t.sidekickopen10.com/Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04
301 Moved Permanently 0 B URL HTTP/1.1 t.sidekickopen10.com/Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04 HTTP/1.1
Host: t.sidekickopen10.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 19 Jan 2023 10:54:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 19 Jan 2023 11:54:01 GMT
Location: https://t.sidekickopen10.com/Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78bf07ababcdb506-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7378
Expires: Thu, 19 Jan 2023 12:56:59 GMT
Date: Thu, 19 Jan 2023 10:54:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7252
Expires: Thu, 19 Jan 2023 12:54:53 GMT
Date: Thu, 19 Jan 2023 10:54:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8441
Expires: Thu, 19 Jan 2023 13:14:42 GMT
Date: Thu, 19 Jan 2023 10:54:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 10:34:32 GMT
content-type: application/json
age: 1169
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pn5VSWft+lUdZ7F4FYQ69RbIemjdXs6F4mzv4sjTENn+kVqvfd6GB9Eg7KTbrO1tJiytms7KFZg=
x-amz-request-id: 3QTDEE2EYY6K93VY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 10:45:51 GMT
age: 490
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 4e136d8fad2948e0c283b81ba96ed0b2
9d82ca347906ca17e9e5e3d22517864b79a0e2c8
84c16b33d37a5b0ec5771860084b9cc8260cf79a36be26c3f95feae5d9d21803
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6088
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:01 GMT
Etag: "63c70401-118"
Last-Modified: Thu, 19 Jan 2023 09:12:34 GMT
Server: ECS (amb/6BC5)
X-Cache: HIT
Content-Length: 279
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 10:54:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 10:17:26 GMT
age: 2196
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6473
Cache-Control: max-age=86439
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:02 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 10:54:41 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9mWP/E5rvILmPxfMvG4sDg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fm30WKxZgi3ul1CAhAWlK8ZeqpM=
ocsp.sectigo.com/
200 OK 471 B IP
Hash 63ec55ec31b9e544ae14ae034a51c751
6864f869ebc0c35e8c91fb1d0176dc20edd635bd
3b85ea34cb950b1617327fb7fbac2bc99a0fdda0482265f73b3d6ba5bdc24cb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 10:54:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 03:57:43 GMT
Expires: Tue, 24 Jan 2023 03:57:42 GMT
Etag: "6864f869ebc0c35e8c91fb1d0176dc20edd635bd"
Cache-Control: max-age=406419,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78bf07b3ae761c0e-OSL
ocsp.digicert.com/
200 OK 471 B IP
Hash bc8663a126da77ebae25208a7be19e3e
6212f785d79a5a45393f900d230d8fbe32c7e9ab
239db50c46851e94c7d12d2eb2eb1eb9cb34e7d52e91c883c1055ddac4b79e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4332
Cache-Control: max-age=170717
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:03 GMT
Etag: "63c9083c-1d7"
Expires: Sat, 21 Jan 2023 10:19:20 GMT
Last-Modified: Thu, 19 Jan 2023 09:07:08 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
rufus.docsend.com/view/s/u2xht3sy4zbdisnk
200 OK 8.8 kB URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2847)
Hash 905558ab4d994d7dd00f46e9314f9aeb
207f4703fcefdfefee6df0a54f68f918ea27aa48
0f171226b90d6a18e438f24365a5bbbf2548004b95a77c997694bb1970b5672a
GET /view/s/u2xht3sy4zbdisnk HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:03 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"0516d83dfde8d0427e84e9897ec35637"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-HLX8BCOetHp+rj+nFAhbww=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:02 GMT; SameSite=None; secure
_dss_=eabfb0b2ddbf9622cdf18d52467eec01; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None
X-Request-Id: 62550c00-8727-47c6-aad3-ba5c317b5838
X-Runtime: 0.167525
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-46c117fb99758ac154d6.js
200 OK 13 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-46c117fb99758ac154d6.js
IP
File type ASCII text, with very long lines (44763), with no line terminators
Hash 0b67a0b1e9585ae639f1192fe8cc7764
270a4e12b8a6e4aa64e6cd63fe53c02958711e08
3130bb09cf5dd595cd0efd53eaf2aee737a4ab2315cfe71a26a0fbbff6a8193e
GET /packs/js/javascripts/error_handling-46c117fb99758ac154d6.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:33:35 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:46 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7eWqTxO03kQkPUq6L-pAc3p858BUaftQXAYnoxx_6-Wd7EFPfW0c8w==
Age: 37228
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js
200 OK 3.2 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js
IP
File type ASCII text, with very long lines (10023), with no line terminators
Hash a81251cd4a5c204ff984695b882e569e
1f3c5156f7617a9b3d9a9063f3690d1aa69e0069
e1bd4b4b2dd17bb05a75344d15ac10a9f95b7e7e40b8b99e2410d573a1ce068b
GET /packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:33:35 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:46 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TrbsoMxmjAyKXZMxkQxXFJChXgy26-0D4qcZPpBckQcnfHQJTPskoA==
Age: 37228
d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-3bcac188.css
200 OK 22 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-3bcac188.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash adf2376f239689ff2ebfc649559b7d6a
13ecbcdd11251228588a2990a2414bf9baec8d66
2cdf815b327f71c655882ce10da7275aeb944a17920bb42a0bad47799d812c5c
GET /packs/css/javascripts/presentation-3bcac188.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:34:20 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:47 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: AkOQlH9WYEOuaeo92WgvLWunJ2MwGn6bmyBcvrJ01RbVmNnZH3vO0Q==
Age: 37183
d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
200 OK 948 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
IP
File type exported SGML document, ASCII text
Hash a7ace942f4f580ee5902c36fed888af9
ca1c01b03c6763b0f458af9eea82b8f00b430141
514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0
GET /assets/ie_specific_hacks_v2.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 01:09:47 GMT
Last-Modified: Wed, 18 Jan 2023 23:43:19 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B4-IpgFVyZF_RPV2iWVlA6hd3ruXiMcZ2eJsTZ-SMHrZjxY1CI__5g==
Age: 35056
d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-44f737fd.css
200 OK 87 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-44f737fd.css
IP
File type Unicode text, UTF-8 text, with very long lines (65517)
Hash 2c080fb038322b3041e1fffbffd1be00
9f6fddf70b7f631c5e5ee5abb56b96d3b0901fd8
425a67733a8fcf464cb545bf59852061df00a376cd46aa4e9ab47a4377a1ec8d
GET /packs/css/stylesheets/presentation-44f737fd.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:34:05 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:47 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _PxQn6CV6breIR3eWTghw9Lgo-CTtWQFSGjA8qkC5idj4Qp85OnGag==
Age: 37198
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
200 OK 43 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data
Hash 93b6f18ec99bcb7c3fa7ea570a75e240
60b9e3062fe532cbc18b897fac542c56a03544c7
43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db
GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 43308
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 22:58:41 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Wed, 18 Jan 2023 19:32:51 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0Boj35XK1qnkM2pBvM5xrvwZ2eAi242FtIuo4nDOUL8nEVkSrEMNnQ==
Age: 42922
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
200 OK 46 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data
Hash dfc5e24cbc1b134e0c00c61e84ec999a
d3b1a8ef1d0f6f9162986479252570525719f203
b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3
GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 46188
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 22:58:41 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Wed, 18 Jan 2023 19:32:51 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: H-3IEV1kwHQ4Zijgue5P84RaUAGpiYIwbePTPdbaw65EuhgPOiY_Yw==
Age: 42922
ocsp.digicert.com/
200 OK 471 B IP
Hash 4262006f1311fa70b1aba41479097b4e
9e6652ef9e874ef9ad343e6db5e903a9c1d37210
c48a17ad64ded2b938c9080ba965fa64165b28e467ebba99e84cc4c8397a960d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4994
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:03 GMT
Last-Modified: Thu, 19 Jan 2023 09:30:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 4262006f1311fa70b1aba41479097b4e
9e6652ef9e874ef9ad343e6db5e903a9c1d37210
c48a17ad64ded2b938c9080ba965fa64165b28e467ebba99e84cc4c8397a960d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4994
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 10:54:03 GMT
Last-Modified: Thu, 19 Jan 2023 09:30:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7156
Expires: Thu, 19 Jan 2023 12:53:20 GMT
Date: Thu, 19 Jan 2023 10:54:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7156
Expires: Thu, 19 Jan 2023 12:53:20 GMT
Date: Thu, 19 Jan 2023 10:54:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7156
Expires: Thu, 19 Jan 2023 12:53:20 GMT
Date: Thu, 19 Jan 2023 10:54:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7156
Expires: Thu, 19 Jan 2023 12:53:20 GMT
Date: Thu, 19 Jan 2023 10:54:04 GMT
Connection: keep-alive
www.dropbox.com/pithos/privacy_consent
307 Temporary Redirect 13 kB URL HTTP/2 www.dropbox.com/pithos/privacy_consent
IP
Hash 96d9ff8d64da84b57d9890153d4f035e
1f695ccf07b31387c8f4e363f95c3ff0ef77e3ef
c81e859129ddee62786137536cfa051606dbb9dd68d48e0598b5c4c7cd261340
GET /pithos/privacy_consent HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Arufus.docsend.com/privacy_consent
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTE3MDk2NjExMTIxODA2NjI0MzY2ODA3Mjc0OTgyNDk0ODY2NDg%3D; expires=Tue, 18 Jan 2028 10:54:03 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=qVCJ7z9idKlI9hHKPHcgezpF; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:03 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=qVCJ7z9idKlI9hHKPHcgezpF; expires=Sun, 18 Jan 2026 10:54:03 GMT; Path=/; SameSite=None; Secure
__Host-ss=b0JGCr_oos; expires=Sun, 18 Jan 2026 10:54:03 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 10:54:03 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Thu, 19 Jan 2023 10:54:02 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 0891757c7eb04c7b8ed52af492d2007a
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26fa7bd40b5c3a3b5a6f95e7fca843b9
d8064f74f1e40bf6be4ea8ab4e319db22026c462
3e7744acf3e7ace6931c28cb5a5d3d7a77d9b97855b864c5c774368f2d0719c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7361
x-amzn-requestid: 54e3621a-ec24-4d56-85bf-84239fa7811e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e23ZvGtnIAMFivg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5d2a4-7ce0e7924c03aeaa3ea684c3;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 22:41:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: J2uv5_-X5xGBiqnD69jfx6ot6ufwK4aR1bg4uoaEftg70etZFbPmtQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 14:16:31 GMT
age: 74253
etag: "d8064f74f1e40bf6be4ea8ab4e319db22026c462"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b015242ebdda9cc22cfe6741d2e926f1
76072223007cd11c6f7b9fda8f01818ab0fea740
b7a72c737cac91c83c39718de999bc6ff0ec4ede63342e86407190d95e60d9a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6908
x-amzn-requestid: 5f0a0b3b-1d4c-450e-bcd5-481bda79f4e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1qQHwYIAMF-IQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1030e-62d053e35c8ab2374fd2fe35;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:06:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1eiEXaC2jHawVVHg6KAlFvdV7ZMpXdCaN8o36sbYL9WwPvXejGobKA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 17:36:56 GMT
age: 62228
etag: "76072223007cd11c6f7b9fda8f01818ab0fea740"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b8f931fb5afe958e67fce9e1822dac4
5732887999b819f6facc6f4608a407b5a09adf75
3c6c787e700f8139ec0eeaad93923f647f9efa5ce60120fc0aab52fa9588efaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5005
x-amzn-requestid: 647dd62e-6b47-4298-9457-c7f37e653e0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e5qLKEX6IAMFX0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c6f0ad-3dc1396c1b3662fa4ec5f1fa;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 19:02:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oi7K1Z45sral6ne0AsNTVD5vGc4WbZ7acJoq--4NFhN_f2z-xq7pWQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:55:43 GMT
