrvCQbL%2FENYqMZDvA%3D--FZfMHZTR43PpE9x%2F--w32o4F%2B2HFBwz3Ohtyh8uw%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:37 GMT; SameSite=None; secure
X-Request-Id: 36decfb6-2914-463e-95e0-b65c81739c0a
X-Runtime: 0.045007
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false
200 OK 854 B URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash dc63fb23d6563676b3090bae3f02ccde
dd6c4202705f760dd5744caee7ccb31f703fc880
c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1
GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1
Host: consent.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Cookie: t=el8rFeaVgXfPmpRovZyQ70OO; locale=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 854
last-modified: Tue, 06 Sep 2022 19:00:36 GMT
x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ
server: AmazonS3
date: Wed, 18 Jan 2023 02:47:42 GMT
etag: "dc63fb23d6563676b3090bae3f02ccde"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6FAj7AG08Errzx-LKcgj56QjIee1AKWRFpdBzo5-JzyUE1KSe-J_rQ==
age: 7556
X-Firefox-Spdy: h2
lh6.googleusercontent.com/-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg
200 OK 2.0 kB URL HTTP/2 lh6.googleusercontent.com/-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg
IP
File type PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced\012- data
Hash 9aa5f84c7bd72248d7e4ca9b420bf092
b6532a3bfc330c5ed8d0ffc8509cebbc354b215a
393feddec6129d8f5609b8839ddcacb886106e991f40ac7ce40ca3ace47ad88f
GET /-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 19 Jan 2023 04:53:37 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 18 Jan 2023 04:53:37 GMT
server: fife
content-length: 2036
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
docsend.com/metrics/properties
204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/properties
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/properties HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-gvEA5/wzeYEUQsh1kjvPug=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 6c18cf0b-9393-4883-b0b4-270b4477f3f0
X-Runtime: 0.010721
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
docsend.com/favicon-196x196.png
200 OK 4.1 kB URL HTTP/1.1 docsend.com/favicon-196x196.png
IP
File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data
Hash 6664c3890e329c7609151e0081f5e7cb
6216d5de79d8b245676a86f8b862880837345e2a
8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568
GET /favicon-196x196.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
Content-Type: image/png
Content-Length: 4131
Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e7d3349e6da76cd19f99fe1c04096482
808decdfe73ff4f6a6fecca63f35fafc9d774f03
6cda8ccb829aca73ca5a2ebb589e69ace81033776ffb502b9def93bcff04fb4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 04:53:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
docsend.com/favicon-16x16.png
200 OK 393 B URL HTTP/1.1 docsend.com/favicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a8c678babc40c4ac6d8c70fc560094d4
66002c0719ddbd75c837f5a939689ea6df13b6dc
a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1
GET /favicon-16x16.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
Content-Type: image/png
Content-Length: 393
Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
docsend.com/metrics/events
204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------3671984868287643852651726813
Content-Length: 1072
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=5TBfxCW83yB3PUDYfXSsesnSH7LKxbvP4JwRw1tQCLrd6tg3%2FrjpGoDfq8VQwx5Q%2BrXHoyYC7lE8M0kNa1ptVHV%2BdvnZLkBef56oBVQ%3D--%2Fv3PDHyl%2BXNRsnsl--QTatWSLlCWTvB6KBqP3dkw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:37 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-juVnEWshDjBWbRC7xSaFCw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: cf36e3a1-45a5-40e5-850d-dbe5df4093e6
X-Runtime: 0.014810
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674017677&Signature=Di6GLelfGwT7AUDxr3QbA88Xbx6Nhh~4X6hucnSEjsN4gQ4oCg8DyeklbIHBoow70IR78FJs1Anx7jyFA7RNr-tNq7sICIHPrUjj2wsGgE~PHSXO4O~cyT0qXiW9DkAJqAiAhXAWq69JPblcnu9M~JrXFs9JqHBRIZkUVGXQRXaPcVFuHzhi9kK7Vola-LNoPHqfo28K-wBeQbzR1~m3kiGLH9XeB4s71aFYLRR7gBGLkh~cUG~W4QVQCBdn67bi~65ohorUAd77WhH6ihrw-7sXx-TkwS1VXvXTz2ocJHgeQ87Hau6AFlRlSquZmVmToGI5-NMc-aziJe54cYSMGQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 558 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674017677&Signature=Di6GLelfGwT7AUDxr3QbA88Xbx6Nhh~4X6hucnSEjsN4gQ4oCg8DyeklbIHBoow70IR78FJs1Anx7jyFA7RNr-tNq7sICIHPrUjj2wsGgE~PHSXO4O~cyT0qXiW9DkAJqAiAhXAWq69JPblcnu9M~JrXFs9JqHBRIZkUVGXQRXaPcVFuHzhi9kK7Vola-LNoPHqfo28K-wBeQbzR1~m3kiGLH9XeB4s71aFYLRR7gBGLkh~cUG~W4QVQCBdn67bi~65ohorUAd77WhH6ihrw-7sXx-TkwS1VXvXTz2ocJHgeQ87Hau6AFlRlSquZmVmToGI5-NMc-aziJe54cYSMGQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type PNG image data, 2956 x 1663, 8-bit/color RGBA, non-interlaced\012- data
Size 558 kB (557691 bytes)
Hash 003acbdbe3f09e810cc8b9778e6ecb7e
ad788bd9756835db33c54f900b420440ca5c45fb
