Report - sales.sliderule.io/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249

Report Overview

Visited public
2023-12-08 20:12:59
Tags
URL
sales.sliderule.io/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249
Finishing URL
docsend.com/view/c2jf7zhdsr4pi249
IP / ASN
52.72.178.207
#14618 AMAZON-AES
Title
DocSend

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.dropbox.com	1994	1995-06-28	2012-05-21 22:31:28	2023-12-07 18:12:32	9.6 kB	91 kB	162.125.71.18
js.intercomcdn.com	2440	2013-04-25	2020-02-19 12:43:00	2023-12-08 11:12:27	837 B	372 kB	54.230.111.118
events.statsigapi.net	unknown	2021-11-09	2022-06-03 02:38:27	2023-12-06 18:22:31	1.3 kB	1.5 kB	34.120.214.181
widget.intercom.io	2417	2011-08-15	2020-07-20 14:16:46	2023-12-08 18:16:34	418 B	7.7 kB	54.230.111.53
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-08 07:43:19	473 B	2.0 kB	142.250.74.106
lh3.googleusercontent.com	66	2008-11-17	2012-05-22 09:35:05	2023-12-08 18:12:16	485 B	1.9 kB	216.58.211.1
docsend.com	58938	2012-07-18	2014-04-04 12:48:39	2023-11-30 11:21:27	3.7 kB	49 kB	143.204.55.97
cfl.dropboxstatic.com	13598	2012-09-10	2017-01-30 05:53:29	2023-12-07 18:15:56	1.4 kB	281 kB	104.16.99.29
nexus-websocket-a.intercom.io	2137	2011-08-15	2015-06-26 12:17:57	2023-12-07 18:12:19	740 B	283 B	34.237.73.95
app.salesloft.com	37350	2005-11-21	2018-05-28 08:27:11	2023-12-07 21:27:26	638 B	9.6 kB	35.158.171.76
assets.ducksend.com	unknown	2014-08-28	2023-05-15 01:14:15	2023-12-06 14:25:39	2.4 kB	186 kB	54.230.111.21
consent.dropbox.com	27413	1995-06-28	2021-06-16 17:13:58	2023-12-08 09:05:05	1.5 kB	0 B	0.0.0.0
sales.sliderule.io	unknown	2017-02-03	2022-09-30 00:48:43	2023-11-02 23:50:29	639 B	545 B	52.72.178.207
assets.docsend.com	unknown	2012-07-18	2023-05-15 01:14:15	2023-12-07 04:45:05	2.9 kB	10 MB	143.204.55.37
d.dropbox.com	1300	1995-06-28	2012-11-25 21:07:07	2023-11-21 18:37:22	1.2 kB	1.1 kB	162.125.8.20
api-iam.intercom.io	2892	2011-08-15	2018-08-02 22:07:54	2023-12-08 12:57:41	516 B	3.0 kB	3.229.59.64
statsigapi.net	226418	2021-11-09	2021-12-16 23:54:57	2023-12-05 07:34:58	1.2 kB	1.2 kB	34.120.214.181

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-08 20:12:43	high	162.125.71.18	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use
2023-12-08 20:12:46	high	162.125.8.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	From	Size	First Seen	Last Seen
	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	4.1 kB	2024-08-20	2024-08-20
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen1 Hash 731ba7de259086c88aa68a9460546953 21588087c434e72ae046640c793656efee0ecd8e 8e3c7b5fbea1197aaa18061caba24317cf5a915c5cd1dd42ec12219400e5175d Loading...

	www.dropbox.com/pithos/ux_analytics	ScriptElement	13 kB	2023-12-08	2023-12-08
Pretty URL www.dropbox.com/pithos/ux_analytics IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 21:13 Last Seen2023-12-08 21:13 Times Seen1 Hash 2009c57e20b2b46c743db4d6b959f52c 0303d68b06a542a03b4aa4f754a87fb7e16cbc05 a5ef40101e943f1fa0b121e092dfb79a79609434db6ad46f0ab3a2529143c039 Loading...