etag: "5732887999b819f6facc6f4608a407b5a09adf75"
content-type: image/jpeg
age: 46701
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa0293b1-658b-40be-8f58-7c880a4f5b00.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa0293b1-658b-40be-8f58-7c880a4f5b00.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6cb560c00346a6c1d1862cfd25e5d92
0df06ee873767cda7b2f109caa5f3e0aab1ddc0a
1ee5d9792f084907b8837f818b7971c97eacff3b3e0cc83586220508c8755adf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa0293b1-658b-40be-8f58-7c880a4f5b00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 90da1a22-2980-4582-b757-b7beb79cfbe4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6q9SHmAIAMFRxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c75854-46a9bdeb5f46a93508e8d94e;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 02:24:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _D1sGt_d3uR5yvgtW4szUzy6kp7UhFCXxnuAIVsss_yswxw0Cvpm7g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 08:47:26 GMT
age: 7598
etag: "0df06ee873767cda7b2f109caa5f3e0aab1ddc0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg
200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1b47910c4f71976f73a884bcae6f9bc
26c0d42fddb2a02d9878c34a76874710c92a9d30
9c5ce4945939b126cd36202f5afb8009ce790a792270ec31cc22099e4cd12a24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4d15f9a-9958-436b-ac3e-167b5a6563ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3861
x-amzn-requestid: c8fbb2e1-9ec6-42c0-8030-9be785e8913e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9TegFNEoAMFwqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c865f6-04a9e7db684e88ed69e1bd43;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0vlLtF3fPmIBiYrKVY8qBwVvS7PMn3OTGpu6C0umuCqXdzYxsF-xgQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:53:12 GMT
age: 46852
etag: "26c0d42fddb2a02d9878c34a76874710c92a9d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-1667c759e204a9dd74b0.js
200 OK 2.1 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-1667c759e204a9dd74b0.js
IP
File type ASCII text, with very long lines (65445)
Size 2.1 MB (2091060 bytes)
Hash 0549713cdde1ca0b9a4fc0fe2e98a08e
46df678bf3003221dd149631ecf9f6b94f1d067e
146d120036219b8acc167c80742f224164024888e664dd7349c5a1a62d54f2aa
GET /packs/js/javascripts/presentation-1667c759e204a9dd74b0.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:03 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Thu, 19 Jan 2023 00:17:47 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Miss from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TnmIeBIsvQSR_9NCcKsc97mHQ7ZhCSdi4F4lEZs3TYgY32nDhZE93A==
d2qvtfnm75xrxf.cloudfront.net/companies%2Flogos%2F36441%2F489652ad-9210-495f-ab72-e3be3083e7a1%2FoIigBA4ETQi2BCBlGTw1_workhero+red+logo+fized-02.png?Expires=1674125703&Signature=Dug-Y2TlvRev-ad8-RNa9BbOr9FNNdtTgQx7MD1UqNgTRW99tUU9rAm5rafmbqFN2hWnChmrU~4zpcMgyo4qzR5QRBeyy9L~UrbQ5EPzorfEBuJzJP7a0Gd5PG3h0WovUKxHORNJkdCPfZMUmCeQOfLCJ2wadoReudXGLj~iyT-FDzBMVaE5VRTiNVxEGdJNnsQRdUM17cosllX0Et6VwN1jwRO3cvNSdmGBbAOWOLq1IxtlEE69QYyOtKWZDLh5az3XmtmK619ISs2n8Q4dnFuPMvbR4x2NNtwCQC3wzxjg4B9iDtgtikzJK6Fy7Xy5urQtyXDxH6t5nHprC6hOFQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 4.5 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/companies%2Flogos%2F36441%2F489652ad-9210-495f-ab72-e3be3083e7a1%2FoIigBA4ETQi2BCBlGTw1_workhero+red+logo+fized-02.png?Expires=1674125703&Signature=Dug-Y2TlvRev-ad8-RNa9BbOr9FNNdtTgQx7MD1UqNgTRW99tUU9rAm5rafmbqFN2hWnChmrU~4zpcMgyo4qzR5QRBeyy9L~UrbQ5EPzorfEBuJzJP7a0Gd5PG3h0WovUKxHORNJkdCPfZMUmCeQOfLCJ2wadoReudXGLj~iyT-FDzBMVaE5VRTiNVxEGdJNnsQRdUM17cosllX0Et6VwN1jwRO3cvNSdmGBbAOWOLq1IxtlEE69QYyOtKWZDLh5az3XmtmK619ISs2n8Q4dnFuPMvbR4x2NNtwCQC3wzxjg4B9iDtgtikzJK6Fy7Xy5urQtyXDxH6t5nHprC6hOFQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b5d53a08f68137876bec9839ff85380
7a527ca757f7e8473c537f3e0655e26de5338890
5653fffcf086051e50c93d641e3f0282225d499c684ffa4a824a0535f4e8ad1a
GET /companies%2Flogos%2F36441%2F489652ad-9210-495f-ab72-e3be3083e7a1%2FoIigBA4ETQi2BCBlGTw1_workhero+red+logo+fized-02.png?Expires=1674125703&Signature=Dug-Y2TlvRev-ad8-RNa9BbOr9FNNdtTgQx7MD1UqNgTRW99tUU9rAm5rafmbqFN2hWnChmrU~4zpcMgyo4qzR5QRBeyy9L~UrbQ5EPzorfEBuJzJP7a0Gd5PG3h0WovUKxHORNJkdCPfZMUmCeQOfLCJ2wadoReudXGLj~iyT-FDzBMVaE5VRTiNVxEGdJNnsQRdUM17cosllX0Et6VwN1jwRO3cvNSdmGBbAOWOLq1IxtlEE69QYyOtKWZDLh5az3XmtmK619ISs2n8Q4dnFuPMvbR4x2NNtwCQC3wzxjg4B9iDtgtikzJK6Fy7Xy5urQtyXDxH6t5nHprC6hOFQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4454
Connection: keep-alive
Last-Modified: Thu, 24 Mar 2022 18:38:57 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 18 Jan 2023 22:58:44 GMT
ETag: "6b5d53a08f68137876bec9839ff85380"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N96ruVRkaX6jRYIZhm87-A0UfWiU5YfGrqgk6nd5aWawKfXCB0i4oA==
Age: 42922
rufus.docsend.com/favicon-196x196.png
200 OK 4.1 kB URL HTTP/1.1 rufus.docsend.com/favicon-196x196.png
IP
File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data
Hash 6664c3890e329c7609151e0081f5e7cb
6216d5de79d8b245676a86f8b862880837345e2a
8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568
GET /favicon-196x196.png HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:05 GMT
Content-Type: image/png
Content-Length: 4131
Last-Modified: Wed, 18 Jan 2023 23:43:19 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/favicon-16x16.png
200 OK 393 B URL HTTP/1.1 rufus.docsend.com/favicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a8c678babc40c4ac6d8c70fc560094d4
66002c0719ddbd75c837f5a939689ea6df13b6dc
a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1
GET /favicon-16x16.png HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:05 GMT
Content-Type: image/png
Content-Length: 393
Last-Modified: Wed, 18 Jan 2023 23:43:19 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d.dropbox.com/crashdash/proxy/sessions
200 OK 0 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://rufus.docsend.com/
Origin: https://rufus.docsend.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
content-length: 0
date: Thu, 19 Jan 2023 10:54:05 GMT
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: de0fa1b1fdf442a9a606d4e7f8cdd59a
X-Firefox-Spdy: h2
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/header_image
302 Found 539 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/header_image
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (620), with no line terminators
Hash 17c338397172fe870d036d9174121c11
9d960e400380a07496d3ab1c6e975849f03443a3
572e191be029f68ecc9f1aa7108eedb1ec9f7b41b214c2fd19df658ca875cf25
GET /view/s/u2xht3sy4zbdisnk/header_image HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fb800fd91-0150-4a93-ad65-f48b331a9f25%2FxZE8T0zsSyS4Zt33ziuk_workhero+docsend+header-01.png?Expires=1674125705&Signature=RAdH-MJAjlBJsIouRz-bVjEiyDPFsnge7CluSgusmbVzEJXoDSPuwkwJc7hFCUS9EwzJv50B2u0VkyhJH0aBblvBI4kpG294fC~BaXPquk7fcT8JwrcwteL6hjIVWfckWnx8Up7ISeOKETsDHTU5y~chjb~NDuM1fiBRrQ-XZgw~GTqSOO9zGlwZYqu3RmeEHggFwGQ1Ga1tV1BJsXVDwOdY-pNfXO9quw0Ko6-7Y4Tfo~LcX9EQ-AoJppP4Nx2VmsICZ~hVoDnLoVdLPm8c4qPySnmXivAIq9kFln3mQX6tgPDRjIaoeLOWmMEuhADddwkLaj2OCEcTvhiP-bIp7g__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-mZcgc5Hw+eNz2H+8msaFHQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=ZTjR4vcjDasJccj2%2FrcN2h%2FzfW22ThNp7MMw%2FfQiyexS8Z0AMsXySHAKZa1NvaraggePOFfY1b7z13enMS%2FqvptWGQdUe7SB6RoxCac%3D--mIihjxaEtwenq%2FDn--MuNN4xqgUH6F%2BLXyTOBUdA%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:05 GMT; SameSite=None; secure
X-Request-Id: 8ecf76e9-42e8-4c80-8444-a0b031021638
X-Runtime: 0.028890
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4036
Origin: https://rufus.docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-+lfgUmywn2i6DBjHxhXh' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-+lfgUmywn2i6DBjHxhXh' 'nonce-rpF5Ef89sHB7GpquObGh'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MjY2OTkzODM1MDgwMzM2MjEyNDU2MjgzMzk3MTQwNzQwMTI0MDM0; expires=Tue, 18 Jan 2028 10:54:05 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=Eskrzyux8lM1gBvyfevnLtSA; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:05 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=Eskrzyux8lM1gBvyfevnLtSA; expires=Sun, 18 Jan 2026 10:54:05 GMT; Path=/; SameSite=None; Secure
__Host-ss=8tEb0ouOso; expires=Sun, 18 Jan 2026 10:54:05 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 10:54:05 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 10:54:05 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: ea38283b36f4482587b88baef14d852a
X-Firefox-Spdy: h2
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/3nurwk8w3xujqkyr?variant=350x350
302 Found 514 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/3nurwk8w3xujqkyr?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (585), with no line terminators
Hash 116baf72009bef3bf630d501cd17de34
76a077f17f5840c7fc6c00233b541ae9a1876ad3
85180f9b99a876dbbd3bd0ee15da0e0ae2e052d9da49d76b23729b3163dbbc1c
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/3nurwk8w3xujqkyr?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:05 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F6f3a61e9-4bbc-4681-9e5c-76d4be4b1c9e%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125705&Signature=fojJBWmQwJBfgSLzKOxo2mtpfqRsw9fGGO0IMbIoHxBI2w7s9x1Ox2iGt4Yk2V~~h1fUJ94nl2NYT2U~LnDpmkEd-KiBR3W5a~UkvURMAzGwcPtQ21HEOUljH7x17j0D6q7iMe8IVW1WJNTXDVwT3ywKhH0t9O5tUS83o2WiTds6RDw8ZrCRagsQZANUJ9IyqryxLNj59N~YEoLu0y11eq3TEOmYT5-cr5NFQTVS8nFASKRZUI9mDavZGU2VgnDNNvyKLFxdAQETVMdLNR6-rxH3lc1lY5~cXeImkqeHwJn9xfaCYsLRzE-PqBKeG1f8ZhI2Nu7v4ZinM3RW4~yd5A__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-D7EGwkpRczS8YbtxGzjDRg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=9viEOgxqzdhYxi76vpuHoGQPtkOq%2B15%2Bu%2B13LCV8L9fJi%2FjfZC8RmQVhVgjeH3KgoAKMNKp071NvJIRg8lvrbbMi5N17qu77irWdHwY%3D--%2FfPFcTt9enNkF%2FK1--p3%2B7IY585nvrxyMU09NtJg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:05 GMT; SameSite=None; secure
X-Request-Id: be195c77-e3e4-4b25-bdef-20ca587d16fa
X-Runtime: 0.043819
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4003
Origin: https://rufus.docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-3lDLQBl7csnqxib3jNEz' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-3lDLQBl7csnqxib3jNEz' 'nonce-edxZkSJV8eU9KJL9aksB'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTQxOTQ3NDcwNzI3OTAyNTc2NTgxODAxMTgwODY1NDgyMzc5MDMw; expires=Tue, 18 Jan 2028 10:54:05 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=77rZNbrYavwdCQrPjNyJna41; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:05 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=77rZNbrYavwdCQrPjNyJna41; expires=Sun, 18 Jan 2026 10:54:05 GMT; Path=/; SameSite=None; Secure
__Host-ss=OJj3trhhPg; expires=Sun, 18 Jan 2026 10:54:05 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 10:54:05 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 10:54:05 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 5b87733960b442908d2814b6845b44dd
X-Firefox-Spdy: h2
consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Frufus.docsend.com&sandbox_redirect=false
200 OK 854 B URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Frufus.docsend.com&sandbox_redirect=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash dc63fb23d6563676b3090bae3f02ccde
dd6c4202705f760dd5744caee7ccb31f703fc880
c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1
GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Frufus.docsend.com&sandbox_redirect=false HTTP/1.1
Host: consent.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Cookie: t=qVCJ7z9idKlI9hHKPHcgezpF; locale=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 854
last-modified: Tue, 06 Sep 2022 19:00:36 GMT
x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ
server: AmazonS3
date: Wed, 18 Jan 2023 22:58:44 GMT
etag: "dc63fb23d6563676b3090bae3f02ccde"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1nJWCfORIDZwspfBjGTW6CFm68NDi0YGTwD_fMldtlskzSFqcwBZ5w==
age: 42923
X-Firefox-Spdy: h2
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/2xingxp7w75iyk3r?variant=350x350
302 Found 513 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/2xingxp7w75iyk3r?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 6da2790f8c4e0f5a8a4491cc6c8fb78a
7f765f6cb014cbdb6af2af11598a89795927b17c
f63d8406778caf3c071c865a52df74df7f2ba9928b5776551bb0a62e976ab336