9dbd2094f21b6e95699fb406db154e8a51afd12410fd78acace3d4426500631d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674017677&Signature=Di6GLelfGwT7AUDxr3QbA88Xbx6Nhh~4X6hucnSEjsN4gQ4oCg8DyeklbIHBoow70IR78FJs1Anx7jyFA7RNr-tNq7sICIHPrUjj2wsGgE~PHSXO4O~cyT0qXiW9DkAJqAiAhXAWq69JPblcnu9M~JrXFs9JqHBRIZkUVGXQRXaPcVFuHzhi9kK7Vola-LNoPHqfo28K-wBeQbzR1~m3kiGLH9XeB4s71aFYLRR7gBGLkh~cUG~W4QVQCBdn67bi~65ohorUAd77WhH6ihrw-7sXx-TkwS1VXvXTz2ocJHgeQ87Hau6AFlRlSquZmVmToGI5-NMc-aziJe54cYSMGQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 557691
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:03 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 17 Jan 2023 16:43:04 GMT
ETag: "003acbdbe3f09e810cc8b9778e6ecb7e"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qf5fDzxG-sdf9500Xs0HE75QIqkjcqw_xsWmXp-weEgx7EnMsRMLQA==
Age: 43834
d.dropbox.com/crashdash/proxy/sessions
200 OK 0 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://docsend.com/
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
content-length: 0
date: Wed, 18 Jan 2023 04:53:37 GMT
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: dbcdf6eaebd6440bb17faaa6543feab5
X-Firefox-Spdy: h2
d.dropbox.com/crashdash/proxy/sessions
202 Accepted 21 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2023-01-18T04:53:36.386Z
Content-Length: 465
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bugsnag-session-uuid: f03ae6f8-22ae-4d82-a7ee-d04625bc4de2
content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none'
content-type: application/json
date: Wed, 18 Jan 2023 04:53:37 GMT
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 21
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 89546ae8c96e4bdd8e895bd054a8f0c3
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/snthemes.js
200 OK 5.7 kB URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a975aa3305c4011b3e07119d2376913
4545dc0986810ba851360f910219b34ce7c4446d
400f7ad9cb8378b5839d4f3449381d936f37fd0762f8507d283304c82068d122
GET /sitenotice/3401/snthemes.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398"
last-modified: Fri, 29 Jul 2022 21:56:25 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Fri, 20 Jan 2023 04:53:38 GMT
date: Wed, 18 Jan 2023 04:53:38 GMT
content-length: 5695
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/translations/en.js
200 OK 6.4 kB URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js
IP
File type ASCII text, with very long lines (41349), with no line terminators
Hash 7cdb0408336768c3c8697de7fe062fed
455d1237f3256aba83c5102b10212f8bc767bf22
f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece
GET /sitenotice/3401/translations/en.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772"
last-modified: Tue, 04 Oct 2022 16:06:31 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Fri, 20 Jan 2023 04:53:38 GMT
date: Wed, 18 Jan 2023 04:53:38 GMT
content-length: 6406
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/dropbox/settings.js
301 Moved Permanently 0 B URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sitenotice/3401/dropbox/settings.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
date: Wed, 18 Jan 2023 04:53:38 GMT
vary: Origin
cache-control: max-age=432000, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
200 OK 54 kB URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
IP
Hash 8875e3aadc087ff58ab6e64081ee2c08
623946c267091544a1ebcd851ade0f3deae15376
65060e3dbdb283910421a8b7563b6cc2cfa7236e3f3916633df1c5b25a812c9e
GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MTY0NjI0MjYyNzAxMDE1Mjk4MTIyNzIyMDQ2NTUyNzY2NzY2NjQx; t=el8rFeaVgXfPmpRovZyQ70OO; __Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; locale=en; __Host-logged-out-session=ChAflin%2FFQcUItc19HCEHjTgEND2nZ4GGi5BRmhLQ3pnckpzaDU5Z1NQTEpyNWN5OEZmRmxMWUk2c0tWX1VCeTRsdWx2T2JR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-cache, no-store
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-jdCfaJ0Cey01Xoqe4e9J' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-jdCfaJ0Cey01Xoqe4e9J' 'nonce-+dqhArjrrgCI7b64fw77'
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=el8rFeaVgXfPmpRovZyQ70OO; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; expires=Sat, 17 Jan 2026 04:53:37 GMT; Path=/; SameSite=None; Secure
__Host-ss=zYrnPic_dc; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-server-response-time: 19
x-xss-protection: 1; mode=block
content-type: text/javascript; charset=UTF-8
date: Wed, 18 Jan 2023 04:53:37 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: d323b01dbeb74d1ebf3ca4d6b9729853
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
200 OK 1.7 kB URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
IP
File type ASCII text, with very long lines (5082), with no line terminators
Hash 181b62cb4ca1877b5952d8864d1ddb04
ebae59485369852733c2648e907227b2a7666bc5
425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f
GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043"
last-modified: Tue, 06 Sep 2022 17:34:52 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Fri, 20 Jan 2023 04:53:38 GMT
date: Wed, 18 Jan 2023 04:53:38 GMT
content-length: 1691