	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	777 B	2023-03-07	2025-05-11
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-11 05:40 Times Seen764 Hash eed47e70bb30c26af1d2b05cb6cbb36e a6280e737500da85f94d5dd1b4bcf53e8ab7ebb6 33f828b1c1cc8d01a5365dda26f42257988e5ab755e9d1c9c06c8b650564b612 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/ux_analytics.bundle-vflH4tjYr.js	ScriptElement	34 kB	2023-12-08	2023-12-15
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/ux_analytics.bundle-vflH4tjYr.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 21:13 Last Seen2023-12-15 14:04 Times Seen9 Hash 1f8b6362ba9f04ef760d098e6998a4c7 4ff0ed717a92d957bde296a83a8f59d7e4dc6828 ab8244771a0c26d715992d14f3939431c983b59e1f41b1f29656f176f4451d85 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/marketing_tracker_client.bundle-vflqz_v1A.js	ScriptElement	6.0 kB	2023-12-04	2024-08-20
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/marketing_tracker_client.bundle-vflqz_v1A.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 21:25 Last Seen2024-08-20 16:46 Times Seen42 Hash ab3fefd405aed9a0bf91891871f5ec2e 3525105fbd95b64578784ef8a319c228761e5120 06f5a331a1a6514cce7f29a30c3191ee8e1820db3e9201134346037cf0077944 Loading...

	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	339 B	2023-09-28	2024-11-12
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-28 06:19 Last Seen2024-11-12 01:50 Times Seen332 Hash 861f0cf9b98694542eb34a58d287bece deed5cb1d6aa18c52bb17019dfab8854afb57b8c 69cd631dceb4db5fa63330639eb2235b63daf38a1fdbefc37bbbd4853faa5254 Loading...

	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	625 B	2024-08-20	2024-08-20
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:19 Last Seen2024-08-20 16:19 Times Seen1 Hash dcccb9e7e46c7ee7003a1dd508982c1c 280364029a4db8efad3df18fef824e31cb91a96c dfe8edfee8b505a6b12c3968ae55594372bfe95dca866d907b50ba41769b3fc1 Loading...

	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	31 B	2023-03-07	2025-05-11
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-05-11 05:40 Times Seen734 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	www.dropbox.com/pithos/marketing_tracker_client	ScriptElement	7.9 kB	2023-12-05	2024-08-20
Pretty URL www.dropbox.com/pithos/marketing_tracker_client IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 13:06 Last Seen2024-08-20 16:42 Times Seen20 Hash f107300ec34159edf125e9ce8e4ecdf3 29ec62a5d7db9931293ff96a19d7d605c64ecbac 6f0e652751c8314fd2bc765bda85984fdae8c716263862e226eee141369d4294 Loading...

	www.dropbox.com/pithos/privacy_consent	ScriptElement	7.8 kB	2023-12-05	2024-08-20
Pretty URL www.dropbox.com/pithos/privacy_consent IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 13:06 Last Seen2024-08-20 16:42 Times Seen11 Hash 327351f1797cfea4adad0922cea8fa14 ededca531f106fb318cfac6780394179b4d281e0 058bbd126a3c9b7083cda0451f525c4287c157134df104d36fb92049c7ea37f3 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflgcVmNN.js	ScriptElement	238 kB	2023-12-04	2024-08-20
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflgcVmNN.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 21:25 Last Seen2024-08-20 16:46 Times Seen29 Hash 81c56634d2b1e53e757b8b25417be172 6bedad069bbad7d637f90e021aab431b1e06b9a3 e079524e7ca359f597a9942017ad415ec2ec8d41801db648678b1b0c50f939c0 Loading...

	widget.intercom.io/widget/lv6lji7h	ScriptElement	7.0 kB	2023-12-08	2023-12-11
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.53 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 21:12 Last Seen2023-12-11 10:01 Times Seen14 Hash 90793624aa4ebaaa4e2bd740e1d18f81 90fdc1e38aa924c103cd34d660ff08a805f9f666 8d758f678dce33131a65a4fb260b45d725f51ed2988299904dc7cf35ff86afeb Loading...

	js.intercomcdn.com/frame.ed2d002d.js	ScriptElement	902 kB	2023-12-08	2023-12-11
Pretty URL js.intercomcdn.com/frame.ed2d002d.js IP 54.230.111.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 21:12 Last Seen2023-12-11 10:01 Times Seen14 Hash 767141dae15769419407c8775dc72ac7 b3f55ae0e9a12899f24cc6a701f00cf7e7cfe2f5 4a9358a712ccea4c95c6cbe0e4afa873502b72c72513a14fd014b1363a198cba Loading...