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/2xingxp7w75iyk3r?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F22b1307d-c5a8-4a5c-8f2c-4d1a7c76936f%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=j9atKW2IebmPpa0i-2ONhExYLuniC77LlAs32wN5ALUysTCfzz8oA2kYIPLdyOGXvuQFvH1s2BGas~92syZFIk1vPmE4aLvXnsk1HQOVxPNY2DJ-pYf1jMMecc-vH9bCbA-dclwQmkbN2LCse-HIabcpf93gpSJfKC9Nd-2s9v8FDNZ5UTSwbEEjWOVbhCPzPAYUhrhFSq~pc3io-EfO~BXNrowuEfyzDpQs8wCYLRy3aLhGkCMe7QA99RMevPE24inR3EF~1k0GuavVoerbCcY~67qo9XkO9ocOZ8IkiGNXNvMt0e2iyyQX0K0k4MbtcLWX1qQHKhSCMXikz04KfA__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-DXHR0M0rqDmYcv40r1KJVA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=IluR%2BK9vXCr9VrvsYSTTDf7EvfSOHFEM6Am9w4ahqwuIFf6VYTD1CXVtdRgRISFr0qVTpi8bT4zO7B8LvT9Nj3xBscGoJTObV0z2Cuo%3D--WdOS6zTaCNa%2FVER1--eK7HrFfKIAXj67thTMm0JQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:05 GMT; SameSite=None; secure
X-Request-Id: 073412ea-873c-46b3-aab6-074bdb267057
X-Runtime: 0.053055
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d.dropbox.com/crashdash/proxy/sessions
202 Accepted 21 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2023-01-19T10:54:03.060Z
Content-Length: 465
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bugsnag-session-uuid: e2c5ca23-7d11-4095-945f-30bee5de16b4
content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none'
content-type: application/json
date: Thu, 19 Jan 2023 10:54:05 GMT
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 21
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 64bf441ff3d0446f91d2948f3e6d4a2d
X-Firefox-Spdy: h2
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/mp8zmx2bhbtb3e77?variant=350x350
302 Found 514 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/mp8zmx2bhbtb3e77?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash a797ca4ea4750d7156d68a475dbeecc4
9b621a6ccc996788b3c088d9f209724ba5e77521
4af19cee92e3a6e3b072d71447ac7c87ae861961c84799296c2ba486171230dd
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/mp8zmx2bhbtb3e77?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F4caa80bc-dccf-4d33-9450-5f86b8fcd5e2%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=cwR5VPi4fkgnRursgVdaeq2UAP-9jzrWHKhKe-34TOeVIcKQyT28t1J-2-OeQHuKTWbAg1y-fpFa56qo4LXdOQfZwxyPhexOTsvY9WQOKzn0QHw6Xyfa7R7mVCpCkN5nqzxbvaGf8GnWfy87hgHBXHxdeGLdGo~AuSP1rMe0ritEhcxpDPH6lKpQ86wNVjhDep7xkhR4qXewuRumRTahVrDaeG3yOZF4XMQFx4ADuxyD9NBwGWUaLPpo0jyV7zke96ApBOyF8GvpyQ8Vmu3MJ5LVyRVxDPBSG4GLQwY8pT8hS0kJvpRgH3~e7K6~PlUzGS4G~TO1KAzOfU3uKcuVEQ__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-HBmuTtW19h+P2oz9SCrjrA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=1y91LCWrfxSX6%2BGh6Og0xhgOit9c8qM3N2bIeLO9UyZOvn6XdOa3jklYBtjqI8twfxBZzNQgBCy70yBSQn16d5jyqpqfuz07x0TQTsk%3D--enkqaxd9L3RpBmFy--r1sG4lacSHSVFR%2FS6wZTbg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:05 GMT; SameSite=None; secure
X-Request-Id: 91d0a95c-3d27-491c-a1fc-13abde9fea89
X-Runtime: 0.050778
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/5zqgqikaub6pfyqn?variant=350x350
302 Found 512 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/5zqgqikaub6pfyqn?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (585), with no line terminators
Hash 8300cbe6a0b9a094ce97d88bf5be9b20
5ce00ae48be1c238bb4b64950f361cc604d7deb6
321f46f81863f03d14523e3c4fbcfd93c9e21a0681b92e932ead0007303123d7
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/5zqgqikaub6pfyqn?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2Fef2b3f42-1d59-41a6-ab09-a9db65a0fcf5%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=YSszQKEvGNDWBnLJa7dda1I4eS8tSHKJ~LoKOSQvqu9r-HVBZU4kdrHLGq51-tb2spwawno~MvRis2NAs2W6olTXFOeDKpXwW3CfGSmTcgP2BvxNKZEJ-Fp0HO-eYIBq4kO-MN9vict1KIZXQs0xnOf0INpRr1OnwMvBPfV0NJE9B5cGwkrPRB0hRgEshVCNUqAqRqwkqqtT13Wm2tEdDdOFZ6BmsbYOQV05VXfxb1aVIKwljhsKU004mmCEyqCUpaUV3STuzzUeDGDpE2Kj9YUtG3mzO4cuKEBxVyhVGMPx9ozASX~Iq3sVLIanLqY2NWzX-G9ikXq--PAPAzokBQ__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-zL9i+Y+nOdWgisxgnEdglg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=yDv0ZHRyJQGfcHuHyHeYmH4PkB0N9L80BJIWbUhWa9gVy%2BrCYQeCU%2BkKh%2FCgu0EdJ5KV0hpIkYmCI06z%2Bs8L3BkKjqbJRN%2BtVC9XCd4%3D--2QqcANotzfCPshek--TBf8%2FZKnuwV1fFYPRTSxtw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: bd06a1dd-6bcf-4d88-a26e-0356c9d44e86
X-Runtime: 0.043469
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/tpcf3fcph7cc7esm?variant=350x350
302 Found 511 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/tpcf3fcph7cc7esm?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (585), with no line terminators
Hash 3714dfcf94d54dc45b770cc20c631258
715f4bbbde7130a1561e02619a7be24a1cc87ff4
a97fc58c8f1b062304caff48880d03b4d71701dd3b492418927ae488b00eea32
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/tpcf3fcph7cc7esm?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F05bd21ff-8ca4-49d7-9606-b0aca320d9f9%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hs1zJGJPPZozqK1I4fVBEfFHRwrY6c9-l585bYv9~MXZ3ObXKiqMIguIiB8v9G3A0~WYslE9u9sJg2tdZkKVSvBCy1WVvXmarVuIJjL5eBxgk0SzVxJgm24VJOZuV6h-2zvcwCZ4BEMZMUvs97ZsmBduFTmHpl6vFGBuOLqbVxX0Z1jfDhXVICMkCvlb0WArSNyQFIWPNtjkD8QmWdBlELxsTgxJ6cn0zfWREqeUQD2nxUw0SW2p4XP-dLZHs6aQg~DPga8wHDzvjbbzXeb~8QL4uNJa0JWqKSAC~XqdK00BoLMeY7ngyOFsy2ci4Ry5KMomPCUAVmrd6qTaEj8Tag__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-1c+9Xgjfoahbr9rV02enbQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=Q1zW5jNsYg8GdhoQfwTyqkndQE%2BAujq6mk5uI9rjueIW24XiIIUdWh16xI2AgAsvI2lXijHBnU5RkFcD5hvXX4MbXtVWbH6RNIPRRVk%3D--9AaeFfinYjEOln6C--u%2Bp2qgLEZa2VwCbc51IWEQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: c18ea107-f530-4729-961a-31338643f84d
X-Runtime: 0.047870
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/87bk9izm6dqyjbt7?variant=350x350
302 Found 514 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/87bk9izm6dqyjbt7?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 1ccead6713ef712422d708665e4a17a8
c95cc31ee3ff70698464b068ebca28fe8ae55f32
5d8c6f1dbba0f67d42b3a92123d84d5a9ed64197f68643c82a6e9d5da197772b
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/87bk9izm6dqyjbt7?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2Fb06f203c-35d6-456c-8914-d73066594554%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=OtzTSo3LGiY4pQ9xsk~w-aAcHayZg4eF654jO80DL2g11gvhKjObSxllpXb2VAzTErZszvOk0ejkB2uh1NbVHUDHDwqar3HRem7s~dddvu9SaNMHtW~Klp4DUMlfPngByP6Fv4POaLQ3n1ZfDW6dpJXK3OVlKaTiW-gYiDVfwlAxTgr5Rhg2SS4N9q27l2aSoo9GjcxWf2SJvQu-MxCT9muiBQ8LtxOCiWzFIeRA-WukTpL17p8J-z6pNCU48L-Dd7HmN5Vroa7DET1upG7Ndfpd7eBGJa0M21bxZlgl54A-B5WbOjln9CBouTseHTG6sHl4~Wn0kKlBS3Ambus7~g__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-pqV3WUN71nJBCKYyBbXmSA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=GrScw%2BcIEvJU6EhhQjBsRu%2FH9NaGU8cTsMb4MNzFZH8CWhbRq7hKf%2F6H47P4FYZJBqzB%2FsL6TgxQ1tsuTA4I0GpGluTLRourjdYnFWM%3D--4D3JFiPEuTlJmwAR--7M7Oj2Oae8zTi67PATHUkw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 32606dbd-68d1-456e-b6e6-b9a911a85867
X-Runtime: 0.060661
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/xmdkxtyn5fpxtpa7?variant=350x350
302 Found 515 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/xmdkxtyn5fpxtpa7?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash f69a4a2cf237b30f7dee6387ac1564b2
17a137eabc93886a9d98161f7d264e4049461ed7
edaf8f40dad558819e899975a865f4887014f0f3ace8ab554f7263de0fd9889c
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/xmdkxtyn5fpxtpa7?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F269368b2-8a9e-41da-b389-5fd84cff11d3%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=ZeVChewS7nkTPKnUMtvs3t6EiSPqBWPTtk1d3PMRppWT-RWRRQDL0vRZpu3xD7x8-OiBwoz4Qi6uoGznKFxLcUFvyncUxnkY8Nnq-PfVyVFZpOTHpGdCLRRNhr~ZpUADOsEKnf64Ay0pUBzAdKSmq6zDCfz1O5s2MuuNJBBKldYChpK0PPZaVqNJbpcfJzW3YBwZNOwzfjVY6d9RoKEgc8VuoEYqMzx-A5NJ2spU2nkqnk1ZUS919yp8Vlo-YNiylpvRKLWAmp8MDDscdZ5PG3tb-e-9VPOuWI-kbUrgMLWdMV2zmRZWRcGTFRtw3JyRwG6YKo4cHE3HyssNOb3k1Q__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-fUJtr1ikFAG6BXTHF6UeHA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=3WGuy2Cp4ibSHl%2BKdD%2FP91wCHhogkDccZJ5hHRBnHH4iNbKTFXZEUC1Jdy5iDXua6hC%2FzxIyGujn5F5NrcZ8Vd%2Ft3XyLExJmSU4svhQ%3D--6rAQ4gB4izV5MxWA--o6f43doy0Uyms4nBBQdoQQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 78b40761-f007-42a7-bb43-34cb0102fb47
X-Runtime: 0.050057
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/es8374qcbt4wm9xt?variant=350x350
302 Found 515 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/es8374qcbt4wm9xt?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash b7c68a08fa86c4fc69df51825478bf0a
b9064440fab31cd2c1fcca6d06c842410e3ca01e
385fdec953685279b47e3f924da4e1d446d2b3e9d03aa592fec69abe48003dcb
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/es8374qcbt4wm9xt?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F264fa9d3-7a69-4906-a7e0-ba73b2f33305%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hRL-iU2iUt1OrmlYh-c2I5kZWFcpfZd6GjJjuau13KCucrCfeaDCgS8UvvLYYDFLS4flUrmYqRDHMPZjX9PXM~9ow-67WgtOAiSDlw6j9S4W22c1muQgvGoXHSzxM4NswC1DhMxKhU7r60pJdm8m0JttHzzFNzXw2k0HKBD08Pfg2DtuVPM7odadOj74PcEYK5HM3Xv4LnHuq1Nm2Ff53OaSiPDZssvsY61pFyjEwhCN-UkGCx6wkfpDQHysDODbKITZ8hjvk5KBGuSKllGIoiNECMyyZhuC~VRdmmtCX3mhi5TXvMgqI8kJN9Spsk~emsOr-LWCi9qfv2dP7QAliA__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-cgjm7/wm9xEXfKVhHtH/ig=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=Xsn0x89GYQH%2FqwFWbXsrQ1%2F757sM952rnBcRmnvynwMrjBbdfZIJLCjuykZnXQGwhlKylHkA1OrnT4q2BN5%2FwYnjPeTVSlWHcm6Z3vE%3D--BdZ9G8RkbXNNf6DV--B4wI4i7ENUuFeWH9bqok4Q%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 3b3558c6-1f8a-47c3-a3ba-d39109a84a0f
X-Runtime: 0.047920
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/7vsuuk89ppbh7t2t?variant=350x350
302 Found 512 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/7vsuuk89ppbh7t2t?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 88b400d121f1d81779421a8944a2a442
6d61fa54d1ce7400c4691b000d176e9046059cb7
376577d944a38601b5ab6dbcd282881b485665e0f650ab81ae39ccf14f1e8a59
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/7vsuuk89ppbh7t2t?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F72d2d4eb-99e4-413e-b29c-64bb9a66bdc5%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=vKSLS-1NCBUZKF8~ByV6cfL5UrWTRM1pavlMTsaSXNXoM02XlcJEC~A4JVt1Sx82madDgjDBam6~SK-kswGsnREhkNMd8wyIaXz8YZJ2lFiz9-rBfdGnRpa5ZZYpO9Yg5o9mwcv0YdgKfuQ58cDwnSLbUo5~uylpzGHcaSoQ2W2aX~7yVbJAFPmkulal-fN6IRlR6I3fkj2ZJ4MIG7A6b2GNiqmHUcdnKOf2nOt0h7--EPKvLRfZcvvXP~AY8TG05v2KIcTKeutrvOZ1krz7slFke-l45AlVZGnTXdsfI7pKZ4-3ZurKtArwRuGZDWENFifAheLarRrjezecGjdKjQ__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-8OjNIfivWEy7S0xOai5KiQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=xK48W5m6qGZmL0rDnycILos1SSv7r7khEpfUgrf07qx0FN25UYBeoA8M0WyE0JAzHrIPlGmFBoOX1xsNqADvF04ymC%2Fjrl7RCZod37A%3D--tVES7BL6btF9H8md--EZCjrsUfcPpAZ6On%2Fw1N9A%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 2f0ddd38-f0bc-4b4f-802f-ef29be546f6b
X-Runtime: 0.046651
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/exvjjur3bcbsgbdj?variant=350x350
302 Found 512 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/exvjjur3bcbsgbdj?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 7b033efaf78c364b7ff722425a00c2f2
19008b3e63a80eb151befddf1b4c7555c8daf4f8
482a81fbd172574ed6bae9f1e9511cf86caeccf85ba5e767eb0d325eb887d30f
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/exvjjur3bcbsgbdj?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F1a97dba0-cf43-40a2-92fa-d6d85f529141%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=U5X~Z1lH9in~zLX6rJFRcGF8-xZW0gA-MRVjbUtJ1JXTuqDT1nDUWj4TyBcNUBd3yoIM5Hk~Aocy~sx6s1JRlI3OasKiMKtQ0FJsgIoc5zxyOSI1LIoiK36N-OvcwxW-jp58ceYxJGTmuQmdFYju9g7N1LVEGavF0mS0g5azyNx1xW8hXdlL1V3RXHdicDiJQyKOxavdmL421gsWxRqG7qdC8~m4alOhgAXc9lZfNsjCeO--3r1unVzH74isHZVzLal0x4GgfSpmSydrqHox3dEYBkafwYyTwuVKI7CbwHmpuybPhYHY7hlhJJW1cs7NzDPWO~yElypGsMz4Q72h4A__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-I8cc2Lu+uuIW0sW1jYquyw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=quZeCxS0%2BZAfgcW95ioRPJjv2EpmhRcLhymT7KHxUsYyIS%2FKeu0MUH22uMlDcBAtuq9oD9bjdt2s%2F0SO6wO%2FrJlxiL2yywjxYz7JbuA%3D--5J16Abc0fehf4wTF--chYEzaZqjPamwlwSHXFnxw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: d24bdfd6-330a-46f0-a34a-8909c45ddba6
X-Runtime: 0.043300
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/e6puj29atdp26nkn?variant=350x350