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/evidon-banner.js
200 OK 3.5 kB URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js
IP
File type ASCII text, with very long lines (12607), with no line terminators
Hash 304674456118422bd448366f7bb05879
c6549199a4fb419c05a3513238a89002307034b9
29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068
GET /sitenotice/evidon-banner.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236"
last-modified: Tue, 20 Dec 2022 17:50:10 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Fri, 20 Jan 2023 04:53:38 GMT
date: Wed, 18 Jan 2023 04:53:38 GMT
content-length: 3535
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-eqoynjcBILuCY0PL5S8q' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-eqoynjcBILuCY0PL5S8q' 'nonce-45LGiDK00ogt2NxeBJUf'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTI3NzA4OTIzNzYzMzc4ODU5Mjg0NTY3OTAzMzMyNzEyMTM1NzIz; expires=Mon, 17 Jan 2028 04:53:38 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=gq49srxDzKBI93C8LpfqY1kB; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:38 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=gq49srxDzKBI93C8LpfqY1kB; expires=Sat, 17 Jan 2026 04:53:38 GMT; Path=/; SameSite=None; Secure
__Host-ss=cToreHue5Y; expires=Sat, 17 Jan 2026 04:53:38 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:53:38 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Wed, 18 Jan 2023 04:53:38 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 5d7caf0b762e4d6394aace5e1a2702b6
X-Firefox-Spdy: h2
docsend.com/view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674017615&timezoneOffset=0
200 OK 710 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 6fcb2ecd4ebc53cba07da8663fdff676
bf7dd64d0c1eea15de7dbfb74f318c00929ec278
6b008fb79e07741e688e28d8e07795460f5e663edc37b34779d9c5266afcb6ed
GET /view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=NRScT%2FXqkwGW7GH6n%2Ff92Bo%2Bpj0fWxlV93XOkKQUpb5hM8QdrIZhG%2B0WO%2B7tbf9y7UQsvuXledk2BnJEy%2FaaY2mrvCQbL%2FENYqMZDvA%3D--FZfMHZTR43PpE9x%2F--w32o4F%2B2HFBwz3Ohtyh8uw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:38 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"978760225f2e9cfb711452710a8aeb92"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-u446G7t2ce0FQ3R0Fi4P3Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=FY7FCHvYndMO4Ex6RxdlSqgsXViqDNxkBBZqf85UI7prNsyQEt8PsZ%2B2jv7ZVUuqJ9rmFDgGiJONLPr6BCoFQLX6EHCP8efagmzdSdU%3D--QG5HFg9PA%2FnTTmWT--3aosj04IZamuZbKReEQYoA%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:38 GMT; SameSite=None; secure
X-Request-Id: 3584a0e5-70a0-4bcc-97e1-2df862296a67
X-Runtime: 0.039227
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 48d02ac5cccbaece8636b20ac03136aa
dac54ca36f2ae43dd4770dfa2f37dbe94b2f26f4
f827633149251fa94f54653100a41f50499916ffd3b431d6fc3b6e8476a6c5c8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 04:53:38 GMT
Last-Modified: Wed, 18 Jan 2023 03:35:22 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1JNCXB34I4xCWIj1LZzaFcAWuPxRkGkBy-1zQODEZkxvNoYvJhixmg==
Age: 4697
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 48d02ac5cccbaece8636b20ac03136aa
dac54ca36f2ae43dd4770dfa2f37dbe94b2f26f4
f827633149251fa94f54653100a41f50499916ffd3b431d6fc3b6e8476a6c5c8
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=126416
Date: Wed, 18 Jan 2023 04:53:38 GMT
Etag: "63c6b6ca-1d7"
Expires: Thu, 19 Jan 2023 16:00:34 GMT
Last-Modified: Tue, 17 Jan 2023 14:55:06 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: okawIiI9p6qJ0Vaf5JBgQtIKSckeknDYYdUUQHfviqJZAB6wDy2M5g==
Age: 3928
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674017678&Signature=qoIwlP4go5FQtKEGoawXvqm5RX3sVvcl68xK4GqT0URig8lVULeN~F1zL1wFGGVP21-VZoZR-KXEs2-LAg7bxNKPyvwD1kTd2-22HeSW5m-NtRIGtdk08kWDLol6PHEcOZmEE0AMRBfhYLCEZd26ao7kRRUqfy4QViAG8XTh37zZ3VQnKdZuButL48O5u1ng6nrS4vmCw1mVfnNcxezW2nlmeiPoKXObufhcG2P3FdueewoPB-rOr9CJPsc-LPttan0gTeMjF5Xc-apQkBazSgnZa~9F0HW-aSRWf693mdy-v9u4z-acnYc9xSN5LU6Y2StUqyXzAB-ErRDak-9IRg__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 1.2 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674017678&Signature=qoIwlP4go5FQtKEGoawXvqm5RX3sVvcl68xK4GqT0URig8lVULeN~F1zL1wFGGVP21-VZoZR-KXEs2-LAg7bxNKPyvwD1kTd2-22HeSW5m-NtRIGtdk08kWDLol6PHEcOZmEE0AMRBfhYLCEZd26ao7kRRUqfy4QViAG8XTh37zZ3VQnKdZuButL48O5u1ng6nrS4vmCw1mVfnNcxezW2nlmeiPoKXObufhcG2P3FdueewoPB-rOr9CJPsc-LPttan0gTeMjF5Xc-apQkBazSgnZa~9F0HW-aSRWf693mdy-v9u4z-acnYc9xSN5LU6Y2StUqyXzAB-ErRDak-9IRg__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 1.2 MB (1154764 bytes)
Hash 0e1c66e07fe70e9da2b26f2a28645ee0
dbdbdb2f9a294deabdea3ab1346031251ea7e6e2
0facf2732250412d5091d78e602e1a35a748d0e00e896fe06b0367b967dfff3d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674017678&Signature=qoIwlP4go5FQtKEGoawXvqm5RX3sVvcl68xK4GqT0URig8lVULeN~F1zL1wFGGVP21-VZoZR-KXEs2-LAg7bxNKPyvwD1kTd2-22HeSW5m-NtRIGtdk08kWDLol6PHEcOZmEE0AMRBfhYLCEZd26ao7kRRUqfy4QViAG8XTh37zZ3VQnKdZuButL48O5u1ng6nrS4vmCw1mVfnNcxezW2nlmeiPoKXObufhcG2P3FdueewoPB-rOr9CJPsc-LPttan0gTeMjF5Xc-apQkBazSgnZa~9F0HW-aSRWf693mdy-v9u4z-acnYc9xSN5LU6Y2StUqyXzAB-ErRDak-9IRg__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 1154764