	assets.docsend.com/assets/javascripts/langpacks/en-f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a.js	ScriptElement	141 kB	2023-12-07	2023-12-09
Pretty URL assets.docsend.com/assets/javascripts/langpacks/en-f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a.js IP 143.204.55.37 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 04:45 Last Seen2023-12-09 02:47 Times Seen5 Hash e00ed4c383cf2a084811d26ff2fbb26d ad89b9586c545f4be906ac94464333b92a298a2e f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a Loading...

	js.intercomcdn.com/vendor.74ba73cb.js	ScriptElement	585 kB	2023-11-21	2023-12-18
Pretty URL js.intercomcdn.com/vendor.74ba73cb.js IP 54.230.111.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-21 17:48 Last Seen2023-12-18 09:46 Times Seen483 Hash 9c0b57ad24bdaa7c3854575035d6b58f 03394651b12c578815b29e7ad53628e16fb5eef9 d760bccbacc8c1c19e3420c4770bdd1fa0b13dd6989ef4e2c08e6813e27cfe14 Loading...

	assets.docsend.com/assets/javascripts/presentation-276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc.js	ScriptElement	10 MB	2023-12-08	2023-12-09
Pretty URL assets.docsend.com/assets/javascripts/presentation-276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc.js IP 143.204.55.37 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 21:13 Last Seen2023-12-09 02:47 Times Seen2 Hash 0822363ec4e22cdfb2ba65126a715d4c 6fcebe4cbf8bd4c863ab9e011209ff9d04b3235b 276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc Loading...

	docsend.com/view/c2jf7zhdsr4pi249	ScriptElement	209 B	2023-10-31	2025-05-11
Pretty URL docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-31 23:28 Last Seen2025-05-11 05:40 Times Seen606 Hash 869062995209f5eb214d52ae081efbe3 320bae8ea0c6cb0fd64ba5d5d6bf27207123e325 ea38a2227dbee36b6ce322102110bc8cbbcf2d8b32eddd4035943165c1458150 Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07 01:02	2025-05-11 16:35
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 16:35 Times Seen21115 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (50)

	URL	IP	Response	Size
	sales.sliderule.io/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249	52.72.178.207	302 Found	145 B
URL User Request GET HTTP/2 sales.sliderule.io/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249 IP 52.72.178.207:443 ASN #14618 AMAZON-AES Certificate IssuerLet's Encrypt Subjectsales.sliderule.io FingerprintBD:C4:32:5B:BE:9F:AD:90:6E:90:8D:24:71:DC:C4:15:7F:DA:45:01 ValidityThu, 23 Nov 2023 14:53:46 GMT - Wed, 21 Feb 2024 14:53:45 GMT File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 145 B (145 bytes) Hash d54a71f1b5258aa41d2f0cbde1783a21 d8cde34c38b2aceee874d46a70ef4b24143f4b9c 6c3049dd674ba0164d46ba2520a736090c28a5e4e29e1dc306aa903070626902 HTTP Headers GET /t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249 HTTP/1.1 Host: sales.sliderule.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Fri, 08 Dec 2023 20:12:35 GMT content-type: text/html content-length: 145 location: https://app.salesloft.com/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249 strict-transport-security: max-age=31536000; includeSubDomains x-robots-tag: noindex X-Firefox-Spdy: h2`

	app.salesloft.com/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249	35.158.171.76	302 Found	8.8 kB
URL User Request GET HTTP/2 app.salesloft.com/t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249 IP 35.158.171.76:443 ASN #16509 AMAZON-02 Certificate IssuerSectigo Limited Subjectsalesloft.com FingerprintAF:A8:8A:D7:73:48:B0:9E:A3:A1:7B:83:BF:6F:32:FE:24:A6:D7:2B ValidityMon, 20 Mar 2023 00:00:00 GMT - Thu, 18 Apr 2024 23:59:59 GMT File type data Size 8.8 kB (8841 bytes) Hash 746d090295ef159574c934147951ca2f b125259d5933b98b251457caeb60bffb2c3664d5 7c270d17e173f2d5d7fe305cd81a5708d486142b3cb82806f23c4c028f2f9847 HTTP Headers GET /t/108079/c/9226920a-10ae-4fb1-bc11-ad8ef55b43b8/NB2HI4DTHIXS6ZDPMNZWK3TEFZRW63JPOZUWK5ZPMMZGUZRXPJUGI43SGRYGSMRUHE======/docsend-com-view-c2jf7zhdsr4pi249 HTTP/1.1 Host: app.salesloft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found date: Fri, 08 Dec 2023 20:12:36 GMT content-type: text/html; charset=utf-8 location: https://docsend.com/view/c2jf7zhdsr4pi249 x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff x-download-options: noopen x-permitted-cross-domain-policies: none referrer-policy: strict-origin-when-cross-origin cache-control: no-cache content-security-policy-report-only: default-src 'self' https: blob: data:; img-src 'self' https: http:; frame-ancestors 'none' x-request-id: f921e14ddf341641340d0907f6719004 x-runtime: 0.051780 vary: Origin strict-transport-security: max-age=31536000; includeSubDomains x-entry-cluster: k8s-euro-pop-2 x-entry-pop: eu-central-1 x-global-request-start: t=1702066356.093 X-Firefox-Spdy: h2