302 Found 514 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/e6puj29atdp26nkn?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 398e721da6e96eefb2ed846714011e3d
148e2ba5b1dcf30cbaff4ebbb776ffaa5fac791b
4cfb05ad5a6025a21b716782ff7c5b23665e9bc95b35bec2d518bc5db3556c92
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/e6puj29atdp26nkn?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2Fc19bf3f4-e37b-4252-ace4-47d4df0e6e0c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=a93zGgNwM50J~bioivjvd4uH479s5NWHmfg0Kb5FSmrV4D5etoZ8B5vdtoV9tFzWagiw2qvRF1o6BKBIzRNqVo0R-S8mKEtl5nNYP~hi4qq1aa1dk1CqL7wQY-dssJ67TWvKXZk0~hAjD0ApV9lEAJwWoSQ12BUTEkHaMyebA3MwUvAMKkgrrMAxNbzrqyc6RDEd~WT3XUY7LVZGxm9rLpyyb82pML5WnUe7-9I4Jh4SGVSme4LWpuYkVfzFlSBAs5t2hPfA9kQJPH0imbs33YOICzwJUNbRJxKu978RDJi7Wmtyhn3EQJZ46VbADdEUmDPbf3Qc8VBeG5q8JwYBkA__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-RLxph17gb2OtcLaZbnM3Hg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=torYCKtSA6QCCBD0BZJl01Fv6YruUAaXUvr2S6a8jz5vtHNDLuabz5sjIwG9aIUsWzCSdzyV7TqYvOdzrcMNDDAsj1DHmPq5ctPZZbw%3D--HB0tQ1GysFU8hD0q--mLtxnQ9XMCufCgJaN6Z%2FSg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 013d8170-84a1-4d68-bf2c-653e4b929d70
X-Runtime: 0.059669
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/3htrdaavydwtfqt3?variant=350x350
302 Found 515 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/3htrdaavydwtfqt3?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash cbeb078dd564fc80ababe7353b3ded94
c945b90af554d9f063ff30db972564c3a8c358a7
71b6b0981ff770c00bfd6bb50a25e082c98ca24c62ca55f756a134f0f9963849
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/3htrdaavydwtfqt3?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F1284748f-b49a-4fff-8c15-7556eff18100%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=M09M2iDoOKUbVTLCJzcTWP0GkIsFX-nIlh7B8pEo6xfeNEMwJFAwwpMKUxL7o-aG9jGIfdg6v1RzEST8hkEYA~nqP~xN3G4qxjUYlJqXK4LPO5dmFN3~Vjbz1sCGfK0aCj6p1U09DDJ1uBjbkZx0HUq7WqrtW9IcXqy1-pyRxH-We27ifEBA~iojens4v8aW3YtF9x6UxBonuoYoEYlublap-VXEJszYUPQ3Y2r-V3-OygoccLLwc4ZZM7-38~xJuMpxDYMyzCkPkkLQkwwVqvV6O4paxRjrMH~1tTqdCiaDC7dS7FCyxwJHoVKWzDJ5KAi4X25a2nscS0bFltESJA__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-7VyXZl5CxZyORC3SF+t8IA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=5tgnYzpp64jYjDWYJyBP5lfE2jGZbaRYxO2MjNfaxA0ob2J5vtvE%2BfjmcntjQBZnivd4ejgP%2FfpV6mB0TgtwyqDcMMNT%2BtTdwUZr%2Fus%3D--4sZibw%2B7dII3RmEV--zPJxvlp0by4AN6TkdAyr2A%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 46e25a09-5127-48be-b5ef-efaa47856f02
X-Runtime: 0.044952
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/8c7tsi8ensgtjwvg?variant=350x350
302 Found 513 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/8c7tsi8ensgtjwvg?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 117e96ef4edae1651c34a6cec1c522f0
161df9b6b473a9fb494ee2914449b347e7655483
d299773ec572b5159f98778350e4fe48c621f4b63dab9f11bb990a48494aca32
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/8c7tsi8ensgtjwvg?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F39843d77-f173-4ce8-92d7-d5b42d42b61d%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=m1h~CGztd6D3Ge3T6~Xn3TrGmAyzFZPP8h1xF5bbZGtkI7q7Xq~uHoRQk7VWVAX2KhPh4WvjLfPdScrTxDErwiTy8V0dBrCGLJ9sHCNbuzswCdPGfxMLicNWrYkcfKbb8D8UUYN99hY~aoxlDhz5zjj8U9-ChHAfOs79tRewT0~rdlEKlx9iTSACWY5F35vejK5AZ25frKU7myTt5TcOOlrONT01xwTbOxwnmnOuD3i46sJSwbyr1IqQsYbzS4i9pDpEQF0vXzIlrAhpxEsTIT7e0bxoIZyeRAuvXLZxZN8EhzuIWdjpxYlIYZPeDsItmN3-M7N2wgK0gHjf8pQ~~g__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-ogM+YfRhCGiO8lHkNn58VA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=%2BKuGjSQABjzkYd3Lzb9qt5yD5K7BZKHtwY%2BcsvYyGZZozptS6xMVrCw1Xm7lzPDJhimw5jwuLf5XTy7fQcvbtUiA88qwIPtjXoXjRzs%3D--Dq4MJhejOsV62u9S--ShJvbE253p5Cwoce1Xg44g%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 65848e66-ceb7-473e-aecc-4a3df08ac1d4
X-Runtime: 0.057015
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/ss6zp8ws7ajm3zbh?variant=350x350
302 Found 515 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/ss6zp8ws7ajm3zbh?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash e5dc3c28d4092947b4397cde54922108
abc37f7e142550915131ec5e61fefd18997bab7f
f88cfbfa75552986b6d764cea70f317f8aa52a1af15c67264c21d0713eda903c
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/ss6zp8ws7ajm3zbh?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F061c1d14-7709-4d21-9094-2493b11d94ea%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=NcKjxFYfmZOaVZnzAHW66QEfZMkazf4CcFqA4U8Bl5p2pEb-crg~Pk1f6mD9SA5NAvteR~wbxyTj~H0ekZspR6NmJBij5rpWmtgfeeCq2UIIoOuRCTb9QFmwszEkLbh8q0W9ICSDlkji7CXb8uXVNlQ1d-Hq9od~DM9JkwRo6B-abN4Fgb-ZgstyMiuTl98zg4JCxSJ~zZlaph38nOHepGjxhoV8sxKvgIol-n4wPvKtGo4QINizix-PTfCmjxO1tLCQJrx6NpG1qHahvRVsGWgCT89caC8N7NP489FVRqJzvi2GDwryXSzW3CC7m7uO760yqdUJvBcLXT1~mMZQ7A__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-zye+SHoPu8Z75sfy8Btt6w=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=npEA0meO4h7%2FRKfRLLuV0oCf%2BdzX44VLZLfca8CcNVMaecl0BYet1ae9G2BrZVcIL%2BvHfEH%2FYJJBKG%2FT8euUGbPLuBJSilXAr2C7uXA%3D--0JOOKnKij4S4L8G6--jnIA8jw7T%2B8wrZ0vkvIedQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: eabdb74e-67df-4257-bf24-50c96b175611
X-Runtime: 0.049271
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/4svsw75zsmc29aaz?variant=350x350
302 Found 512 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/4svsw75zsmc29aaz?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash e3bbe9baf3a9e670db70acbf2a76da8f
3e7da5da86fe89f51679cf5ccf1440c1f25f0604
d77699f6b9b84e83cdfb13351295f9deb4ec32e5d57fc6b15a9b330637497e09
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/4svsw75zsmc29aaz?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F9399b316-b756-4444-9f55-d60decfe928c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=HbA-3ZDqCqSir5~nbRB4SYe1RjV5sNbTwjQu9yVyalsCsfNtilmTJECD~bEUjaOwd2TZysN02I6~6C1O~JbYoGiXNwvSQlpe1~RE37SEgkcVseEA8M7ZMqCmpCsiupBM5ZNAhLZoGeEWUcifPUnqiDBLcHnKzMm4Yv4r0uJqj~UTdpbP8rzxWq2ZFgbTHKoxiwn2XVXnrUBh8efMpz9VqY4SRiop4rFihOOHv0DU32mNhWSuKUmiNBlpmTgD0XZIwl2GSWCZ~PNOJamk3vhQ9DV3Gz8hB9eVv0jBWeiNL5C69h6o1-pjhS4qTsT~Z98gl~K1BZtwk0rTnASNq3cbiA__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-vMV5V9f5BjKh46IblyjhbA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=vCC7vLI6LnuOhMqSFLFdrobK2cET1rIWu6FfSW0PqUYo01rQVvA%2FnmvSddjJKtDVp1x443vIjKaB5wTlgHlt6MS8IV6fsQpbFVNFR5I%3D--giYb%2FgQ%2BhO5bn%2FVX--uoLD%2FbCqLrWBWu2sbh5I%2Fw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: a46a5dfd-00d9-443a-8035-8b328a9fa4d9
X-Runtime: 0.045871
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/metrics/events
204 No Content 0 B URL HTTP/1.1 rufus.docsend.com/metrics/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------33747694163959236622925874041
Content-Length: 1088
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-eXAscGsOiw3MDdKQqxTROg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: dee6b6c3-eb40-4d4e-bfef-8b7636d2ca17
X-Runtime: 0.015605
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/sa778fet9bnrheek?variant=350x350
302 Found 512 B URL HTTP/1.1 rufus.docsend.com/view/s/u2xht3sy4zbdisnk/doc_thumb/sa778fet9bnrheek?variant=350x350
IP
File type HTML document text\012- HTML document, ASCII text, with very long lines (588), with no line terminators
Hash 1672e0e145d0ebcc674d512c480ece6a
0d10de4309da890fbf83dadf0c0aa17cca4f4739
2ff9c7d34ce9b6d7e44b80a9e9287c71f88dd537c4a1c0d6ddb362efd6879e1f
GET /view/s/u2xht3sy4zbdisnk/doc_thumb/sa778fet9bnrheek?variant=350x350 HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=zrqvABzriYwjCfsWR5pUIV1vLTuZXizcaZLodz33SE1AfA3HTM73EdUxWLuPEo8wZ2Y2a%2BghBPBinTPU%2BK2ybtsRiUkJISnIeo5toCs%3D--CfgMmoG%2BxOpUwaHM--K7jETkHnjUNaMkkSmi957g%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://d2qvtfnm75xrxf.cloudfront.net/docs%2F0deddd21-226c-44cd-bb5e-c317ca463a85%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=WJ4TP-BmhC5K1sJZGPO7FuQbE-To9a3Te6Z2MJUdgcKkEsGUzkpoqPLYY~iq5LMZMyKRWS3dWekv8EYex9QcKUK4Xz2SN29Puiosp0fMHvn~RG1godCRF9KoApv6RHU9kBMaJyxdQDUCd~6X5LQjsq5ay9kqsDF23h8t5Xx2VLSeMH3YviktqG6CUPZzsKWBp9bcKSY10Pih-w3F417hKQnznnqaoyuJlIDyX~eF-jtNgZa7P3BtiXFRBJTaezQGRdsmmkCOydqoLjZR3sPLICKuvg1r6DQGVHF5CuPbBV-E5d11xi~JmcMoHa6i0GkdAsty4rAPy4uKROPuaIKp6Q__&Key-Pair-Id=K3IVFO0KFGPSF4
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-BpPP+F5wmvhld9qbr7rZcA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=dxP9japhA0%2F9KTfo%2BcgobIzglC7AZeJFpQVrFET8Ds8r6vASKGImQcSarliQQLfChWcldvu4vzWHQSTeebsdJVdW%2BkuAQhjgbka0TPc%3D--V%2F2gR59J2mrQSj8Z--sn%2BdX%2BVaeRi%2BKSMHkFi7%2BQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 10:54:06 GMT; SameSite=None; secure
X-Request-Id: 9875af15-5c6e-4102-95b7-7d8b6b402144
X-Runtime: 0.057393
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
c.evidon.com/sitenotice/3401/translations/en.js
200 OK 6.4 kB URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js
IP
File type ASCII text, with very long lines (41349), with no line terminators
Hash 7cdb0408336768c3c8697de7fe062fed
455d1237f3256aba83c5102b10212f8bc767bf22
f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece
GET /sitenotice/3401/translations/en.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772"
last-modified: Tue, 04 Oct 2022 16:06:31 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 10:54:06 GMT
date: Thu, 19 Jan 2023 10:54:06 GMT
content-length: 6406
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
rufus.docsend.com/metrics/properties
204 No Content 0 B URL HTTP/1.1 rufus.docsend.com/metrics/properties
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/properties HTTP/1.1
Host: rufus.docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: JGPabRPvQTCMnQHVjgWSJp3c9ytOMPBOLfHGYb4dJYmeN/tOclaauxTSTxNyWRSnWABlrDtjV6/l3PSf6E1ikg==
X-Requested-With: XMLHttpRequest
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
Cookie: _v_=dxP9japhA0%2F9KTfo%2BcgobIzglC7AZeJFpQVrFET8Ds8r6vASKGImQcSarliQQLfChWcldvu4vzWHQSTeebsdJVdW%2BkuAQhjgbka0TPc%3D--V%2F2gR59J2mrQSj8Z--sn%2BdX%2BVaeRi%2BKSMHkFi7%2BQ%3D%3D; _dss_=eabfb0b2ddbf9622cdf18d52467eec01
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 10:54:06 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-uW6T8yzNp7xQTE+jZ61c2w=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 5928bd69-2c23-4969-8a5f-85967b3b1f04
X-Runtime: 0.009425
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
c.evidon.com/sitenotice/3401/snthemes.js
200 OK 5.7 kB URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a975aa3305c4011b3e07119d2376913
4545dc0986810ba851360f910219b34ce7c4446d
400f7ad9cb8378b5839d4f3449381d936f37fd0762f8507d283304c82068d122
GET /sitenotice/3401/snthemes.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398"
last-modified: Fri, 29 Jul 2022 21:56:25 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 10:54:06 GMT
date: Thu, 19 Jan 2023 10:54:06 GMT
content-length: 5695
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
www.dropbox.com/pithos/privacy_consent_service
307 Temporary Redirect 20 kB URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service
IP
File type ASCII text, with very long lines (65352), with CRLF line terminators
Hash 0cb0c1e30ff132c1e3113f34e7804436
2ec0b436d3b8174b2bf54ff4d4cf40f8d07fe8ae
d979d1bc065ac75a0a2a8117b5938addf07a7505a0f7e890417369cf4f5c77c2
GET /pithos/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MTE3MDk2NjExMTIxODA2NjI0MzY2ODA3Mjc0OTgyNDk0ODY2NDg%3D; t=qVCJ7z9idKlI9hHKPHcgezpF; __Host-js_csrf=qVCJ7z9idKlI9hHKPHcgezpF; locale=en; __Host-logged-out-session=ChAB7cxLHVO5s1S++WZatIJfEMvCpJ4GGi5BRmdHenV6SUJvN3RZY3Y1TEM5eE1GWExUUDZZQVYwV0JfZE9zYjd0Z2YyMEh3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=qVCJ7z9idKlI9hHKPHcgezpF; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=qVCJ7z9idKlI9hHKPHcgezpF; expires=Sun, 18 Jan 2026 10:54:06 GMT; Path=/; SameSite=None; Secure
__Host-ss=b0JGCr_oos; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Thu, 19 Jan 2023 10:54:05 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 276d36c5710a458392f1efdb2c9160e4
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
200 OK 1.7 kB URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
IP
File type ASCII text, with very long lines (5082), with no line terminators
Hash 181b62cb4ca1877b5952d8864d1ddb04
ebae59485369852733c2648e907227b2a7666bc5
425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f
GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043"
last-modified: Tue, 06 Sep 2022 17:34:52 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 10:54:06 GMT
date: Thu, 19 Jan 2023 10:54:06 GMT