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 04:53:38 GMT
ETag: "0e1c66e07fe70e9da2b26f2a28645ee0"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SumpL4ZMmX-3R7czqHShb3_S_c8SEhkA4F-U2gvLeic3G7Ub9D64DQ==
Age: 22552
l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 04:53:38 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 18 Jan 2023 04:53:38 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
widget.intercom.io/widget/lv6lji7h
200 OK 6.2 kB URL HTTP/2 widget.intercom.io/widget/lv6lji7h
IP
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 7cea0ae85c44d1eba596f54bc9237044
5776d7f17ebf0c79c0e3caec5fd233f0168f7718
1e2fcea3450e6980628ee39214dc63109030725a6d9549dce329fa6ec532fc8a
GET /widget/lv6lji7h HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6172
last-modified: Tue, 17 Jan 2023 16:19:37 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: It1kzSlwuBxt8YfPWH7YUXzb44X60J9e
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 04:41:33 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "7cea0ae85c44d1eba596f54bc9237044"
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: x7ppImFhbKBpKr8W5hDrmTzrt_La8r-GRrX3OC_bmJdw8o1LeKEg5A==
age: 728
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
js.intercomcdn.com/frame.fa6b8de5.js
200 OK 139 kB URL HTTP/2 js.intercomcdn.com/frame.fa6b8de5.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 139 kB (139150 bytes)
Hash 244b6c420a9aa582bf878e60f1cdb2f2
ebc9b83485e9fa1c3fef1d0ce1d3c7a1e4b1eea0
6ea2000b3918a5db65674b6b0cd25904395a6e459d8ad9e3f259d11cb41704fc
GET /frame.fa6b8de5.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 139150
last-modified: Tue, 17 Jan 2023 16:18:07 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: V0mkPrPa1yXkQW9MCkW0JrOLEYfIisOJ
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 03:28:45 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "244b6c420a9aa582bf878e60f1cdb2f2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 8HYVASIKCWCxmaOc2dLJAGXBPu2x-PfepP83Vgnyxm7Y7bXxhoejKg==
age: 5094
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 244b977451272352732f1817b3a68310
dae26a228c28c9e8d41df427d517bdaf9cdac0d2
2c818da7ccc81eb26e8383cac6f270e8ce9f2e7ad048240b9eee137219d7f56f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 04:53:39 GMT
Last-Modified: Wed, 18 Jan 2023 03:29:25 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hOerin5Z0DhGEv76RTD2vqz1529zzk7kMdsgmsatWzjWth77Ma10aw==
Age: 5054
docsend.com/view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674017615&timezoneOffset=0
200 OK 710 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash bdae5d591021f3c930185a03e4e1a5f4
b64531c2f4555954e98e95c08114f26f97304875
b576593aaa732a9ab5ae26a351f81e278d29fd3d918779cad36eb568ca733c69
GET /view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=FY7FCHvYndMO4Ex6RxdlSqgsXViqDNxkBBZqf85UI7prNsyQEt8PsZ%2B2jv7ZVUuqJ9rmFDgGiJONLPr6BCoFQLX6EHCP8efagmzdSdU%3D--QG5HFg9PA%2FnTTmWT--3aosj04IZamuZbKReEQYoA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:39 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"d3ea009700b4ea388cb14a631e4e95e1"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-btsFUjtXwdlvQ5GjKWAydg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=ukruw7oBZd%2FpY0J2iZqQwMbk0pcbmVAnVTX%2FScVzNAd0iruZ1Y%2Bl1nT4q60rXMpONgpqYmjWi7bdXABYM4ZDLnF%2FdRwu3c%2F7FXsEVcY%3D--F8PMXUcgJEhuDvVA--PwY9myWCvXSGznTwu9enRw%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:39 GMT; SameSite=None; secure
X-Request-Id: 1cfcf7e9-a49e-4d27-b498-a2ae64bd4e5b
X-Runtime: 0.041732
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674017679&Signature=n0vLAZu5LSSOoo4Q~FxxpLz7E2U5XtB9A6rwee4OBXOOjJe6r2QMahmD~jAhXxzQZM7x8kw~KlkZ6Pdz6qPuqRne5K2zUt0HfIpOiTZHIwWWYJVeI4P1nZVNz6y6dmz04qm4GfxOOs0b-~yLDniXQ4JpCP5BDx6KvIB2kHlOO8zUn1Xv2tQc~1MKGkIWt9NYHJD5dSYYDiifwLiXlFWnepPJo0G~jVaJHdsg571D9sgubRCDL~z99QS6uweM4mtIxEmsKGTwoVCyvf2TOz9~-dgJB6BMzJel7Y2rSb-roM0kaXHgB6UAPXsj5p8-ABE9Ks2xBsQBKDdQD299mp9N8Q__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 602 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674017679&Signature=n0vLAZu5LSSOoo4Q~FxxpLz7E2U5XtB9A6rwee4OBXOOjJe6r2QMahmD~jAhXxzQZM7x8kw~KlkZ6Pdz6qPuqRne5K2zUt0HfIpOiTZHIwWWYJVeI4P1nZVNz6y6dmz04qm4GfxOOs0b-~yLDniXQ4JpCP5BDx6KvIB2kHlOO8zUn1Xv2tQc~1MKGkIWt9NYHJD5dSYYDiifwLiXlFWnepPJo0G~jVaJHdsg571D9sgubRCDL~z99QS6uweM4mtIxEmsKGTwoVCyvf2TOz9~-dgJB6BMzJel7Y2rSb-roM0kaXHgB6UAPXsj5p8-ABE9Ks2xBsQBKDdQD299mp9N8Q__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 602 kB (601550 bytes)
Hash fbe50b8ffc35187dd12d6f7c622783ca
c21954184d4d4357f327cbfd890f06c874a20c65
d8778558687d46bb546e6bf05b59160bcef763c0c28c0e541907cf9d0ce1de3d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674017679&Signature=n0vLAZu5LSSOoo4Q~FxxpLz7E2U5XtB9A6rwee4OBXOOjJe6r2QMahmD~jAhXxzQZM7x8kw~KlkZ6Pdz6qPuqRne5K2zUt0HfIpOiTZHIwWWYJVeI4P1nZVNz6y6dmz04qm4GfxOOs0b-~yLDniXQ4JpCP5BDx6KvIB2kHlOO8zUn1Xv2tQc~1MKGkIWt9NYHJD5dSYYDiifwLiXlFWnepPJo0G~jVaJHdsg571D9sgubRCDL~z99QS6uweM4mtIxEmsKGTwoVCyvf2TOz9~-dgJB6BMzJel7Y2rSb-roM0kaXHgB6UAPXsj5p8-ABE9Ks2xBsQBKDdQD299mp9N8Q__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 601550