	assets.docsend.com/assets/javascripts/langpacks/en-f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a.js	143.204.55.37	200 OK	33 kB
URL GET HTTP/1.1 assets.docsend.com/assets/javascripts/langpacks/en-f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a.js IP 143.204.55.37:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn-1.docsendusercontent.com FingerprintE2:E2:48:D4:6E:A5:4A:F5:53:61:EB:9D:D3:34:67:01:C4:09:19:F2 ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 33 kB (33313 bytes) Hash e00ed4c383cf2a084811d26ff2fbb26d ad89b9586c545f4be906ac94464333b92a298a2e f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a HTTP Headers GET /assets/javascripts/langpacks/en-f06ce681d448480b994cbbc85d4607b3efb2ecb4ed8bc0f5f5f31ae2fc534f8a.js HTTP/1.1 Host: assets.docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 02:55:30 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702004130&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=Xo3UoWBlOnffku1zZYBMt3NwfR9aM%2BlT7EA4o2YZ44I%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702004130&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=Xo3UoWBlOnffku1zZYBMt3NwfR9aM%2BlT7EA4o2YZ44I%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Last-Modified: Thu, 07 Dec 2023 22:11:24 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 0c792defeeaa18965559ad74895ea56a.cloudfront.net (CloudFront), 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA60-P3, OSL50-C1 X-Amz-Cf-Id: Rzinjt6C8OUhRIGeCAUTCH-ChXccPP63deV9Xno4y8U8LNFqrDXKYQ== Age: 62227 X-Robots-Tag: noindex

	assets.docsend.com/assets/stylesheets/presentation-192360c612e89e24b914e90d4977c6cf63e0237e29ea7a5f0a656d508ce7ddfc.css	143.204.55.37	200 OK	94 kB
URL GET HTTP/1.1 assets.docsend.com/assets/stylesheets/presentation-192360c612e89e24b914e90d4977c6cf63e0237e29ea7a5f0a656d508ce7ddfc.css IP 143.204.55.37:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn-1.docsendusercontent.com FingerprintE2:E2:48:D4:6E:A5:4A:F5:53:61:EB:9D:D3:34:67:01:C4:09:19:F2 ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 94 kB (94390 bytes) Hash bb4144b331c0388889836c88bb9ae959 44a27dea495a165f1c976004967c9ce1462329eb 192360c612e89e24b914e90d4977c6cf63e0237e29ea7a5f0a656d508ce7ddfc HTTP Headers GET /assets/stylesheets/presentation-192360c612e89e24b914e90d4977c6cf63e0237e29ea7a5f0a656d508ce7ddfc.css HTTP/1.1 Host: assets.docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: Cowboy Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701929098&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=t3q60X8C5TALnN03NEtZYM6gF1nvdGvo0iopWMT03iQ%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701929098&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=t3q60X8C5TALnN03NEtZYM6gF1nvdGvo0iopWMT03iQ%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Last-Modified: Fri, 03 Nov 2023 21:58:06 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 fa8c9f29fb8ef5c537a2a53f4de05240.cloudfront.net (CloudFront), 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) Content-Encoding: br Date: Fri, 08 Dec 2023 06:32:44 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA60-P3, OSL50-C1 X-Amz-Cf-Id: Jfr4mc6Pr5Wqru3cZGktX2a_BUl3KEGO4Q73PfKzdyJ3yHeUXR10sA== Age: 50800 X-Robots-Tag: noindex