content-length: 1691
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/evidon-banner.js
200 OK 3.5 kB URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js
IP
File type ASCII text, with very long lines (12607), with no line terminators
Hash 304674456118422bd448366f7bb05879
c6549199a4fb419c05a3513238a89002307034b9
29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068
GET /sitenotice/evidon-banner.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236"
last-modified: Tue, 20 Dec 2022 17:50:10 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 10:54:06 GMT
date: Thu, 19 Jan 2023 10:54:06 GMT
content-length: 3535
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
d.dropbox.com/crashdash/proxy/sessions
202 Accepted 21 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2023-01-19T10:54:05.444Z
Content-Length: 465
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bugsnag-session-uuid: 692db71d-13c3-4d9d-a5d0-1a798f50d4ef
content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none'
content-type: application/json
date: Thu, 19 Jan 2023 10:54:06 GMT
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 21
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 58ab264083a441aaa29e744a9d794884
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/docs%2F0deddd21-226c-44cd-bb5e-c317ca463a85%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=WJ4TP-BmhC5K1sJZGPO7FuQbE-To9a3Te6Z2MJUdgcKkEsGUzkpoqPLYY~iq5LMZMyKRWS3dWekv8EYex9QcKUK4Xz2SN29Puiosp0fMHvn~RG1godCRF9KoApv6RHU9kBMaJyxdQDUCd~6X5LQjsq5ay9kqsDF23h8t5Xx2VLSeMH3YviktqG6CUPZzsKWBp9bcKSY10Pih-w3F417hKQnznnqaoyuJlIDyX~eF-jtNgZa7P3BtiXFRBJTaezQGRdsmmkCOydqoLjZR3sPLICKuvg1r6DQGVHF5CuPbBV-E5d11xi~JmcMoHa6i0GkdAsty4rAPy4uKROPuaIKp6Q__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 29 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F0deddd21-226c-44cd-bb5e-c317ca463a85%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=WJ4TP-BmhC5K1sJZGPO7FuQbE-To9a3Te6Z2MJUdgcKkEsGUzkpoqPLYY~iq5LMZMyKRWS3dWekv8EYex9QcKUK4Xz2SN29Puiosp0fMHvn~RG1godCRF9KoApv6RHU9kBMaJyxdQDUCd~6X5LQjsq5ay9kqsDF23h8t5Xx2VLSeMH3YviktqG6CUPZzsKWBp9bcKSY10Pih-w3F417hKQnznnqaoyuJlIDyX~eF-jtNgZa7P3BtiXFRBJTaezQGRdsmmkCOydqoLjZR3sPLICKuvg1r6DQGVHF5CuPbBV-E5d11xi~JmcMoHa6i0GkdAsty4rAPy4uKROPuaIKp6Q__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash 1559c3b76a3b78a6baf3c085450a12c1
55754426845049ab1bfe7814ded92bab5eb05274
ee72c035b32d15144fbfc0ff718a7108b09ab8a5c95d93d12191ed9212fa3b61
GET /docs%2F0deddd21-226c-44cd-bb5e-c317ca463a85%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=WJ4TP-BmhC5K1sJZGPO7FuQbE-To9a3Te6Z2MJUdgcKkEsGUzkpoqPLYY~iq5LMZMyKRWS3dWekv8EYex9QcKUK4Xz2SN29Puiosp0fMHvn~RG1godCRF9KoApv6RHU9kBMaJyxdQDUCd~6X5LQjsq5ay9kqsDF23h8t5Xx2VLSeMH3YviktqG6CUPZzsKWBp9bcKSY10Pih-w3F417hKQnznnqaoyuJlIDyX~eF-jtNgZa7P3BtiXFRBJTaezQGRdsmmkCOydqoLjZR3sPLICKuvg1r6DQGVHF5CuPbBV-E5d11xi~JmcMoHa6i0GkdAsty4rAPy4uKROPuaIKp6Q__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 28697
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2023 05:52:39 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:07 GMT
ETag: "1559c3b76a3b78a6baf3c085450a12c1"
X-Cache: RefreshHit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OWV9jVvvT29Z2lmagJ1vnXChCuXSrNR_-7OS9X7VQXj3-6-xa28Ofw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F22b1307d-c5a8-4a5c-8f2c-4d1a7c76936f%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=j9atKW2IebmPpa0i-2ONhExYLuniC77LlAs32wN5ALUysTCfzz8oA2kYIPLdyOGXvuQFvH1s2BGas~92syZFIk1vPmE4aLvXnsk1HQOVxPNY2DJ-pYf1jMMecc-vH9bCbA-dclwQmkbN2LCse-HIabcpf93gpSJfKC9Nd-2s9v8FDNZ5UTSwbEEjWOVbhCPzPAYUhrhFSq~pc3io-EfO~BXNrowuEfyzDpQs8wCYLRy3aLhGkCMe7QA99RMevPE24inR3EF~1k0GuavVoerbCcY~67qo9XkO9ocOZ8IkiGNXNvMt0e2iyyQX0K0k4MbtcLWX1qQHKhSCMXikz04KfA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 34 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F22b1307d-c5a8-4a5c-8f2c-4d1a7c76936f%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=j9atKW2IebmPpa0i-2ONhExYLuniC77LlAs32wN5ALUysTCfzz8oA2kYIPLdyOGXvuQFvH1s2BGas~92syZFIk1vPmE4aLvXnsk1HQOVxPNY2DJ-pYf1jMMecc-vH9bCbA-dclwQmkbN2LCse-HIabcpf93gpSJfKC9Nd-2s9v8FDNZ5UTSwbEEjWOVbhCPzPAYUhrhFSq~pc3io-EfO~BXNrowuEfyzDpQs8wCYLRy3aLhGkCMe7QA99RMevPE24inR3EF~1k0GuavVoerbCcY~67qo9XkO9ocOZ8IkiGNXNvMt0e2iyyQX0K0k4MbtcLWX1qQHKhSCMXikz04KfA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash 274b8052939d629711e2bb16a9c0f6ee
354a31f3afd06edffe604eaf74596a62cdbe45ad
d8dc9e34a03de73921a7806fbd3f2cb6d4a1d5140ae40d3d25f17ab5d8f64e42
GET /docs%2F22b1307d-c5a8-4a5c-8f2c-4d1a7c76936f%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=j9atKW2IebmPpa0i-2ONhExYLuniC77LlAs32wN5ALUysTCfzz8oA2kYIPLdyOGXvuQFvH1s2BGas~92syZFIk1vPmE4aLvXnsk1HQOVxPNY2DJ-pYf1jMMecc-vH9bCbA-dclwQmkbN2LCse-HIabcpf93gpSJfKC9Nd-2s9v8FDNZ5UTSwbEEjWOVbhCPzPAYUhrhFSq~pc3io-EfO~BXNrowuEfyzDpQs8wCYLRy3aLhGkCMe7QA99RMevPE24inR3EF~1k0GuavVoerbCcY~67qo9XkO9ocOZ8IkiGNXNvMt0e2iyyQX0K0k4MbtcLWX1qQHKhSCMXikz04KfA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 34238
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 21:49:43 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:07 GMT
ETag: "274b8052939d629711e2bb16a9c0f6ee"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NOYfV-TUdSDuslrpJmcb45cBDQt6-ESntDIyQXGSuCprc5SuPt5PoA==
d2qvtfnm75xrxf.cloudfront.net/bundle_logos%2F5a0d57b3-8c11-4a0c-ab28-a798614399e1%2FvZXIUGdQGq8dfdejptOA_red+stripe+logo-01.png?Expires=1674125703&Signature=JW4qEDhfXOlfj5QWWbyOJscKWJXCebldnvFu6G7I9YJ7vT~J3n8PvMM7sQBPu0YSNv~41RxpK~UWAp7gQEv-ZPYJsfe2dIoUJdfBpQ5-HV7YFr3N5530whN~Fed5wh7-RNdAkePs~G4uacqsp9UPBrLRByCMdlRE91JnQWbbYw~OOXuk43K6PtL~6WeEISc~vfXzh-MAUufyn5rs2EyP-t1~8yMmi82OurH8IC9gu6xwbhqSbeWpLgLEDcDCAZjHpTscpYUYZYg9FxPZ642ZVoCPkhDj2LXAHnQ4bseIv2N9NNMQ2oGNXpdbsFW4cVzIUvINxw-Mgd48isZi5nbCAA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 750 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/bundle_logos%2F5a0d57b3-8c11-4a0c-ab28-a798614399e1%2FvZXIUGdQGq8dfdejptOA_red+stripe+logo-01.png?Expires=1674125703&Signature=JW4qEDhfXOlfj5QWWbyOJscKWJXCebldnvFu6G7I9YJ7vT~J3n8PvMM7sQBPu0YSNv~41RxpK~UWAp7gQEv-ZPYJsfe2dIoUJdfBpQ5-HV7YFr3N5530whN~Fed5wh7-RNdAkePs~G4uacqsp9UPBrLRByCMdlRE91JnQWbbYw~OOXuk43K6PtL~6WeEISc~vfXzh-MAUufyn5rs2EyP-t1~8yMmi82OurH8IC9gu6xwbhqSbeWpLgLEDcDCAZjHpTscpYUYZYg9FxPZ642ZVoCPkhDj2LXAHnQ4bseIv2N9NNMQ2oGNXpdbsFW4cVzIUvINxw-Mgd48isZi5nbCAA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type PNG image data, 2084 x 2084, 8-bit/color RGBA, non-interlaced\012- data
Size 750 kB (749478 bytes)
Hash 2ef430be62bff200985c3498c0ff7013
37f3aa5c33ba07e5fa1d9da28d547d1503d2247c
824d2c656a7d0d3e3ecd1ca00e3022042c58e0d11ccb1cf5cabe9e6dfcb77333
GET /bundle_logos%2F5a0d57b3-8c11-4a0c-ab28-a798614399e1%2FvZXIUGdQGq8dfdejptOA_red+stripe+logo-01.png?Expires=1674125703&Signature=JW4qEDhfXOlfj5QWWbyOJscKWJXCebldnvFu6G7I9YJ7vT~J3n8PvMM7sQBPu0YSNv~41RxpK~UWAp7gQEv-ZPYJsfe2dIoUJdfBpQ5-HV7YFr3N5530whN~Fed5wh7-RNdAkePs~G4uacqsp9UPBrLRByCMdlRE91JnQWbbYw~OOXuk43K6PtL~6WeEISc~vfXzh-MAUufyn5rs2EyP-t1~8yMmi82OurH8IC9gu6xwbhqSbeWpLgLEDcDCAZjHpTscpYUYZYg9FxPZ642ZVoCPkhDj2LXAHnQ4bseIv2N9NNMQ2oGNXpdbsFW4cVzIUvINxw-Mgd48isZi5nbCAA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 749478
Connection: keep-alive
Last-Modified: Wed, 05 Jan 2022 19:23:49 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:07 GMT
ETag: "2ef430be62bff200985c3498c0ff7013"
X-Cache: RefreshHit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: afVAL4V3X2tBentus4jBO9b7mHtRbdLhhJIW4l-z2JqHRyojCzBRtg==
d2qvtfnm75xrxf.cloudfront.net/docs%2F6f3a61e9-4bbc-4681-9e5c-76d4be4b1c9e%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125705&Signature=fojJBWmQwJBfgSLzKOxo2mtpfqRsw9fGGO0IMbIoHxBI2w7s9x1Ox2iGt4Yk2V~~h1fUJ94nl2NYT2U~LnDpmkEd-KiBR3W5a~UkvURMAzGwcPtQ21HEOUljH7x17j0D6q7iMe8IVW1WJNTXDVwT3ywKhH0t9O5tUS83o2WiTds6RDw8ZrCRagsQZANUJ9IyqryxLNj59N~YEoLu0y11eq3TEOmYT5-cr5NFQTVS8nFASKRZUI9mDavZGU2VgnDNNvyKLFxdAQETVMdLNR6-rxH3lc1lY5~cXeImkqeHwJn9xfaCYsLRzE-PqBKeG1f8ZhI2Nu7v4ZinM3RW4~yd5A__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 6.1 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F6f3a61e9-4bbc-4681-9e5c-76d4be4b1c9e%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125705&Signature=fojJBWmQwJBfgSLzKOxo2mtpfqRsw9fGGO0IMbIoHxBI2w7s9x1Ox2iGt4Yk2V~~h1fUJ94nl2NYT2U~LnDpmkEd-KiBR3W5a~UkvURMAzGwcPtQ21HEOUljH7x17j0D6q7iMe8IVW1WJNTXDVwT3ywKhH0t9O5tUS83o2WiTds6RDw8ZrCRagsQZANUJ9IyqryxLNj59N~YEoLu0y11eq3TEOmYT5-cr5NFQTVS8nFASKRZUI9mDavZGU2VgnDNNvyKLFxdAQETVMdLNR6-rxH3lc1lY5~cXeImkqeHwJn9xfaCYsLRzE-PqBKeG1f8ZhI2Nu7v4ZinM3RW4~yd5A__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash 066127f9c81458d7465fd2e33ebb46e8
f702755adab6814618991d64c20b58ff5673507e
5f75e8c6586919f9be3be6fa786460d4e4300938f299aacf3c380d1fdb0e9bb9
GET /docs%2F6f3a61e9-4bbc-4681-9e5c-76d4be4b1c9e%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125705&Signature=fojJBWmQwJBfgSLzKOxo2mtpfqRsw9fGGO0IMbIoHxBI2w7s9x1Ox2iGt4Yk2V~~h1fUJ94nl2NYT2U~LnDpmkEd-KiBR3W5a~UkvURMAzGwcPtQ21HEOUljH7x17j0D6q7iMe8IVW1WJNTXDVwT3ywKhH0t9O5tUS83o2WiTds6RDw8ZrCRagsQZANUJ9IyqryxLNj59N~YEoLu0y11eq3TEOmYT5-cr5NFQTVS8nFASKRZUI9mDavZGU2VgnDNNvyKLFxdAQETVMdLNR6-rxH3lc1lY5~cXeImkqeHwJn9xfaCYsLRzE-PqBKeG1f8ZhI2Nu7v4ZinM3RW4~yd5A__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpg
Content-Length: 6116
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:07 GMT
Last-Modified: Fri, 16 Oct 2020 14:42:22 GMT
ETag: "066127f9c81458d7465fd2e33ebb46e8"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7BKh_mcMoENjhYctpeN1o1-Zfv8KEWP9yx3bmJUKJsKauiH2r6sFpA==
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4036
Origin: https://rufus.docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-tkW9QFAhdHqDt86Ds8Uo' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-tkW9QFAhdHqDt86Ds8Uo' 'nonce-qhAAn8rf7AAOYGWaPoU2'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=ODU0Mjg3MTk2NDQwMzk3NjMwNDQ1OTIwMDYzMTIzODYzNDU5MDg%3D; expires=Tue, 18 Jan 2028 10:54:06 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=Wu-tVPVuzbelQy1uKMGGwGUr; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=Wu-tVPVuzbelQy1uKMGGwGUr; expires=Sun, 18 Jan 2026 10:54:06 GMT; Path=/; SameSite=None; Secure
__Host-ss=d2Y3n95Ru8; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 10:54:06 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 10:54:06 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 504455ccf4bc47e59bf0bf45ffef3727
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/docs%2F4caa80bc-dccf-4d33-9450-5f86b8fcd5e2%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=cwR5VPi4fkgnRursgVdaeq2UAP-9jzrWHKhKe-34TOeVIcKQyT28t1J-2-OeQHuKTWbAg1y-fpFa56qo4LXdOQfZwxyPhexOTsvY9WQOKzn0QHw6Xyfa7R7mVCpCkN5nqzxbvaGf8GnWfy87hgHBXHxdeGLdGo~AuSP1rMe0ritEhcxpDPH6lKpQ86wNVjhDep7xkhR4qXewuRumRTahVrDaeG3yOZF4XMQFx4ADuxyD9NBwGWUaLPpo0jyV7zke96ApBOyF8GvpyQ8Vmu3MJ5LVyRVxDPBSG4GLQwY8pT8hS0kJvpRgH3~e7K6~PlUzGS4G~TO1KAzOfU3uKcuVEQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 38 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F4caa80bc-dccf-4d33-9450-5f86b8fcd5e2%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=cwR5VPi4fkgnRursgVdaeq2UAP-9jzrWHKhKe-34TOeVIcKQyT28t1J-2-OeQHuKTWbAg1y-fpFa56qo4LXdOQfZwxyPhexOTsvY9WQOKzn0QHw6Xyfa7R7mVCpCkN5nqzxbvaGf8GnWfy87hgHBXHxdeGLdGo~AuSP1rMe0ritEhcxpDPH6lKpQ86wNVjhDep7xkhR4qXewuRumRTahVrDaeG3yOZF4XMQFx4ADuxyD9NBwGWUaLPpo0jyV7zke96ApBOyF8GvpyQ8Vmu3MJ5LVyRVxDPBSG4GLQwY8pT8hS0kJvpRgH3~e7K6~PlUzGS4G~TO1KAzOfU3uKcuVEQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash e67d8ab5efa8da865ca7344e52d74cef
68a0e7b64376695d3be66ead524c395a19edb6ce
c1fa373431b20ca26c80b05b6aa1e2cabf07f3a57e7ac526656f29ba845f9884
GET /docs%2F4caa80bc-dccf-4d33-9450-5f86b8fcd5e2%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=cwR5VPi4fkgnRursgVdaeq2UAP-9jzrWHKhKe-34TOeVIcKQyT28t1J-2-OeQHuKTWbAg1y-fpFa56qo4LXdOQfZwxyPhexOTsvY9WQOKzn0QHw6Xyfa7R7mVCpCkN5nqzxbvaGf8GnWfy87hgHBXHxdeGLdGo~AuSP1rMe0ritEhcxpDPH6lKpQ86wNVjhDep7xkhR4qXewuRumRTahVrDaeG3yOZF4XMQFx4ADuxyD9NBwGWUaLPpo0jyV7zke96ApBOyF8GvpyQ8Vmu3MJ5LVyRVxDPBSG4GLQwY8pT8hS0kJvpRgH3~e7K6~PlUzGS4G~TO1KAzOfU3uKcuVEQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 37908
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:07 GMT
Last-Modified: Tue, 04 Oct 2022 21:50:13 GMT
ETag: "e67d8ab5efa8da865ca7344e52d74cef"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vwZlA0dyZhwAVqlY-1Jn7ixqVBcXLhbQC0LSRDGfxg_Lpu5FNhRlRA==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash d2bf2967e6dc4c4c35e6b6ea3c66b4a6
6869ed87f522b25d2ceba759f57649ef1d0c1289