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:03 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 04:53:39 GMT
ETag: "fbe50b8ffc35187dd12d6f7c622783ca"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3w8BWoL7gVWS0UIte6C6mgtaOo-8XZY4q2EwIMzx90r9OiJ41IGJSw==
Age: 22551
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0c853c7098dbba4fb67b3355b2f31c7f
8aff517def043bc74d20d1a4de44428b49666dce
2286a744386ec84c215dd583d8a45f2210d22fb1096bfefa275adc4c240885e0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 18 Jan 2023 04:53:39 GMT
Last-Modified: Wed, 18 Jan 2023 03:18:07 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0PuF-7VFONtD1Hcpcc3n-NPVhlFTggZHM_9DMS0lEsofMw84ZST_ag==
Age: 5733
docsend.com/view/ixrtsfq6baghdvci/page_data/4?viewLoadTime=1674017615&timezoneOffset=0
200 OK 709 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/4?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 0b1cc943d0f37b1e0c8ace5d16441882
ab709186a0f5bebd01b4f6aca742f0df9161b036
8be92457f75fde91ba95df22e52851424f9282befdef6c11524d30037f977e56
GET /view/ixrtsfq6baghdvci/page_data/4?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=ukruw7oBZd%2FpY0J2iZqQwMbk0pcbmVAnVTX%2FScVzNAd0iruZ1Y%2Bl1nT4q60rXMpONgpqYmjWi7bdXABYM4ZDLnF%2FdRwu3c%2F7FXsEVcY%3D--F8PMXUcgJEhuDvVA--PwY9myWCvXSGznTwu9enRw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:40 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"8554cde1f40f7997b59a3dcc4894d7cb"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-ANW16mqxk4ISGZeuAgvrzw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=%2B1rNrCZOFDiVCkId5cuS%2BrZxnZ6AcjhzgkYzXl8ON1Cmje23MWqH0DRLrygXFv8ouu7KuPBXAQ5XB7I2nN4yFkVVLaWiG5vdvrtZpx8%3D--3mfeVsGPE31TERTz--rlZdtaGLtali7QtjkkLFTQ%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:40 GMT; SameSite=None; secure
X-Request-Id: 41ad3d22-7b6d-45f9-aa8c-c1e14e2928ba
X-Runtime: 0.037184
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F4?Expires=1674017680&Signature=HFx9DsooACJep7~f3pOsfqjaWhgDVtMwHmgAdcR-zrQz7aHhQXJmmcGNpssoUit4asFMbbsflnmtI5b6xvPfu88KP92HCUqRw7mc8E3BYiQATMR8YhVjmggvYAEVPJD4R57pQ5zjon1Whw5qA2FsVNWrX2rC8~vuHByWkU2XRGdqsZf03AOgUk9bdU1~Cx8h7niu10kWA26MYpGDBVWE0m2wdYcoqmAEjwd323r3olLztq48vtOcG2SYrmbiHEpOi8K3z3BGrFyoe43k5W4Pz0T4Rnn3swozi8eHqO0~Gjvnq~baHbNPDt2Pv-I8T6SPU1UNBBj25fxpSZMFf3V8fQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 530 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F4?Expires=1674017680&Signature=HFx9DsooACJep7~f3pOsfqjaWhgDVtMwHmgAdcR-zrQz7aHhQXJmmcGNpssoUit4asFMbbsflnmtI5b6xvPfu88KP92HCUqRw7mc8E3BYiQATMR8YhVjmggvYAEVPJD4R57pQ5zjon1Whw5qA2FsVNWrX2rC8~vuHByWkU2XRGdqsZf03AOgUk9bdU1~Cx8h7niu10kWA26MYpGDBVWE0m2wdYcoqmAEjwd323r3olLztq48vtOcG2SYrmbiHEpOi8K3z3BGrFyoe43k5W4Pz0T4Rnn3swozi8eHqO0~Gjvnq~baHbNPDt2Pv-I8T6SPU1UNBBj25fxpSZMFf3V8fQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 530 kB (530521 bytes)
Hash 7f90a0435b51b72b60b71b35e60d63a2
4c06912934a27cb6dd9bcd7bb38174a450b90824
9e29c51e22e78df12498a09b446bf3f94bd2c0e0d1754b39663ac0f463c4159e
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F4?Expires=1674017680&Signature=HFx9DsooACJep7~f3pOsfqjaWhgDVtMwHmgAdcR-zrQz7aHhQXJmmcGNpssoUit4asFMbbsflnmtI5b6xvPfu88KP92HCUqRw7mc8E3BYiQATMR8YhVjmggvYAEVPJD4R57pQ5zjon1Whw5qA2FsVNWrX2rC8~vuHByWkU2XRGdqsZf03AOgUk9bdU1~Cx8h7niu10kWA26MYpGDBVWE0m2wdYcoqmAEjwd323r3olLztq48vtOcG2SYrmbiHEpOi8K3z3BGrFyoe43k5W4Pz0T4Rnn3swozi8eHqO0~Gjvnq~baHbNPDt2Pv-I8T6SPU1UNBBj25fxpSZMFf3V8fQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 530521
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:04 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 04:53:40 GMT
ETag: "7f90a0435b51b72b60b71b35e60d63a2"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CkxO8VhETEOmyZHB4VXcpS7PzKQ1wxol3oNn06kZvl0f5BmwahBW7Q==
Age: 22550
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-Zr5RTDMlm7vBudmRA8aZ' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-Zr5RTDMlm7vBudmRA8aZ' 'nonce-/gMl3rywikXD68ccyLE9'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=Mjc5ODk0MTYzMDEwMjI4MzYzMTU0NjIzODU0ODkwNTExMTIxODU3; expires=Mon, 17 Jan 2028 04:53:40 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=Az-am1PkTyTSgmYtmq3wJ3co; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:40 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=Az-am1PkTyTSgmYtmq3wJ3co; expires=Sat, 17 Jan 2026 04:53:40 GMT; Path=/; SameSite=None; Secure
__Host-ss=TSgi4zGf74; expires=Sat, 17 Jan 2026 04:53:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:53:40 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Wed, 18 Jan 2023 04:53:40 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: e2f94d566a0544fd8c4114450783f918
X-Firefox-Spdy: h2
docsend.com/view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674017615&timezoneOffset=0
200 OK 708 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 72954a3f52635b5c6af9c6b47d277830