	assets.docsend.com/assets/javascripts/presentation-f2ff08baec4f51f7e9b5a3fe93e4293295b1ea0d9a768d86d42e698a246b5030.css	143.204.55.37	200 OK	34 kB
URL GET HTTP/1.1 assets.docsend.com/assets/javascripts/presentation-f2ff08baec4f51f7e9b5a3fe93e4293295b1ea0d9a768d86d42e698a246b5030.css IP 143.204.55.37:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn-1.docsendusercontent.com FingerprintE2:E2:48:D4:6E:A5:4A:F5:53:61:EB:9D:D3:34:67:01:C4:09:19:F2 ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 34 kB (34243 bytes) Hash 9701cc1a95d42efcdd8a1f7d18812b1a 00a1b7dc33b0eeb5e7dbebaf875f49d9b22e8409 f2ff08baec4f51f7e9b5a3fe93e4293295b1ea0d9a768d86d42e698a246b5030 HTTP Headers GET /assets/javascripts/presentation-f2ff08baec4f51f7e9b5a3fe93e4293295b1ea0d9a768d86d42e698a246b5030.css HTTP/1.1 Host: assets.docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 03:04:30 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702004670&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=L2PvhUwvPrdyRvNpaF9EKvvYBVF%2FbKw6iYyYcnH%2BYSw%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702004670&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=L2PvhUwvPrdyRvNpaF9EKvvYBVF%2FbKw6iYyYcnH%2BYSw%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Last-Modified: Thu, 07 Dec 2023 22:11:25 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 fa8c9f29fb8ef5c537a2a53f4de05240.cloudfront.net (CloudFront), 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA60-P3, OSL50-C1 X-Amz-Cf-Id: zURgE2sR-9dF2oyn3nmL8Jt9rIPHQsudaVkY64qRfQz5n2uJhiDzBA== Age: 61687 X-Robots-Tag: noindex

	assets.docsend.com/assets/javascripts/presentation-276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc.js	143.204.55.37	200 OK	10 MB
URL GET HTTP/1.1 assets.docsend.com/assets/javascripts/presentation-276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc.js IP 143.204.55.37:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn-1.docsendusercontent.com FingerprintE2:E2:48:D4:6E:A5:4A:F5:53:61:EB:9D:D3:34:67:01:C4:09:19:F2 ValidityThu, 18 May 2023 00:00:00 GMT - Sat, 15 Jun 2024 23:59:59 GMT File type ASCII text, with very long lines (15664) Size 10 MB (10084175 bytes) Hash 0822363ec4e22cdfb2ba65126a715d4c 6fcebe4cbf8bd4c863ab9e011209ff9d04b3235b 276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc HTTP Headers GET /assets/javascripts/presentation-276935e8001ecad107fab9cab022b5cc556bf6a006cb07e084cd02e2c05648fc.js HTTP/1.1 Host: assets.docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 10084175 Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 19:58:01 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702065481&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=27Ul8dbZffy0g1nu5bijsHgOmT1YHBbmv5gGD5NPxe4%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702065481&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=27Ul8dbZffy0g1nu5bijsHgOmT1YHBbmv5gGD5NPxe4%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Fri, 08 Dec 2023 19:18:45 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 5492e1c9a06f2320204e7fcc383cff5c.cloudfront.net (CloudFront), 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA60-P3, OSL50-C1 X-Amz-Cf-Id: 5I22ps0SSmfL8hnbbCg3UsSfKjxu3ASNaOzpWpGNNXgjTWKGfLY0zw== Age: 875 X-Robots-Tag: noindex