7c3c1588ac2efbfdf7f8f7f6f7154703b8494cc310dc4f5d93bcb36ae7976abc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 19 Jan 2023 10:54:06 GMT
Last-Modified: Thu, 19 Jan 2023 09:13:13 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NY2T67XDq9X6MgLagqsXrpBmZ0JyNNhrUABxzgZfb8rtHHHDJG3vFg==
Age: 6053
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash d2bf2967e6dc4c4c35e6b6ea3c66b4a6
6869ed87f522b25d2ceba759f57649ef1d0c1289
7c3c1588ac2efbfdf7f8f7f6f7154703b8494cc310dc4f5d93bcb36ae7976abc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107104
Date: Thu, 19 Jan 2023 10:54:06 GMT
Etag: "63c80846-1d7"
Expires: Fri, 20 Jan 2023 16:39:10 GMT
Last-Modified: Wed, 18 Jan 2023 14:55:02 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2nEHN1eO7J_S9zq92GpwMcleRd5fcyf8RerxF8v8yVVi6UMW2F1u1g==
Age: 6248
l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F
204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 10:54:07 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F
204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Frufus.docsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 10:54:07 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/docs%2Fef2b3f42-1d59-41a6-ab09-a9db65a0fcf5%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=YSszQKEvGNDWBnLJa7dda1I4eS8tSHKJ~LoKOSQvqu9r-HVBZU4kdrHLGq51-tb2spwawno~MvRis2NAs2W6olTXFOeDKpXwW3CfGSmTcgP2BvxNKZEJ-Fp0HO-eYIBq4kO-MN9vict1KIZXQs0xnOf0INpRr1OnwMvBPfV0NJE9B5cGwkrPRB0hRgEshVCNUqAqRqwkqqtT13Wm2tEdDdOFZ6BmsbYOQV05VXfxb1aVIKwljhsKU004mmCEyqCUpaUV3STuzzUeDGDpE2Kj9YUtG3mzO4cuKEBxVyhVGMPx9ozASX~Iq3sVLIanLqY2NWzX-G9ikXq--PAPAzokBQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 6.8 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fef2b3f42-1d59-41a6-ab09-a9db65a0fcf5%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=YSszQKEvGNDWBnLJa7dda1I4eS8tSHKJ~LoKOSQvqu9r-HVBZU4kdrHLGq51-tb2spwawno~MvRis2NAs2W6olTXFOeDKpXwW3CfGSmTcgP2BvxNKZEJ-Fp0HO-eYIBq4kO-MN9vict1KIZXQs0xnOf0INpRr1OnwMvBPfV0NJE9B5cGwkrPRB0hRgEshVCNUqAqRqwkqqtT13Wm2tEdDdOFZ6BmsbYOQV05VXfxb1aVIKwljhsKU004mmCEyqCUpaUV3STuzzUeDGDpE2Kj9YUtG3mzO4cuKEBxVyhVGMPx9ozASX~Iq3sVLIanLqY2NWzX-G9ikXq--PAPAzokBQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash 307f149093152ea5cf5b9f2836938fc2
a51e4b6247e965b7ba67fa48e8045d6c0c284081
7fd140bad3fa86a43bc6749df1bf13003b25fc09b6f8182425db26b705b5cb53
GET /docs%2Fef2b3f42-1d59-41a6-ab09-a9db65a0fcf5%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=YSszQKEvGNDWBnLJa7dda1I4eS8tSHKJ~LoKOSQvqu9r-HVBZU4kdrHLGq51-tb2spwawno~MvRis2NAs2W6olTXFOeDKpXwW3CfGSmTcgP2BvxNKZEJ-Fp0HO-eYIBq4kO-MN9vict1KIZXQs0xnOf0INpRr1OnwMvBPfV0NJE9B5cGwkrPRB0hRgEshVCNUqAqRqwkqqtT13Wm2tEdDdOFZ6BmsbYOQV05VXfxb1aVIKwljhsKU004mmCEyqCUpaUV3STuzzUeDGDpE2Kj9YUtG3mzO4cuKEBxVyhVGMPx9ozASX~Iq3sVLIanLqY2NWzX-G9ikXq--PAPAzokBQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpg
Content-Length: 6802
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Mon, 29 Mar 2021 14:04:38 GMT
ETag: "307f149093152ea5cf5b9f2836938fc2"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WisyS-gNVPbNnjyeqFJgGgP4fyrhU5XTqblj7AYfmJJKsFItTUMTog==
d2qvtfnm75xrxf.cloudfront.net/docs%2F269368b2-8a9e-41da-b389-5fd84cff11d3%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=ZeVChewS7nkTPKnUMtvs3t6EiSPqBWPTtk1d3PMRppWT-RWRRQDL0vRZpu3xD7x8-OiBwoz4Qi6uoGznKFxLcUFvyncUxnkY8Nnq-PfVyVFZpOTHpGdCLRRNhr~ZpUADOsEKnf64Ay0pUBzAdKSmq6zDCfz1O5s2MuuNJBBKldYChpK0PPZaVqNJbpcfJzW3YBwZNOwzfjVY6d9RoKEgc8VuoEYqMzx-A5NJ2spU2nkqnk1ZUS919yp8Vlo-YNiylpvRKLWAmp8MDDscdZ5PG3tb-e-9VPOuWI-kbUrgMLWdMV2zmRZWRcGTFRtw3JyRwG6YKo4cHE3HyssNOb3k1Q__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 30 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F269368b2-8a9e-41da-b389-5fd84cff11d3%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=ZeVChewS7nkTPKnUMtvs3t6EiSPqBWPTtk1d3PMRppWT-RWRRQDL0vRZpu3xD7x8-OiBwoz4Qi6uoGznKFxLcUFvyncUxnkY8Nnq-PfVyVFZpOTHpGdCLRRNhr~ZpUADOsEKnf64Ay0pUBzAdKSmq6zDCfz1O5s2MuuNJBBKldYChpK0PPZaVqNJbpcfJzW3YBwZNOwzfjVY6d9RoKEgc8VuoEYqMzx-A5NJ2spU2nkqnk1ZUS919yp8Vlo-YNiylpvRKLWAmp8MDDscdZ5PG3tb-e-9VPOuWI-kbUrgMLWdMV2zmRZWRcGTFRtw3JyRwG6YKo4cHE3HyssNOb3k1Q__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash 1beb58687df6de3cce6dc3c757d65f02
426f3f4e543e503ead701e2e13ca47fff2144996
7bb1be02eab511891a9f5a8bc57f499312edeaa4bc17700e0ed6611bfd7e95ca
GET /docs%2F269368b2-8a9e-41da-b389-5fd84cff11d3%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=ZeVChewS7nkTPKnUMtvs3t6EiSPqBWPTtk1d3PMRppWT-RWRRQDL0vRZpu3xD7x8-OiBwoz4Qi6uoGznKFxLcUFvyncUxnkY8Nnq-PfVyVFZpOTHpGdCLRRNhr~ZpUADOsEKnf64Ay0pUBzAdKSmq6zDCfz1O5s2MuuNJBBKldYChpK0PPZaVqNJbpcfJzW3YBwZNOwzfjVY6d9RoKEgc8VuoEYqMzx-A5NJ2spU2nkqnk1ZUS919yp8Vlo-YNiylpvRKLWAmp8MDDscdZ5PG3tb-e-9VPOuWI-kbUrgMLWdMV2zmRZWRcGTFRtw3JyRwG6YKo4cHE3HyssNOb3k1Q__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 29614
Connection: keep-alive
Last-Modified: Thu, 06 Oct 2022 02:12:38 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:08 GMT
ETag: "1beb58687df6de3cce6dc3c757d65f02"
X-Cache: RefreshHit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vb58gI_H5nHoIQwHv1Exotun7XI6RZlQMVUgaCs5m7wlbhbGucsBCw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F05bd21ff-8ca4-49d7-9606-b0aca320d9f9%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hs1zJGJPPZozqK1I4fVBEfFHRwrY6c9-l585bYv9~MXZ3ObXKiqMIguIiB8v9G3A0~WYslE9u9sJg2tdZkKVSvBCy1WVvXmarVuIJjL5eBxgk0SzVxJgm24VJOZuV6h-2zvcwCZ4BEMZMUvs97ZsmBduFTmHpl6vFGBuOLqbVxX0Z1jfDhXVICMkCvlb0WArSNyQFIWPNtjkD8QmWdBlELxsTgxJ6cn0zfWREqeUQD2nxUw0SW2p4XP-dLZHs6aQg~DPga8wHDzvjbbzXeb~8QL4uNJa0JWqKSAC~XqdK00BoLMeY7ngyOFsy2ci4Ry5KMomPCUAVmrd6qTaEj8Tag__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 8.6 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F05bd21ff-8ca4-49d7-9606-b0aca320d9f9%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hs1zJGJPPZozqK1I4fVBEfFHRwrY6c9-l585bYv9~MXZ3ObXKiqMIguIiB8v9G3A0~WYslE9u9sJg2tdZkKVSvBCy1WVvXmarVuIJjL5eBxgk0SzVxJgm24VJOZuV6h-2zvcwCZ4BEMZMUvs97ZsmBduFTmHpl6vFGBuOLqbVxX0Z1jfDhXVICMkCvlb0WArSNyQFIWPNtjkD8QmWdBlELxsTgxJ6cn0zfWREqeUQD2nxUw0SW2p4XP-dLZHs6aQg~DPga8wHDzvjbbzXeb~8QL4uNJa0JWqKSAC~XqdK00BoLMeY7ngyOFsy2ci4Ry5KMomPCUAVmrd6qTaEj8Tag__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash b114c39d839675ef72fcbc85abfa6f9d
d920662c2d02484e714b6da57c4cddb2c4868225
3ef2c5d0730b5afaccd901ec092787241eb9cf30f0e15955a96eee2bb25b5f17
GET /docs%2F05bd21ff-8ca4-49d7-9606-b0aca320d9f9%2Fthumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hs1zJGJPPZozqK1I4fVBEfFHRwrY6c9-l585bYv9~MXZ3ObXKiqMIguIiB8v9G3A0~WYslE9u9sJg2tdZkKVSvBCy1WVvXmarVuIJjL5eBxgk0SzVxJgm24VJOZuV6h-2zvcwCZ4BEMZMUvs97ZsmBduFTmHpl6vFGBuOLqbVxX0Z1jfDhXVICMkCvlb0WArSNyQFIWPNtjkD8QmWdBlELxsTgxJ6cn0zfWREqeUQD2nxUw0SW2p4XP-dLZHs6aQg~DPga8wHDzvjbbzXeb~8QL4uNJa0JWqKSAC~XqdK00BoLMeY7ngyOFsy2ci4Ry5KMomPCUAVmrd6qTaEj8Tag__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpg
Content-Length: 8622
Connection: keep-alive
Last-Modified: Wed, 22 Dec 2021 22:58:20 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:08 GMT
ETag: "b114c39d839675ef72fcbc85abfa6f9d"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q048WTs14voalaqEUrnxnRg2nYmynk2Ti6XMoDrWcLA6R9hkWquOaw==
d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fb800fd91-0150-4a93-ad65-f48b331a9f25%2FxZE8T0zsSyS4Zt33ziuk_workhero+docsend+header-01.png?Expires=1674125705&Signature=RAdH-MJAjlBJsIouRz-bVjEiyDPFsnge7CluSgusmbVzEJXoDSPuwkwJc7hFCUS9EwzJv50B2u0VkyhJH0aBblvBI4kpG294fC~BaXPquk7fcT8JwrcwteL6hjIVWfckWnx8Up7ISeOKETsDHTU5y~chjb~NDuM1fiBRrQ-XZgw~GTqSOO9zGlwZYqu3RmeEHggFwGQ1Ga1tV1BJsXVDwOdY-pNfXO9quw0Ko6-7Y4Tfo~LcX9EQ-AoJppP4Nx2VmsICZ~hVoDnLoVdLPm8c4qPySnmXivAIq9kFln3mQX6tgPDRjIaoeLOWmMEuhADddwkLaj2OCEcTvhiP-bIp7g__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 2.0 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/bundle_headers%2Fb800fd91-0150-4a93-ad65-f48b331a9f25%2FxZE8T0zsSyS4Zt33ziuk_workhero+docsend+header-01.png?Expires=1674125705&Signature=RAdH-MJAjlBJsIouRz-bVjEiyDPFsnge7CluSgusmbVzEJXoDSPuwkwJc7hFCUS9EwzJv50B2u0VkyhJH0aBblvBI4kpG294fC~BaXPquk7fcT8JwrcwteL6hjIVWfckWnx8Up7ISeOKETsDHTU5y~chjb~NDuM1fiBRrQ-XZgw~GTqSOO9zGlwZYqu3RmeEHggFwGQ1Ga1tV1BJsXVDwOdY-pNfXO9quw0Ko6-7Y4Tfo~LcX9EQ-AoJppP4Nx2VmsICZ~hVoDnLoVdLPm8c4qPySnmXivAIq9kFln3mQX6tgPDRjIaoeLOWmMEuhADddwkLaj2OCEcTvhiP-bIp7g__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type PNG image data, 8000 x 2000, 8-bit/color RGBA, non-interlaced\012- data
Size 2.0 MB (2005038 bytes)
Hash d224c0d4f70bbd5637cdce2d660b02a8
4f34946ccf0c833324b2184a8b1565ac9f0daea6
452f5c8b2f4ed99835ad2a5e0c051a4e1f6fdc263809dedc7d6fb7bfeb6eba27
GET /bundle_headers%2Fb800fd91-0150-4a93-ad65-f48b331a9f25%2FxZE8T0zsSyS4Zt33ziuk_workhero+docsend+header-01.png?Expires=1674125705&Signature=RAdH-MJAjlBJsIouRz-bVjEiyDPFsnge7CluSgusmbVzEJXoDSPuwkwJc7hFCUS9EwzJv50B2u0VkyhJH0aBblvBI4kpG294fC~BaXPquk7fcT8JwrcwteL6hjIVWfckWnx8Up7ISeOKETsDHTU5y~chjb~NDuM1fiBRrQ-XZgw~GTqSOO9zGlwZYqu3RmeEHggFwGQ1Ga1tV1BJsXVDwOdY-pNfXO9quw0Ko6-7Y4Tfo~LcX9EQ-AoJppP4Nx2VmsICZ~hVoDnLoVdLPm8c4qPySnmXivAIq9kFln3mQX6tgPDRjIaoeLOWmMEuhADddwkLaj2OCEcTvhiP-bIp7g__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2005038
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:07 GMT
Last-Modified: Wed, 05 Jan 2022 19:23:49 GMT
ETag: "d224c0d4f70bbd5637cdce2d660b02a8"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mD2cOa33Jrj8ON959JwqbV3OcP1OtStspcJwYMlkij3ccow1D34pNA==
d2qvtfnm75xrxf.cloudfront.net/docs%2Fb06f203c-35d6-456c-8914-d73066594554%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=OtzTSo3LGiY4pQ9xsk~w-aAcHayZg4eF654jO80DL2g11gvhKjObSxllpXb2VAzTErZszvOk0ejkB2uh1NbVHUDHDwqar3HRem7s~dddvu9SaNMHtW~Klp4DUMlfPngByP6Fv4POaLQ3n1ZfDW6dpJXK3OVlKaTiW-gYiDVfwlAxTgr5Rhg2SS4N9q27l2aSoo9GjcxWf2SJvQu-MxCT9muiBQ8LtxOCiWzFIeRA-WukTpL17p8J-z6pNCU48L-Dd7HmN5Vroa7DET1upG7Ndfpd7eBGJa0M21bxZlgl54A-B5WbOjln9CBouTseHTG6sHl4~Wn0kKlBS3Ambus7~g__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 41 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fb06f203c-35d6-456c-8914-d73066594554%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=OtzTSo3LGiY4pQ9xsk~w-aAcHayZg4eF654jO80DL2g11gvhKjObSxllpXb2VAzTErZszvOk0ejkB2uh1NbVHUDHDwqar3HRem7s~dddvu9SaNMHtW~Klp4DUMlfPngByP6Fv4POaLQ3n1ZfDW6dpJXK3OVlKaTiW-gYiDVfwlAxTgr5Rhg2SS4N9q27l2aSoo9GjcxWf2SJvQu-MxCT9muiBQ8LtxOCiWzFIeRA-WukTpL17p8J-z6pNCU48L-Dd7HmN5Vroa7DET1upG7Ndfpd7eBGJa0M21bxZlgl54A-B5WbOjln9CBouTseHTG6sHl4~Wn0kKlBS3Ambus7~g__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash c795107b98ee479292df75363b9af9e7
94474ef2e5730e3b9f2a3f937bd5ac34ab6bb6dd
6850319ddb956f297baf8b7f8c41d5a65d51abba94f9a33d3745f6ef277d07ea
GET /docs%2Fb06f203c-35d6-456c-8914-d73066594554%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=OtzTSo3LGiY4pQ9xsk~w-aAcHayZg4eF654jO80DL2g11gvhKjObSxllpXb2VAzTErZszvOk0ejkB2uh1NbVHUDHDwqar3HRem7s~dddvu9SaNMHtW~Klp4DUMlfPngByP6Fv4POaLQ3n1ZfDW6dpJXK3OVlKaTiW-gYiDVfwlAxTgr5Rhg2SS4N9q27l2aSoo9GjcxWf2SJvQu-MxCT9muiBQ8LtxOCiWzFIeRA-WukTpL17p8J-z6pNCU48L-Dd7HmN5Vroa7DET1upG7Ndfpd7eBGJa0M21bxZlgl54A-B5WbOjln9CBouTseHTG6sHl4~Wn0kKlBS3Ambus7~g__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 41094
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Wed, 05 Oct 2022 04:48:43 GMT
ETag: "c795107b98ee479292df75363b9af9e7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KjDzNTpUnFaJaoVkUyZQfsV6DGwj94kXBSmAVleeqy7i6p0Fwc-DBg==
d2qvtfnm75xrxf.cloudfront.net/docs%2F264fa9d3-7a69-4906-a7e0-ba73b2f33305%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hRL-iU2iUt1OrmlYh-c2I5kZWFcpfZd6GjJjuau13KCucrCfeaDCgS8UvvLYYDFLS4flUrmYqRDHMPZjX9PXM~9ow-67WgtOAiSDlw6j9S4W22c1muQgvGoXHSzxM4NswC1DhMxKhU7r60pJdm8m0JttHzzFNzXw2k0HKBD08Pfg2DtuVPM7odadOj74PcEYK5HM3Xv4LnHuq1Nm2Ff53OaSiPDZssvsY61pFyjEwhCN-UkGCx6wkfpDQHysDODbKITZ8hjvk5KBGuSKllGIoiNECMyyZhuC~VRdmmtCX3mhi5TXvMgqI8kJN9Spsk~emsOr-LWCi9qfv2dP7QAliA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 36 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F264fa9d3-7a69-4906-a7e0-ba73b2f33305%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hRL-iU2iUt1OrmlYh-c2I5kZWFcpfZd6GjJjuau13KCucrCfeaDCgS8UvvLYYDFLS4flUrmYqRDHMPZjX9PXM~9ow-67WgtOAiSDlw6j9S4W22c1muQgvGoXHSzxM4NswC1DhMxKhU7r60pJdm8m0JttHzzFNzXw2k0HKBD08Pfg2DtuVPM7odadOj74PcEYK5HM3Xv4LnHuq1Nm2Ff53OaSiPDZssvsY61pFyjEwhCN-UkGCx6wkfpDQHysDODbKITZ8hjvk5KBGuSKllGIoiNECMyyZhuC~VRdmmtCX3mhi5TXvMgqI8kJN9Spsk~emsOr-LWCi9qfv2dP7QAliA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash fb3ebbe9ad72fe22eb673f47cf022204
7ecfe90b4378f4ef483f6f74d6dde0de359e097e