e291dd6aa15b3dab82056697d306388872afb197
a3713d9273b71bb19a7fa99f67ede9219df541ada4417cfa75a6c711e3666091
GET /view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=%2B1rNrCZOFDiVCkId5cuS%2BrZxnZ6AcjhzgkYzXl8ON1Cmje23MWqH0DRLrygXFv8ouu7KuPBXAQ5XB7I2nN4yFkVVLaWiG5vdvrtZpx8%3D--3mfeVsGPE31TERTz--rlZdtaGLtali7QtjkkLFTQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=5461f450-02c6-489c-8fe3-6a4534786222; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7a1d20d5-01fc-4118-91a2-7e3b7041eef7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:40 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"5cdf5db61d30a3e6dfbb69a0403f2bfe"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-T0fy/QxGZqfjFjQu0Fa/5Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=waPvUytyfN%2BDAizbHAlt6vqclzXFH%2FURPLi%2BrOsY6ypJmt1UJN%2B3uZ%2F3t8CQIsWhdRBu9w%2B0oyowwSoIzew8%2B%2BzSB5GeiKMv06Qze78%3D--pxZ9k6t7FCNQoDI7--SeluwrfH7pTHvQXmN3HWqA%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:40 GMT; SameSite=None; secure
X-Request-Id: 11b9e957-bcae-4f17-afd7-58376950365f
X-Runtime: 0.042625
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674017680&Signature=NwgQpl3s6FYu-qX5eM~5Kp~EVlbsEwlmk3k8CKXNn5VQkNakMx3W28BqmNRacsloUNZp4MEr1uKyho7srDRvTNzity0f05YyUHV3owyX-WU0AMXmA1axFESx8lFghIdtMndL6h2yABKb-0VyR8H1e94OM5IvnDf5mpOFoFpdHLJEVEHEt~zdOioh9hBr~wZPKPlc6~Jw06xx~mcUCjvE3yTuRk--ic4y8J-h5E1k17bQ3pbjrM0QM8oMk9tJKSd-sLZze6351QS1-yx5W4Hvp024-kxwDvk28jnVws9kLgFFxyjrV~o0bPbex0gEfxTIEU-JeVy9oeATe24v4Ruc1g__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 541 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674017680&Signature=NwgQpl3s6FYu-qX5eM~5Kp~EVlbsEwlmk3k8CKXNn5VQkNakMx3W28BqmNRacsloUNZp4MEr1uKyho7srDRvTNzity0f05YyUHV3owyX-WU0AMXmA1axFESx8lFghIdtMndL6h2yABKb-0VyR8H1e94OM5IvnDf5mpOFoFpdHLJEVEHEt~zdOioh9hBr~wZPKPlc6~Jw06xx~mcUCjvE3yTuRk--ic4y8J-h5E1k17bQ3pbjrM0QM8oMk9tJKSd-sLZze6351QS1-yx5W4Hvp024-kxwDvk28jnVws9kLgFFxyjrV~o0bPbex0gEfxTIEU-JeVy9oeATe24v4Ruc1g__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 541 kB (540978 bytes)
Hash bc3fff50f29cbec29fea37f2cdc7fda0
e29dd7630651a2124a44c4223fbaffce5802632b
3c030f249bb52a77595fc14e994cfb3a827a744592160316bcff17697d97aa8a
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674017680&Signature=NwgQpl3s6FYu-qX5eM~5Kp~EVlbsEwlmk3k8CKXNn5VQkNakMx3W28BqmNRacsloUNZp4MEr1uKyho7srDRvTNzity0f05YyUHV3owyX-WU0AMXmA1axFESx8lFghIdtMndL6h2yABKb-0VyR8H1e94OM5IvnDf5mpOFoFpdHLJEVEHEt~zdOioh9hBr~wZPKPlc6~Jw06xx~mcUCjvE3yTuRk--ic4y8J-h5E1k17bQ3pbjrM0QM8oMk9tJKSd-sLZze6351QS1-yx5W4Hvp024-kxwDvk28jnVws9kLgFFxyjrV~o0bPbex0gEfxTIEU-JeVy9oeATe24v4Ruc1g__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 540978
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 04:53:40 GMT
ETag: "bc3fff50f29cbec29fea37f2cdc7fda0"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pwdRnXM8sp1zxsnqBTSn02ME9ParnPtrqYiGWJotNeuvnVhMfUpI0A==
Age: 43831
api-iam.intercom.io/messenger/web/ping
200 OK 1.4 kB URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3134), with no line terminators
Hash d608b3d6c148440a0a8241ff0daad942
4bf7ba25a0c6a7ff1982ea94ef208e4159aaa66b
324ff41fe489868b8287cc6974bb4cc41a771b48101a4a4d30c291919b6eee57
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 354
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 04:53:40 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1674017620
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13303
access-control-allow-origin: https://docsend.com
vary: Accept,Accept-Encoding
x-intercom-version: 67c61f1008408fd5c55324ccba9cd151d4da6fea
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 00051ul7k2kipd3d29cg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"6b518d1a45a1a31a0dadb6deb5592dd3"
x-runtime: 0.365718
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0705273452fc644ba
X-Firefox-Spdy: h2
docsend.com/view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674017615&timezoneOffset=0
200 OK 712 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash e0a9141acb6e9d53ba3103d13154d4b9
08ac22169ac14b3bbeb94ebe8be54df7eda471e4
6f2670c4a717013384964a7a09a1592b1b76ba2a36d00500062514574aa095c7
GET /view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=waPvUytyfN%2BDAizbHAlt6vqclzXFH%2FURPLi%2BrOsY6ypJmt1UJN%2B3uZ%2F3t8CQIsWhdRBu9w%2B0oyowwSoIzew8%2B%2BzSB5GeiKMv06Qze78%3D--pxZ9k6t7FCNQoDI7--SeluwrfH7pTHvQXmN3HWqA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=5461f450-02c6-489c-8fe3-6a4534786222; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7a1d20d5-01fc-4118-91a2-7e3b7041eef7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:41 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"d90a039705a5bb012b8abbd1296df944"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-lyCislN6o297mX2/Ng+9vg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=UsOBQ8y3XOX1ge6Uj9J%2FAS9Pw0A11rlRWkK6hPhy6HO23oDNnzjjwN7X%2BzeVpY%2B49OFhNYeAg0VZMmcd%2BOhrgqIL2THDq9zw8R6XOqM%3D--rYaCFdu30hHT4mj5--T3hVr7%2F0OkPB0X3eTAAT4A%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:41 GMT; SameSite=None; secure