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4033 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-raBUfDjocBQAOrA5qlgg' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-raBUfDjocBQAOrA5qlgg' 'nonce-RMT+Ay4xglbPwJnQy9M8' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjA0ODM5MTAyMzkwOTY0NzI0NDE5NDAyMDcwMDg5ODg2MDY5NTY5; expires=Wed, 06 Dec 2028 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure t=ljtWOO6SkvMcdPEFZaQB_RBb; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ljtWOO6SkvMcdPEFZaQB_RBb; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=aOR0GkLQ7g; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:37 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:37 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: f99e8a09e6ed480f85686b0848003232 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic	142.250.74.106	200 OK	1.4 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42 ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT File type gzip compressed data, max compression\012- data Size 1.4 kB (1377 bytes) Hash 5b4ebb2479db2f35259fc55cb45907a0 502c2014be18c3b488fb1f3eadf034396d2eab12 dc730ac0e26f24621d4a4260344f51594c4d1423210a3fdf8da6afd7f34f91a5 HTTP Headers `GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 08 Dec 2023 20:12:37 GMT date: Fri, 08 Dec 2023 20:12:37 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	assets.ducksend.com/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2	54.230.111.21	200 OK	43 kB
URL GET HTTP/1.1 assets.ducksend.com/assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 IP 54.230.111.21:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn.ducksendusercontent.com Fingerprint0E:65:20:88:A1:C6:D8:30:B6:D7:7C:31:96:B4:6D:6B:2C:04:89:EA ValidityThu, 11 May 2023 00:00:00 GMT - Sat, 08 Jun 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data Size 43 kB (43308 bytes) Hash 93b6f18ec99bcb7c3fa7ea570a75e240 60b9e3062fe532cbc18b897fac542c56a03544c7 43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db HTTP Headers GET /assets/AtlasGrotesk-Regular-Web-DS4XBEAW-43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db.woff2 HTTP/1.1 Host: assets.ducksend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://assets.docsend.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 43308 Connection: keep-alive Server: Cowboy Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701923261&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=zLHL0ZtDRIkVRiEWhFCTKH9SmFFshAOx8NCqORXSebA%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701923261&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=zLHL0ZtDRIkVRiEWhFCTKH9SmFFshAOx8NCqORXSebA%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Wed, 29 Mar 2023 23:43:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 15d3b4db3728feaae1780610a1bac86e.cloudfront.net (CloudFront), 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) Date: Fri, 08 Dec 2023 04:46:51 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA53-C1, OSL50-P1 X-Amz-Cf-Id: QNPJYoQaMgryCtICtnCl-ydC0Cyi3SHEQPHfmros5D8k8jKWuw--PQ== Age: 55546

	assets.ducksend.com/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2	54.230.111.21	200 OK	46 kB
URL GET HTTP/1.1 assets.ducksend.com/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 IP 54.230.111.21:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn.ducksendusercontent.com Fingerprint0E:65:20:88:A1:C6:D8:30:B6:D7:7C:31:96:B4:6D:6B:2C:04:89:EA ValidityThu, 11 May 2023 00:00:00 GMT - Sat, 08 Jun 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers GET /assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 HTTP/1.1 Host: assets.ducksend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://assets.docsend.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: Cowboy Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701751705&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=8q1Fxboagx09%2B3DMviwlNa0g6FJ%2FFUEZOiOT%2FN0inYY%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701751705&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=8q1Fxboagx09%2B3DMviwlNa0g6FJ%2FFUEZOiOT%2FN0inYY%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Wed, 29 Mar 2023 23:43:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 1764af62d635a1a6ee51aabc37405452.cloudfront.net (CloudFront), 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) Date: Fri, 08 Dec 2023 05:14:23 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA53-C1, OSL50-P1 X-Amz-Cf-Id: 30Srhw2ueoUkIhfpsgIqaXYvuzYxv-9VmhUZu9gMNsBTzVkAbsBRvw== Age: 53894

	www.dropbox.com/pithos/host%3Adocsend.com/ux_analytics	162.125.71.18	200 OK	4.3 kB
URL GET HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (5685) Size 4.3 kB (4286 bytes) Hash 2009c57e20b2b46c743db4d6b959f52c 0303d68b06a542a03b4aa4f754a87fb7e16cbc05 a5ef40101e943f1fa0b121e092dfb79a79609434db6ad46f0ab3a2529143c039 HTTP Headers GET /pithos/host%3Adocsend.com/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChBMUgS5C0h5553LC31aSv0OELXxzasGGi5BSWFfR1NxWWxqc01HSFJwVkZtOEVMSHVQS0FvMzNqbnUyaFBsQlpvUDRHTUxn; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 14 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Fri, 08 Dec 2023 20:12:37 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 9cb3ed0ec7324860b6cb075ed8e3d8d0 X-Firefox-Spdy: h2