2f2bc6b6b0b7990de901cc28d1b56a5bbcf8e475729dd94e3cfa2b5b8be94f7c
GET /docs%2F264fa9d3-7a69-4906-a7e0-ba73b2f33305%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=hRL-iU2iUt1OrmlYh-c2I5kZWFcpfZd6GjJjuau13KCucrCfeaDCgS8UvvLYYDFLS4flUrmYqRDHMPZjX9PXM~9ow-67WgtOAiSDlw6j9S4W22c1muQgvGoXHSzxM4NswC1DhMxKhU7r60pJdm8m0JttHzzFNzXw2k0HKBD08Pfg2DtuVPM7odadOj74PcEYK5HM3Xv4LnHuq1Nm2Ff53OaSiPDZssvsY61pFyjEwhCN-UkGCx6wkfpDQHysDODbKITZ8hjvk5KBGuSKllGIoiNECMyyZhuC~VRdmmtCX3mhi5TXvMgqI8kJN9Spsk~emsOr-LWCi9qfv2dP7QAliA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 36062
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Fri, 28 Oct 2022 22:03:58 GMT
ETag: "fb3ebbe9ad72fe22eb673f47cf022204"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h6XayoebSr83r6gK16_eh_tK7Dm7-CILcF5W_BlRZ7NANZUK9WlgSQ==
d2qvtfnm75xrxf.cloudfront.net/docs%2Fc19bf3f4-e37b-4252-ace4-47d4df0e6e0c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=a93zGgNwM50J~bioivjvd4uH479s5NWHmfg0Kb5FSmrV4D5etoZ8B5vdtoV9tFzWagiw2qvRF1o6BKBIzRNqVo0R-S8mKEtl5nNYP~hi4qq1aa1dk1CqL7wQY-dssJ67TWvKXZk0~hAjD0ApV9lEAJwWoSQ12BUTEkHaMyebA3MwUvAMKkgrrMAxNbzrqyc6RDEd~WT3XUY7LVZGxm9rLpyyb82pML5WnUe7-9I4Jh4SGVSme4LWpuYkVfzFlSBAs5t2hPfA9kQJPH0imbs33YOICzwJUNbRJxKu978RDJi7Wmtyhn3EQJZ46VbADdEUmDPbf3Qc8VBeG5q8JwYBkA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 36 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fc19bf3f4-e37b-4252-ace4-47d4df0e6e0c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=a93zGgNwM50J~bioivjvd4uH479s5NWHmfg0Kb5FSmrV4D5etoZ8B5vdtoV9tFzWagiw2qvRF1o6BKBIzRNqVo0R-S8mKEtl5nNYP~hi4qq1aa1dk1CqL7wQY-dssJ67TWvKXZk0~hAjD0ApV9lEAJwWoSQ12BUTEkHaMyebA3MwUvAMKkgrrMAxNbzrqyc6RDEd~WT3XUY7LVZGxm9rLpyyb82pML5WnUe7-9I4Jh4SGVSme4LWpuYkVfzFlSBAs5t2hPfA9kQJPH0imbs33YOICzwJUNbRJxKu978RDJi7Wmtyhn3EQJZ46VbADdEUmDPbf3Qc8VBeG5q8JwYBkA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash 3b58591cfc321a2b90027ce2f3e34fa6
26011ea7ffc0559fa5f4d2e5940c353d8d30a3af
f973ef67e4bff815004a597dffbda8198e5366f216cb28e2abdd03af933a41ef
GET /docs%2Fc19bf3f4-e37b-4252-ace4-47d4df0e6e0c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=a93zGgNwM50J~bioivjvd4uH479s5NWHmfg0Kb5FSmrV4D5etoZ8B5vdtoV9tFzWagiw2qvRF1o6BKBIzRNqVo0R-S8mKEtl5nNYP~hi4qq1aa1dk1CqL7wQY-dssJ67TWvKXZk0~hAjD0ApV9lEAJwWoSQ12BUTEkHaMyebA3MwUvAMKkgrrMAxNbzrqyc6RDEd~WT3XUY7LVZGxm9rLpyyb82pML5WnUe7-9I4Jh4SGVSme4LWpuYkVfzFlSBAs5t2hPfA9kQJPH0imbs33YOICzwJUNbRJxKu978RDJi7Wmtyhn3EQJZ46VbADdEUmDPbf3Qc8VBeG5q8JwYBkA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 35798
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 01:18:58 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:08 GMT
ETag: "3b58591cfc321a2b90027ce2f3e34fa6"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vdGm6f5DHN1_ryZYkBX8eAw9ZXtabAqvIUnrnbbJJOQ5q-tndJ3oZg==
d2qvtfnm75xrxf.cloudfront.net/docs%2F72d2d4eb-99e4-413e-b29c-64bb9a66bdc5%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=vKSLS-1NCBUZKF8~ByV6cfL5UrWTRM1pavlMTsaSXNXoM02XlcJEC~A4JVt1Sx82madDgjDBam6~SK-kswGsnREhkNMd8wyIaXz8YZJ2lFiz9-rBfdGnRpa5ZZYpO9Yg5o9mwcv0YdgKfuQ58cDwnSLbUo5~uylpzGHcaSoQ2W2aX~7yVbJAFPmkulal-fN6IRlR6I3fkj2ZJ4MIG7A6b2GNiqmHUcdnKOf2nOt0h7--EPKvLRfZcvvXP~AY8TG05v2KIcTKeutrvOZ1krz7slFke-l45AlVZGnTXdsfI7pKZ4-3ZurKtArwRuGZDWENFifAheLarRrjezecGjdKjQ__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 38 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F72d2d4eb-99e4-413e-b29c-64bb9a66bdc5%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=vKSLS-1NCBUZKF8~ByV6cfL5UrWTRM1pavlMTsaSXNXoM02XlcJEC~A4JVt1Sx82madDgjDBam6~SK-kswGsnREhkNMd8wyIaXz8YZJ2lFiz9-rBfdGnRpa5ZZYpO9Yg5o9mwcv0YdgKfuQ58cDwnSLbUo5~uylpzGHcaSoQ2W2aX~7yVbJAFPmkulal-fN6IRlR6I3fkj2ZJ4MIG7A6b2GNiqmHUcdnKOf2nOt0h7--EPKvLRfZcvvXP~AY8TG05v2KIcTKeutrvOZ1krz7slFke-l45AlVZGnTXdsfI7pKZ4-3ZurKtArwRuGZDWENFifAheLarRrjezecGjdKjQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash 08c74aef98cf3d2d0190418e51c0638a
39df7ac2106882296d1b68c65dd2c0792ab897a7
37c63872df5882e6a250407be7bc07109173ed5838ba643876931fa90d6b080c
GET /docs%2F72d2d4eb-99e4-413e-b29c-64bb9a66bdc5%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=vKSLS-1NCBUZKF8~ByV6cfL5UrWTRM1pavlMTsaSXNXoM02XlcJEC~A4JVt1Sx82madDgjDBam6~SK-kswGsnREhkNMd8wyIaXz8YZJ2lFiz9-rBfdGnRpa5ZZYpO9Yg5o9mwcv0YdgKfuQ58cDwnSLbUo5~uylpzGHcaSoQ2W2aX~7yVbJAFPmkulal-fN6IRlR6I3fkj2ZJ4MIG7A6b2GNiqmHUcdnKOf2nOt0h7--EPKvLRfZcvvXP~AY8TG05v2KIcTKeutrvOZ1krz7slFke-l45AlVZGnTXdsfI7pKZ4-3ZurKtArwRuGZDWENFifAheLarRrjezecGjdKjQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 38038
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Tue, 04 Oct 2022 21:51:39 GMT
ETag: "08c74aef98cf3d2d0190418e51c0638a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Mu7MZj2u2iVmDiNB-RsZewdp1marJg-CvtfKW8gWq3G84AK2bwsRqw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F1a97dba0-cf43-40a2-92fa-d6d85f529141%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=U5X~Z1lH9in~zLX6rJFRcGF8-xZW0gA-MRVjbUtJ1JXTuqDT1nDUWj4TyBcNUBd3yoIM5Hk~Aocy~sx6s1JRlI3OasKiMKtQ0FJsgIoc5zxyOSI1LIoiK36N-OvcwxW-jp58ceYxJGTmuQmdFYju9g7N1LVEGavF0mS0g5azyNx1xW8hXdlL1V3RXHdicDiJQyKOxavdmL421gsWxRqG7qdC8~m4alOhgAXc9lZfNsjCeO--3r1unVzH74isHZVzLal0x4GgfSpmSydrqHox3dEYBkafwYyTwuVKI7CbwHmpuybPhYHY7hlhJJW1cs7NzDPWO~yElypGsMz4Q72h4A__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 34 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F1a97dba0-cf43-40a2-92fa-d6d85f529141%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=U5X~Z1lH9in~zLX6rJFRcGF8-xZW0gA-MRVjbUtJ1JXTuqDT1nDUWj4TyBcNUBd3yoIM5Hk~Aocy~sx6s1JRlI3OasKiMKtQ0FJsgIoc5zxyOSI1LIoiK36N-OvcwxW-jp58ceYxJGTmuQmdFYju9g7N1LVEGavF0mS0g5azyNx1xW8hXdlL1V3RXHdicDiJQyKOxavdmL421gsWxRqG7qdC8~m4alOhgAXc9lZfNsjCeO--3r1unVzH74isHZVzLal0x4GgfSpmSydrqHox3dEYBkafwYyTwuVKI7CbwHmpuybPhYHY7hlhJJW1cs7NzDPWO~yElypGsMz4Q72h4A__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash a9a9f8293530434fdd22258330c98b02
6f3c7f385bfe52aa8d93a822f47168111c268176
f6c9722f26c730049fe544a414e4ba8d0745c968c0725b8038b3efb9ad0cd39a
GET /docs%2F1a97dba0-cf43-40a2-92fa-d6d85f529141%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=U5X~Z1lH9in~zLX6rJFRcGF8-xZW0gA-MRVjbUtJ1JXTuqDT1nDUWj4TyBcNUBd3yoIM5Hk~Aocy~sx6s1JRlI3OasKiMKtQ0FJsgIoc5zxyOSI1LIoiK36N-OvcwxW-jp58ceYxJGTmuQmdFYju9g7N1LVEGavF0mS0g5azyNx1xW8hXdlL1V3RXHdicDiJQyKOxavdmL421gsWxRqG7qdC8~m4alOhgAXc9lZfNsjCeO--3r1unVzH74isHZVzLal0x4GgfSpmSydrqHox3dEYBkafwYyTwuVKI7CbwHmpuybPhYHY7hlhJJW1cs7NzDPWO~yElypGsMz4Q72h4A__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 34189
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Wed, 19 Oct 2022 01:20:18 GMT
ETag: "a9a9f8293530434fdd22258330c98b02"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0HK1L3qtwgzBA-tG1E5gUgeh4YYq1ehKnUAKI-Ckmbekbs_yqim8Hw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F1284748f-b49a-4fff-8c15-7556eff18100%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=M09M2iDoOKUbVTLCJzcTWP0GkIsFX-nIlh7B8pEo6xfeNEMwJFAwwpMKUxL7o-aG9jGIfdg6v1RzEST8hkEYA~nqP~xN3G4qxjUYlJqXK4LPO5dmFN3~Vjbz1sCGfK0aCj6p1U09DDJ1uBjbkZx0HUq7WqrtW9IcXqy1-pyRxH-We27ifEBA~iojens4v8aW3YtF9x6UxBonuoYoEYlublap-VXEJszYUPQ3Y2r-V3-OygoccLLwc4ZZM7-38~xJuMpxDYMyzCkPkkLQkwwVqvV6O4paxRjrMH~1tTqdCiaDC7dS7FCyxwJHoVKWzDJ5KAi4X25a2nscS0bFltESJA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 20 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F1284748f-b49a-4fff-8c15-7556eff18100%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=M09M2iDoOKUbVTLCJzcTWP0GkIsFX-nIlh7B8pEo6xfeNEMwJFAwwpMKUxL7o-aG9jGIfdg6v1RzEST8hkEYA~nqP~xN3G4qxjUYlJqXK4LPO5dmFN3~Vjbz1sCGfK0aCj6p1U09DDJ1uBjbkZx0HUq7WqrtW9IcXqy1-pyRxH-We27ifEBA~iojens4v8aW3YtF9x6UxBonuoYoEYlublap-VXEJszYUPQ3Y2r-V3-OygoccLLwc4ZZM7-38~xJuMpxDYMyzCkPkkLQkwwVqvV6O4paxRjrMH~1tTqdCiaDC7dS7FCyxwJHoVKWzDJ5KAi4X25a2nscS0bFltESJA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash da76921233ef0f040fb6e98f090b1041
4f22fec1cb5d22c7e81676b494ffa08f24aa442a
63baf2c884a7009656128503f9b9c08ef9b00338079f8b1e8c4f05dce83501df
GET /docs%2F1284748f-b49a-4fff-8c15-7556eff18100%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=M09M2iDoOKUbVTLCJzcTWP0GkIsFX-nIlh7B8pEo6xfeNEMwJFAwwpMKUxL7o-aG9jGIfdg6v1RzEST8hkEYA~nqP~xN3G4qxjUYlJqXK4LPO5dmFN3~Vjbz1sCGfK0aCj6p1U09DDJ1uBjbkZx0HUq7WqrtW9IcXqy1-pyRxH-We27ifEBA~iojens4v8aW3YtF9x6UxBonuoYoEYlublap-VXEJszYUPQ3Y2r-V3-OygoccLLwc4ZZM7-38~xJuMpxDYMyzCkPkkLQkwwVqvV6O4paxRjrMH~1tTqdCiaDC7dS7FCyxwJHoVKWzDJ5KAi4X25a2nscS0bFltESJA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 20141
Connection: keep-alive
Last-Modified: Tue, 05 Apr 2022 19:53:27 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:08 GMT
ETag: "da76921233ef0f040fb6e98f090b1041"
X-Cache: RefreshHit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I_AFZCMBsyfe1_sxUEl7Ylc08dfZNDUO_t2tA5CrEcfTcf-38JgssA==
d2qvtfnm75xrxf.cloudfront.net/docs%2F061c1d14-7709-4d21-9094-2493b11d94ea%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=NcKjxFYfmZOaVZnzAHW66QEfZMkazf4CcFqA4U8Bl5p2pEb-crg~Pk1f6mD9SA5NAvteR~wbxyTj~H0ekZspR6NmJBij5rpWmtgfeeCq2UIIoOuRCTb9QFmwszEkLbh8q0W9ICSDlkji7CXb8uXVNlQ1d-Hq9od~DM9JkwRo6B-abN4Fgb-ZgstyMiuTl98zg4JCxSJ~zZlaph38nOHepGjxhoV8sxKvgIol-n4wPvKtGo4QINizix-PTfCmjxO1tLCQJrx6NpG1qHahvRVsGWgCT89caC8N7NP489FVRqJzvi2GDwryXSzW3CC7m7uO760yqdUJvBcLXT1~mMZQ7A__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 14 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F061c1d14-7709-4d21-9094-2493b11d94ea%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=NcKjxFYfmZOaVZnzAHW66QEfZMkazf4CcFqA4U8Bl5p2pEb-crg~Pk1f6mD9SA5NAvteR~wbxyTj~H0ekZspR6NmJBij5rpWmtgfeeCq2UIIoOuRCTb9QFmwszEkLbh8q0W9ICSDlkji7CXb8uXVNlQ1d-Hq9od~DM9JkwRo6B-abN4Fgb-ZgstyMiuTl98zg4JCxSJ~zZlaph38nOHepGjxhoV8sxKvgIol-n4wPvKtGo4QINizix-PTfCmjxO1tLCQJrx6NpG1qHahvRVsGWgCT89caC8N7NP489FVRqJzvi2GDwryXSzW3CC7m7uO760yqdUJvBcLXT1~mMZQ7A__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 193x250, components 3\012- data
Hash ab2a2d3a4456e64570883436ec0a96bf
9ff05b2466ce46e399cc4698141e867d366d69b5
df771c8b203076b541982e50d10797adbff438ce531964f16aca41a177d84c3f
GET /docs%2F061c1d14-7709-4d21-9094-2493b11d94ea%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=NcKjxFYfmZOaVZnzAHW66QEfZMkazf4CcFqA4U8Bl5p2pEb-crg~Pk1f6mD9SA5NAvteR~wbxyTj~H0ekZspR6NmJBij5rpWmtgfeeCq2UIIoOuRCTb9QFmwszEkLbh8q0W9ICSDlkji7CXb8uXVNlQ1d-Hq9od~DM9JkwRo6B-abN4Fgb-ZgstyMiuTl98zg4JCxSJ~zZlaph38nOHepGjxhoV8sxKvgIol-n4wPvKtGo4QINizix-PTfCmjxO1tLCQJrx6NpG1qHahvRVsGWgCT89caC8N7NP489FVRqJzvi2GDwryXSzW3CC7m7uO760yqdUJvBcLXT1~mMZQ7A__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 13512
Connection: keep-alive
Last-Modified: Wed, 20 Jul 2022 19:40:57 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:08 GMT
ETag: "ab2a2d3a4456e64570883436ec0a96bf"
X-Cache: RefreshHit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VzEtvV5q8Rn6WfhpHAWosi6SCKVRZGzv5fXFgM3p0p8ebNQQpElQBw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F39843d77-f173-4ce8-92d7-d5b42d42b61d%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=m1h~CGztd6D3Ge3T6~Xn3TrGmAyzFZPP8h1xF5bbZGtkI7q7Xq~uHoRQk7VWVAX2KhPh4WvjLfPdScrTxDErwiTy8V0dBrCGLJ9sHCNbuzswCdPGfxMLicNWrYkcfKbb8D8UUYN99hY~aoxlDhz5zjj8U9-ChHAfOs79tRewT0~rdlEKlx9iTSACWY5F35vejK5AZ25frKU7myTt5TcOOlrONT01xwTbOxwnmnOuD3i46sJSwbyr1IqQsYbzS4i9pDpEQF0vXzIlrAhpxEsTIT7e0bxoIZyeRAuvXLZxZN8EhzuIWdjpxYlIYZPeDsItmN3-M7N2wgK0gHjf8pQ~~g__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 33 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F39843d77-f173-4ce8-92d7-d5b42d42b61d%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=m1h~CGztd6D3Ge3T6~Xn3TrGmAyzFZPP8h1xF5bbZGtkI7q7Xq~uHoRQk7VWVAX2KhPh4WvjLfPdScrTxDErwiTy8V0dBrCGLJ9sHCNbuzswCdPGfxMLicNWrYkcfKbb8D8UUYN99hY~aoxlDhz5zjj8U9-ChHAfOs79tRewT0~rdlEKlx9iTSACWY5F35vejK5AZ25frKU7myTt5TcOOlrONT01xwTbOxwnmnOuD3i46sJSwbyr1IqQsYbzS4i9pDpEQF0vXzIlrAhpxEsTIT7e0bxoIZyeRAuvXLZxZN8EhzuIWdjpxYlIYZPeDsItmN3-M7N2wgK0gHjf8pQ~~g__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 323x250, components 3\012- data
Hash 5bcddfb36b02c0243b2e0bffe8533567
d24a450b52a1d753476b163529ea8b54c8329d75
c34ccc6e2da6ada05dc1f2ffd01cfdd228e593dd072316cc2597d21f8147688b
GET /docs%2F39843d77-f173-4ce8-92d7-d5b42d42b61d%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=m1h~CGztd6D3Ge3T6~Xn3TrGmAyzFZPP8h1xF5bbZGtkI7q7Xq~uHoRQk7VWVAX2KhPh4WvjLfPdScrTxDErwiTy8V0dBrCGLJ9sHCNbuzswCdPGfxMLicNWrYkcfKbb8D8UUYN99hY~aoxlDhz5zjj8U9-ChHAfOs79tRewT0~rdlEKlx9iTSACWY5F35vejK5AZ25frKU7myTt5TcOOlrONT01xwTbOxwnmnOuD3i46sJSwbyr1IqQsYbzS4i9pDpEQF0vXzIlrAhpxEsTIT7e0bxoIZyeRAuvXLZxZN8EhzuIWdjpxYlIYZPeDsItmN3-M7N2wgK0gHjf8pQ~~g__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 33024