X-Request-Id: 0fee4489-a91f-46a9-8844-bbe5b26bd60a
X-Runtime: 0.040214
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674017681&Signature=QjLjvQBBd7qsBWIQiM--LifrD02UBgvH1ScoDiAE5BN2oPq9RqvBjpvl29V-CPx3EOu~9UruReWbHDmgEOD7n~H6fBYxWxkqoT0KERdP~47pvjiJ~gGP7Xt7b8q8bfrEXP~61Fc0y6qrO~zfDQJZtNC8WrSR7yQ~qdyM8u8TKmUl-EAVhR7k-tLZdQ1FjbswaYuPZuN69UpThHi~crWHGvkZig3CnDzaBDa8voxf-WYiwO7XhHBg8Yl0Md3ykExEPoO0GpkOpRwPCNk1VfhG9ePeAcBWaNzi-ZRNNvx7mc8b7DbW0OhSgTE3e2e-7hGGwdZvg04378ZD3x3mwE~M6A__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 824 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674017681&Signature=QjLjvQBBd7qsBWIQiM--LifrD02UBgvH1ScoDiAE5BN2oPq9RqvBjpvl29V-CPx3EOu~9UruReWbHDmgEOD7n~H6fBYxWxkqoT0KERdP~47pvjiJ~gGP7Xt7b8q8bfrEXP~61Fc0y6qrO~zfDQJZtNC8WrSR7yQ~qdyM8u8TKmUl-EAVhR7k-tLZdQ1FjbswaYuPZuN69UpThHi~crWHGvkZig3CnDzaBDa8voxf-WYiwO7XhHBg8Yl0Md3ykExEPoO0GpkOpRwPCNk1VfhG9ePeAcBWaNzi-ZRNNvx7mc8b7DbW0OhSgTE3e2e-7hGGwdZvg04378ZD3x3mwE~M6A__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 824 kB (824076 bytes)
Hash 2c8c6164dec2c1ce2c7c76665b109f46
9032a9e778077b8741d46dcb0aaa6f1f5cbfd265
e9d2d29b863fac2a46d3a45ba6df1c55b2dd53f5f212d1c4f85177180791476e
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674017681&Signature=QjLjvQBBd7qsBWIQiM--LifrD02UBgvH1ScoDiAE5BN2oPq9RqvBjpvl29V-CPx3EOu~9UruReWbHDmgEOD7n~H6fBYxWxkqoT0KERdP~47pvjiJ~gGP7Xt7b8q8bfrEXP~61Fc0y6qrO~zfDQJZtNC8WrSR7yQ~qdyM8u8TKmUl-EAVhR7k-tLZdQ1FjbswaYuPZuN69UpThHi~crWHGvkZig3CnDzaBDa8voxf-WYiwO7XhHBg8Yl0Md3ykExEPoO0GpkOpRwPCNk1VfhG9ePeAcBWaNzi-ZRNNvx7mc8b7DbW0OhSgTE3e2e-7hGGwdZvg04378ZD3x3mwE~M6A__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 824076
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:04 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 04:53:41 GMT
ETag: "2c8c6164dec2c1ce2c7c76665b109f46"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NjxGO09vSWn4NlIZvepoDCel9Xnu7ZcYuKjpsbwHZeOIHvR34umoFA==
Age: 22547
docsend.com/view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674017615&timezoneOffset=0
200 OK 714 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash e94dc215ada00427d64d8443764a91c2
8b2aea1d384319ec9caa24724df55a3770593387
7cb3b193e095a83a005d6919dcead0a529591056fbde2cc6c8718543c4dce909
GET /view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=UsOBQ8y3XOX1ge6Uj9J%2FAS9Pw0A11rlRWkK6hPhy6HO23oDNnzjjwN7X%2BzeVpY%2B49OFhNYeAg0VZMmcd%2BOhrgqIL2THDq9zw8R6XOqM%3D--rYaCFdu30hHT4mj5--T3hVr7%2F0OkPB0X3eTAAT4A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=5461f450-02c6-489c-8fe3-6a4534786222; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7a1d20d5-01fc-4118-91a2-7e3b7041eef7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:41 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"b6301a0f9ad04793f11976f6f55908a0"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-1UJoWImgq0Z+ejxpDSSbiw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=uNXD2AVX7X80kQKXiPkce8g9mtch5ldoGbkOe2RwSfhpB6VHU%2BR91ZuL8hp9AKEDpMcJ9qDztyLe9b2B7AHhGNBfW4fu5L33lHAX56c%3D--LX2RNmRtYnIMrk%2Ba--jQS9X083GQ1SzwPXTDvPuQ%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:41 GMT; SameSite=None; secure
X-Request-Id: 2c45a799-020a-4c8f-8ca1-ef02464a0307
X-Runtime: 0.039319
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674017681&Signature=A-UHIGuTVRKxpuK6x79ZGnK~Y3Fbxi8DBvHJIM9jzAhFLF30WXniN1WDadVGaM65Jyd9rRh7dL~Kg85Bcmu6DTbZic1xZ7LBu5NPfDNdxnBqUjQbzLy47iwMFVQbRGafFMC3-~TL1rJKevRjAIHoj2B8eV1aYE8fG7hP5lwao7bH799Ol9mX4FTOYokUvmjNcw2Q~0kwzXompRIS1Nz2hVL1Mg71WsILIeTHvReQE2I40668~G1hMG6t0OhFpJ6raWnd0NplSTvV34x5HgD-YN~F1OKyT1tyXWeMIyGuSHNhS4cm4DYLCAC-a5XnwyG7YPXFSmbm8hIQID8viUIs1w__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 706 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674017681&Signature=A-UHIGuTVRKxpuK6x79ZGnK~Y3Fbxi8DBvHJIM9jzAhFLF30WXniN1WDadVGaM65Jyd9rRh7dL~Kg85Bcmu6DTbZic1xZ7LBu5NPfDNdxnBqUjQbzLy47iwMFVQbRGafFMC3-~TL1rJKevRjAIHoj2B8eV1aYE8fG7hP5lwao7bH799Ol9mX4FTOYokUvmjNcw2Q~0kwzXompRIS1Nz2hVL1Mg71WsILIeTHvReQE2I40668~G1hMG6t0OhFpJ6raWnd0NplSTvV34x5HgD-YN~F1OKyT1tyXWeMIyGuSHNhS4cm4DYLCAC-a5XnwyG7YPXFSmbm8hIQID8viUIs1w__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 706 kB (705588 bytes)
Hash 784dde450901f1c1f6591a236095d052
2c898a4259afcd8edc3dc5717909e938a09234a4
958577bb0e02c19c7da68abde8de1889af091d9ab63cc5d87e2ee1bff16e8828
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674017681&Signature=A-UHIGuTVRKxpuK6x79ZGnK~Y3Fbxi8DBvHJIM9jzAhFLF30WXniN1WDadVGaM65Jyd9rRh7dL~Kg85Bcmu6DTbZic1xZ7LBu5NPfDNdxnBqUjQbzLy47iwMFVQbRGafFMC3-~TL1rJKevRjAIHoj2B8eV1aYE8fG7hP5lwao7bH799Ol9mX4FTOYokUvmjNcw2Q~0kwzXompRIS1Nz2hVL1Mg71WsILIeTHvReQE2I40668~G1hMG6t0OhFpJ6raWnd0NplSTvV34x5HgD-YN~F1OKyT1tyXWeMIyGuSHNhS4cm4DYLCAC-a5XnwyG7YPXFSmbm8hIQID8viUIs1w__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 705588
Connection: keep-alive
Date: Wed, 18 Jan 2023 04:53:43 GMT
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
ETag: "784dde450901f1c1f6591a236095d052"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RFxodAV3GxiypndHGYBX3E8nYIP-JFeGljsimQjM9L5n-G99IPUG2Q==