	lh3.googleusercontent.com/a/ACg8ocK34e-uJZJcCOcqQXq-KUdqpd_Ze0c_oNIE8FKAZkCm=s96-c	216.58.211.1	200 OK	1.4 kB
URL GET HTTP/2 lh3.googleusercontent.com/a/ACg8ocK34e-uJZJcCOcqQXq-KUdqpd_Ze0c_oNIE8FKAZkCm=s96-c IP 216.58.211.1:443 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerGoogle Trust Services LLC Subject.googleusercontent.com Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT File type PNG image data, 96 x 96, 8-bit/color RGB, non-interlaced\012- data Size 1.4 kB (1387 bytes) Hash 91087a8256427e8e4cc89c3bd506cdfe cff58c1878ace6e2ca3758885f85dfadcbf43a1b e5af0721fb5c13c5b7f5cc8310830d6a8363b7d834ab9fde8b3f5044f6d9d5fa HTTP Headers `GET /a/ACg8ocK34e-uJZJcCOcqQXq-KUdqpd_Ze0c_oNIE8FKAZkCm=s96-c HTTP/1.1 Host: lh3.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/png vary: Origin access-control-allow-origin: * timing-allow-origin: * access-control-expose-headers: Content-Length expires: Sat, 09 Dec 2023 20:12:39 GMT cache-control: public, max-age=86400, no-transform content-disposition: inline;filename="unnamed.png" x-content-type-options: nosniff date: Fri, 08 Dec 2023 20:12:39 GMT server: fife content-length: 1387 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	docsend.com/favicon-196x196.png	143.204.55.97	200 OK	4.1 kB
URL GET HTTP/1.1 docsend.com/favicon-196x196.png IP 143.204.55.97:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerSectigo Limited Subject.docsend.com Fingerprint4D:9A:72:4A:F7:FF:E7:AB:AE:24:1D:8B:C0:E0:30:A7:B4:82:D3:8E ValidityWed, 23 Aug 2023 00:00:00 GMT - Sun, 22 Sep 2024 23:59:59 GMT File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/view/c2jf7zhdsr4pi249 Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: image/png Content-Length: 4131 Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 20:12:39 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702066359&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=dn6B5yYeN3v3VUvFnPGANx6OF5lt9BdqgF7BaXXYJnQ%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702066359&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=dn6B5yYeN3v3VUvFnPGANx6OF5lt9BdqgF7BaXXYJnQ%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Last-Modified: Fri, 08 Dec 2023 18:55:32 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur, 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: LcHpDnjZI9LCil1INVtfnUtPWYureKU9WbI0kgcdDeVS6l2is7C1ng==

	docsend.com/favicon-16x16.png	143.204.55.97	200 OK	393 B
URL GET HTTP/1.1 docsend.com/favicon-16x16.png IP 143.204.55.97:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerSectigo Limited Subject.docsend.com Fingerprint4D:9A:72:4A:F7:FF:E7:AB:AE:24:1D:8B:C0:E0:30:A7:B4:82:D3:8E ValidityWed, 23 Aug 2023 00:00:00 GMT - Sun, 22 Sep 2024 23:59:59 GMT File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 393 B (393 bytes) Hash a8c678babc40c4ac6d8c70fc560094d4 66002c0719ddbd75c837f5a939689ea6df13b6dc a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/view/c2jf7zhdsr4pi249 Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: image/png Content-Length: 393 Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 20:12:39 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702066359&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=dn6B5yYeN3v3VUvFnPGANx6OF5lt9BdqgF7BaXXYJnQ%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702066359&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=dn6B5yYeN3v3VUvFnPGANx6OF5lt9BdqgF7BaXXYJnQ%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Last-Modified: Fri, 08 Dec 2023 18:55:32 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur, 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront) X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ijuImmWvMCD7AJDmj3u12gqd_eyTbt7wQrqC3GsP408fXGoDZQreSw==