Connection: keep-alive
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Wed, 19 Oct 2022 01:19:35 GMT
ETag: "5bcddfb36b02c0243b2e0bffe8533567"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: apBT1IkleOO5pyKorXZoUAyksbD043chkQUeK7Bc18py8MsRgFKrTw==
d2qvtfnm75xrxf.cloudfront.net/docs%2F9399b316-b756-4444-9f55-d60decfe928c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=HbA-3ZDqCqSir5~nbRB4SYe1RjV5sNbTwjQu9yVyalsCsfNtilmTJECD~bEUjaOwd2TZysN02I6~6C1O~JbYoGiXNwvSQlpe1~RE37SEgkcVseEA8M7ZMqCmpCsiupBM5ZNAhLZoGeEWUcifPUnqiDBLcHnKzMm4Yv4r0uJqj~UTdpbP8rzxWq2ZFgbTHKoxiwn2XVXnrUBh8efMpz9VqY4SRiop4rFihOOHv0DU32mNhWSuKUmiNBlpmTgD0XZIwl2GSWCZ~PNOJamk3vhQ9DV3Gz8hB9eVv0jBWeiNL5C69h6o1-pjhS4qTsT~Z98gl~K1BZtwk0rTnASNq3cbiA__&Key-Pair-Id=K3IVFO0KFGPSF4
200 OK 22 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F9399b316-b756-4444-9f55-d60decfe928c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=HbA-3ZDqCqSir5~nbRB4SYe1RjV5sNbTwjQu9yVyalsCsfNtilmTJECD~bEUjaOwd2TZysN02I6~6C1O~JbYoGiXNwvSQlpe1~RE37SEgkcVseEA8M7ZMqCmpCsiupBM5ZNAhLZoGeEWUcifPUnqiDBLcHnKzMm4Yv4r0uJqj~UTdpbP8rzxWq2ZFgbTHKoxiwn2XVXnrUBh8efMpz9VqY4SRiop4rFihOOHv0DU32mNhWSuKUmiNBlpmTgD0XZIwl2GSWCZ~PNOJamk3vhQ9DV3Gz8hB9eVv0jBWeiNL5C69h6o1-pjhS4qTsT~Z98gl~K1BZtwk0rTnASNq3cbiA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 350x197, components 3\012- data
Hash 218d01f4b7fded6c541e096fde3ecb5b
e7ce12b5164c416a8929d7b074bbed28a42d7fcb
1230f5abf6f9617ceaeb60013c8faefe4982b374cfa26849fa4cf6c2ef69df7c
GET /docs%2F9399b316-b756-4444-9f55-d60decfe928c%2Fv2_thumbs_350x250_fit%2F1.jpg?Expires=1674125706&Signature=HbA-3ZDqCqSir5~nbRB4SYe1RjV5sNbTwjQu9yVyalsCsfNtilmTJECD~bEUjaOwd2TZysN02I6~6C1O~JbYoGiXNwvSQlpe1~RE37SEgkcVseEA8M7ZMqCmpCsiupBM5ZNAhLZoGeEWUcifPUnqiDBLcHnKzMm4Yv4r0uJqj~UTdpbP8rzxWq2ZFgbTHKoxiwn2XVXnrUBh8efMpz9VqY4SRiop4rFihOOHv0DU32mNhWSuKUmiNBlpmTgD0XZIwl2GSWCZ~PNOJamk3vhQ9DV3Gz8hB9eVv0jBWeiNL5C69h6o1-pjhS4qTsT~Z98gl~K1BZtwk0rTnASNq3cbiA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 21543
Connection: keep-alive
Last-Modified: Sat, 19 Mar 2022 00:56:57 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 10:54:09 GMT
ETag: "218d01f4b7fded6c541e096fde3ecb5b"
X-Cache: RefreshHit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vtMJbcej0eSlRkFIWWSArvTGU1Y6bQYARUyWRyErgNHcpL6f1yA99g==
widget.intercom.io/widget/lv6lji7h
200 OK 6.2 kB URL HTTP/2 widget.intercom.io/widget/lv6lji7h
IP
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 6079a69ccd8321eba24f5189420f1289
0d0dfb9f4113eaa732e5d45ce31d3f3806df1c7e
eef19d1ec834beb5109fca6a279e0ec2b28f031dabfb802332c3abadbe21c368
GET /widget/lv6lji7h HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6171
last-modified: Thu, 19 Jan 2023 10:19:57 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: nwc45uLdSDvgrzgiHg6PkZ9jrEmsQORy
accept-ranges: bytes
server: AmazonS3
date: Thu, 19 Jan 2023 10:48:56 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "6079a69ccd8321eba24f5189420f1289"
x-cache: Error from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: aof4E4cLQjKSShfmfrYr7_6fCAJfRJ9FDzjWK8g2CVqaKtSycEQ9HQ==
age: 327
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
js.intercomcdn.com/frame.3fa53bad.js
200 OK 139 kB URL HTTP/2 js.intercomcdn.com/frame.3fa53bad.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 139 kB (139141 bytes)
Hash 3b4e043398b67b30a8611e7e950d3fc6
21edbf7d3887d753770d0f7be3ccdab0963a91fa
d57b9bd7eadc6aef05f556cd323ac99d90b64ad4da378c68e84dc1ef256c105b
GET /frame.3fa53bad.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 139141
date: Thu, 19 Jan 2023 10:20:07 GMT
last-modified: Thu, 19 Jan 2023 10:18:27 GMT
etag: "3b4e043398b67b30a8611e7e950d3fc6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, s-maxage=7200, public
content-encoding: gzip
x-amz-version-id: EY_yHogJw9BldFZol5.qt.wQLkxr4MOS
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DtV0uKvD6g2FNlBq5aBmGNrM5qj3XkLxC8vbtA7CYtQtkhVfRSZv2Q==
age: 2042
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 820f865a9e373c80d742ffd6863538b9
ddba78c001f9de1a7293bddc53ee788f760dddf0
0871f9b9f62dd203caaf488e187e2c0e42b0e7c8dacdbc56033f0e80e8cb9194
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Thu, 19 Jan 2023 09:26:09 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I4bQMsG_L89EGqoPlI3ZhvpS7qsLDRp99l3oobk20ipVpzViwILZHw==
Age: 5279
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 02dc401f620d7b355c5ce10aa75753c6
771d1a528f77a92dbd6fbac0dafa0a4b0bbf313c
17cbb93195f4386c91fd5cd6155e6833e742d0e49c5cb983aea0a21ceb224800
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 19 Jan 2023 10:54:08 GMT
Last-Modified: Thu, 19 Jan 2023 09:28:58 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SvA59KVv-Z9RWqNUFwqH5ETZollJfqSiWYZvaAue3Idg9YbyjiJeCQ==
Age: 5110
www.dropbox.com/csp_log?policy_name=docsend
204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4036
Origin: https://rufus.docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-f+QeVlw6zgbnIaECpkvE' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-f+QeVlw6zgbnIaECpkvE' 'nonce-AW4qUjORdQk3w+7CB6tm'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTU3OTk0Mzg1NDM2ODIxMTYyNTc1MDgxMTg1OTYxMjkwNzI4NDc3; expires=Tue, 18 Jan 2028 10:54:08 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=c2wpgbo4lAkmZagjeq4epln-; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:08 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=c2wpgbo4lAkmZagjeq4epln-; expires=Sun, 18 Jan 2026 10:54:08 GMT; Path=/; SameSite=None; Secure
__Host-ss=Cs379SLdKM; expires=Sun, 18 Jan 2026 10:54:08 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 10:54:08 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 10:54:08 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: db06dd7ca26a4246ae9bca0d8b933b78
X-Firefox-Spdy: h2
nexus-websocket-a.intercom.io/pubsub/5-rinmtBu_2DdqpfOA9rZ9y9A23OUrXC5NhjN2J-Slackby7bn4N-tSgu6oXc3wZPZIlCpqaGV_BUd2lUCOH6r1ah-qEy07nSvajUb?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-rinmtBu_2DdqpfOA9rZ9y9A23OUrXC5NhjN2J-Slackby7bn4N-tSgu6oXc3wZPZIlCpqaGV_BUd2lUCOH6r1ah-qEy07nSvajUb?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-rinmtBu_2DdqpfOA9rZ9y9A23OUrXC5NhjN2J-Slackby7bn4N-tSgu6oXc3wZPZIlCpqaGV_BUd2lUCOH6r1ah-qEy07nSvajUb?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://rufus.docsend.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hO/rV6iG95MqxSzjXMYB+Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 19 Jan 2023 10:54:09 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xP0+VyE8/pJqD1ls5gnV430XqPE=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
api-iam.intercom.io/messenger/web/ping
200 OK 0 B URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 364
Origin: https://rufus.docsend.com
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 10:54:09 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1674125650
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13175
access-control-allow-origin: https://rufus.docsend.com
vary: Accept,Accept-Encoding
x-intercom-version: 8c71a247a283ab34e05f9a974bc0f976be271f48
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 003vfjsntoaan91bn1mg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"d986fc3332d9bdefeeeaddc475eb20a9"
x-runtime: 0.333205
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0705273452fc644ba
X-Firefox-Spdy: h2
t.sidekickopen10.com/Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04
200 OK 0 B URL HTTP/2 t.sidekickopen10.com/Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04
IP
GET /Ctc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04 HTTP/1.1
Host: t.sidekickopen10.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 19 Jan 2023 10:54:02 GMT
content-type: text/html;charset=utf-8
x-robots-tag: none
referrer-policy: no-referrer
vary: origin
x-hubspot-correlation-id: c110bb24-d28f-4dcf-aec4-491d0cd6dbeb
access-control-allow-credentials: false
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78bf07ad8a340b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
t.sidekickopen10.com/events/public/v1/encoded/track/tc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04?_ud=ecd5b12a-b3e2-4206-afd5-a3a2dca70c9a&_jss=1&_fl=8&_pl=0&_hc=16&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024
307 Temporary Redirect 0 B URL HTTP/2 t.sidekickopen10.com/events/public/v1/encoded/track/tc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04?_ud=ecd5b12a-b3e2-4206-afd5-a3a2dca70c9a&_jss=1&_fl=8&_pl=0&_hc=16&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024
IP
GET /events/public/v1/encoded/track/tc/2L+23284/cPylj04/JkM2-6q7W6N1vHY6lZ3lDW5-XlKf2J9VVgW7Svg-N1fD4dtW19v0n08ZrLBcW6jn1VF19lPd3W29bYlR2WzfzjW210Gs14S06fTW620Rlq1vVKgjW3Zw7Gr3Ksh9jW27fW5K6pCwPKW6_PmtJ67gNJNN1T_BqlpKGrQW52WTj49g7F-RN7NnchFLLymxN4x2sKbWxZx8Ms6VNdQ_cR9W32TSDd4Kn9vjW607CHW1m9nYJW3WGxcz4LGXRDW8JJGzC8rbMdgW89clbS9bHSV_W3_cymm6rlwM-W94dXTh8bMX8Vf9ksJCx04?_ud=ecd5b12a-b3e2-4206-afd5-a3a2dca70c9a&_jss=1&_fl=8&_pl=0&_hc=16&_lg=en-US,en&_plt=Linux%20x86_64&_scr=1280,1024 HTTP/1.1
Host: t.sidekickopen10.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 307 Temporary Redirect
date: Thu, 19 Jan 2023 10:54:02 GMT
location: https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk
x-robots-tag: none
link: <https://rufus.docsend.com/view/s/u2xht3sy4zbdisnk>; rel="canonical"
referrer-policy: no-referrer
x-hubspot-correlation-id: ddd98a9a-04a2-4407-9f21-3795a9932154
access-control-allow-credentials: false
vary: origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78bf07b10d510b4d-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
IP
GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 19 Jan 2023 10:54:03 GMT
date: Thu, 19 Jan 2023 10:54:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.125a2035.js
200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.125a2035.js
IP
GET /vendor.125a2035.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rufus.docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108271
last-modified: Wed, 18 Jan 2023 14:35:00 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: p_W_1MHeR_Zuv6syPsel2E1NIM6UB99j
accept-ranges: bytes
server: AmazonS3
date: Thu, 19 Jan 2023 10:03:37 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "d7841cf11a784340d6f64aa8956832ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4s4-YLlKR0pAQB7z3o5dLsdV3-tzk6nsZ1MQdkEpk4esTM-We4MtiQ==
age: 3032
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
200 OK 0 B URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
IP
GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MTE3MDk2NjExMTIxODA2NjI0MzY2ODA3Mjc0OTgyNDk0ODY2NDg%3D; t=qVCJ7z9idKlI9hHKPHcgezpF; __Host-js_csrf=qVCJ7z9idKlI9hHKPHcgezpF; locale=en; __Host-logged-out-session=ChAB7cxLHVO5s1S++WZatIJfEMvCpJ4GGi5BRmdHenV6SUJvN3RZY3Y1TEM5eE1GWExUUDZZQVYwV0JfZE9zYjd0Z2YyMEh3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-cache, no-store
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-PxLMmgS9POuKA/o6yqI6' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-PxLMmgS9POuKA/o6yqI6' 'nonce-+uvxj8F4psLMpwzgSs+a'
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=qVCJ7z9idKlI9hHKPHcgezpF; Domain=dropbox.com; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=qVCJ7z9idKlI9hHKPHcgezpF; expires=Sun, 18 Jan 2026 10:54:06 GMT; Path=/; SameSite=None; Secure
__Host-ss=b0JGCr_oos; expires=Sun, 18 Jan 2026 10:54:06 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-server-response-time: 24
x-xss-protection: 1; mode=block
content-type: text/javascript; charset=UTF-8
date: Thu, 19 Jan 2023 10:54:06 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 0fe7511d39394a858c6d871dceab4423
X-Firefox-Spdy: h2
cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js
200 OK 0 B URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js
IP
GET /static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js HTTP/1.1
Host: cfl.dropboxstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rufus.docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 10:54:03 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 18 Jan 2023 04:57:33 GMT
x-dropbox-request-id: ec456f95d53725edb88a560cd9b26fca
x-content-type-options: nosniff
x-cached: HIT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
timing-allow-origin: https://www.dropbox.com
cf-cache-status: HIT
age: 63957
server: cloudflare
cf-ray: 78bf07b94ca41bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
104.18.42.94
162.125.71.18
23.36.76.226
93.184.220.29
23.32.100.208