docsend.com/view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674017615&timezoneOffset=0
200 OK 709 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674017615&timezoneOffset=0
IP
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 88c53540c2db36907b7ae4a10baf685c
192eb543e70821570fa2ed29fe7918ccb2dd4af7
8f3bb43e19bc9109d19ab2c47fbe972c4022ab990b070ae0247a208161337b27
GET /view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674017615&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: xDBKfiRgfH3Yt0eriLSylQkhV6rS9DNQS5MxAM1UnirlNkRBwX5V/TM3P0d93yRoeBf/3TvNsXxdSwY//xR4lg==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=uNXD2AVX7X80kQKXiPkce8g9mtch5ldoGbkOe2RwSfhpB6VHU%2BR91ZuL8hp9AKEDpMcJ9qDztyLe9b2B7AHhGNBfW4fu5L33lHAX56c%3D--LX2RNmRtYnIMrk%2Ba--jQS9X083GQ1SzwPXTDvPuQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d36b8beb689b078364b24b5fb25eaa41; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-18T04:53:38.384Z","expireDate":"2023-07-18T04:53:38.384Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=5461f450-02c6-489c-8fe3-6a4534786222; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=7a1d20d5-01fc-4118-91a2-7e3b7041eef7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 04:53:43 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"57a76b1ea707cbee8b798f3d54b68895"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-coSt5g7bX29RiSFC613Upg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=d0eRof8GeRALUn9OS8%2B9uoIR9Eyiq1cVQB7y31mLM9FTcgdlJs%2B6fce4JDXOdshIw5qrQXU%2F%2BTxgtnQ%2FnovUAHBIBqmhdWzAKeB7yxk%3D--Z4xe8zOdqm6DuH7w--M%2FZGGODT1RXUGAvhK0DVGw%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:53:43 GMT; SameSite=None; secure
X-Request-Id: 614a3401-3572-4913-aa4e-3df0fb3087a5
X-Runtime: 0.041003
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
www.dropbox.com/pithos/privacy_consent
307 Temporary Redirect 0 B URL HTTP/2 www.dropbox.com/pithos/privacy_consent
IP
GET /pithos/privacy_consent HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTY0NjI0MjYyNzAxMDE1Mjk4MTIyNzIyMDQ2NTUyNzY2NzY2NjQx; expires=Mon, 17 Jan 2028 04:53:36 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=el8rFeaVgXfPmpRovZyQ70OO; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:36 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; expires=Sat, 17 Jan 2026 04:53:36 GMT; Path=/; SameSite=None; Secure
__Host-ss=zYrnPic_dc; expires=Sat, 17 Jan 2026 04:53:36 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:53:36 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Wed, 18 Jan 2023 04:53:35 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: b22cb6e25882435598ce36814c0dc60f
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.1e18dfa4.js
200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.1e18dfa4.js
IP
GET /vendor.1e18dfa4.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108267
last-modified: Tue, 17 Jan 2023 16:18:07 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: QczBrcXcTl7MhGG7iblh5Uwoli9s8sQn
accept-ranges: bytes
server: AmazonS3
date: Wed, 18 Jan 2023 03:25:52 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "0150ec6d79e062df337a1b4861633e7a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yOsLtkxJy0jqOcKVkp1roPvBB6J1wVlPWqibov0p5HF-NhoMIRV_aw==
age: 5267
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.dropbox.com/pithos/privacy_consent_service
307 Temporary Redirect 0 B URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service
IP
GET /pithos/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MTY0NjI0MjYyNzAxMDE1Mjk4MTIyNzIyMDQ2NTUyNzY2NzY2NjQx; t=el8rFeaVgXfPmpRovZyQ70OO; __Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; locale=en; __Host-logged-out-session=ChAflin%2FFQcUItc19HCEHjTgEND2nZ4GGi5BRmhLQ3pnckpzaDU5Z1NQTEpyNWN5OEZmRmxMWUk2c0tWX1VCeTRsdWx2T2JR
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=el8rFeaVgXfPmpRovZyQ70OO; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=el8rFeaVgXfPmpRovZyQ70OO; expires=Sat, 17 Jan 2026 04:53:37 GMT; Path=/; SameSite=None; Secure
__Host-ss=zYrnPic_dc; expires=Sat, 17 Jan 2026 04:53:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Wed, 18 Jan 2023 04:53:37 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: f7bd3c50dfaf41e6b3911a33a8ef6142
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
200 OK 0 B URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 467
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 18 Jan 2023 04:53:40 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1674017630
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13330
access-control-allow-origin: https://docsend.com
vary: Accept,Accept-Encoding
x-intercom-version: 67c61f1008408fd5c55324ccba9cd151d4da6fea
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0036ig70cu6vm1u89sfg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"68cafad78af3a4bee1c91a6dd0a6a334"
x-runtime: 0.214823
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0705273452fc644ba
X-Firefox-Spdy: h2
34.201.80.84
104.88.23.136
93.184.220.29
104.18.32.68
23.36.76.226