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4177 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-MM3Vljz8Biqj5NhviebG' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-MM3Vljz8Biqj5NhviebG' 'nonce-seTEP1N66vRR3cLsqJos' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjgwNDc4ODcxMTA5NzQ2MjU1NDU4MDI4OTEzNTQyMTM0MDU0MjY4; expires=Wed, 06 Dec 2028 20:12:39 GMT; HttpOnly; Path=/; SameSite=None; Secure t=hYWliDcugCri-533R9dPKyi_; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:39 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=hYWliDcugCri-533R9dPKyi_; expires=Mon, 07 Dec 2026 20:12:39 GMT; Path=/; SameSite=None; Secure __Host-ss=CAdnLLWOS8; expires=Mon, 07 Dec 2026 20:12:39 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:39 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:39 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 7212c0323448443c977b3ca67bf754c6 X-Firefox-Spdy: h2

	www.dropbox.com/log/ux_analytics	162.125.71.18	200 OK	0 B
URL POST HTTP/2 www.dropbox.com/log/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /log/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/x-www-form-urlencoded Content-Length: 719 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en; __Host-logged-out-session=ChAQnMN+UUKxGs5qSllv6FnOELXxzasGGi5BSWFZWnh3aERmNDUwbDMwS1lHWVlUWmtnSnI0MGRYQkJVcnR2alFtZUhEcTNR Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://docsend.com access-control-expose-headers: Accept-Ranges, Content-Disposition, Content-Encoding, Content-Length, Content-Range, X-Dropbox-Metadata, X-Dropbox-Request-Id, X-JSON, X-Server-Response-Time, Timing-Allow-Origin, x-dropbox-pdf-password-needed content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:39 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:39 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:39 GMT; HttpOnly; Path=/; SameSite=Strict; Secure vary: Origin x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 18 x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:39 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-length: 0 cache-control: no-cache, no-store x-dropbox-response-origin: far_remote x-dropbox-request-id: 575ea2fb93414971ace2a71a96ed79b1 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent	162.125.71.18	307 Temporary Redirect	2.9 kB
URL GET HTTP/2 www.dropbox.com/pithos/privacy_consent IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (6952), with CRLF line terminators Size 2.9 kB (2866 bytes) Hash 9f383ab02aa7a837e5f04fece63d65b8 936f93a67b856f841d2363e86dcb66413b9aaa73 6bd0fe43d89ff292a563066d08c33ae473c5b66564194ec5de13647bf1375b9e HTTP Headers `GET /pithos/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; expires=Wed, 06 Dec 2028 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:37 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Fri, 08 Dec 2023 20:12:36 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 0642494fd55843248767ffe357fdec88 X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.8.20	200 OK	0 B
URL OPTIONS HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.8.20:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Fri, 08 Dec 2023 20:12:39 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 5a964b9bbf6e4e969085ef101ae54dc9 X-Firefox-Spdy: h2`

	js.intercomcdn.com/frame.ed2d002d.js	54.230.111.118	200 OK	189 kB
URL GET HTTP/2 js.intercomcdn.com/frame.ed2d002d.js IP 54.230.111.118:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subject.intercomcdn.com FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1 ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65464) Size 189 kB (189045 bytes) Hash 767141dae15769419407c8775dc72ac7 b3f55ae0e9a12899f24cc6a701f00cf7e7cfe2f5 4a9358a712ccea4c95c6cbe0e4afa873502b72c72513a14fd014b1363a198cba HTTP Headers `GET /frame.ed2d002d.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 189045 last-modified: Fri, 08 Dec 2023 15:49:04 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: w3bGIIrd1bmX9Wer3pC0M4ULYni3vvl8 accept-ranges: bytes server: AmazonS3 date: Fri, 08 Dec 2023 19:52:00 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "1ae9c82dfa1f4396b2b56b3863ad6056" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: m9qA07w8_IN799NcW1fl9AS40fDWBiNgaSKSWRRd_HlMnI1m8QssRw== age: 1241 strict-transport-security: max-age=31536000; includeSubDomains; preload cross-origin-resource-policy: cross-origin X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.74ba73cb.js	54.230.111.118	200 OK	182 kB
URL GET HTTP/2 js.intercomcdn.com/vendor.74ba73cb.js IP 54.230.111.118:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subject.intercomcdn.com FingerprintF0:2D:F5:73:71:5F:38:F6:2E:50:83:A3:D4:8A:21:C7:7B:AA:C2:D1 ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 29 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65463) Size 182 kB (181453 bytes) Hash 9c0b57ad24bdaa7c3854575035d6b58f 03394651b12c578815b29e7ad53628e16fb5eef9 d760bccbacc8c1c19e3420c4770bdd1fa0b13dd6989ef4e2c08e6813e27cfe14 HTTP Headers `GET /vendor.74ba73cb.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 181453 last-modified: Thu, 07 Dec 2023 15:04:20 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: b9FQnE6rKWDuOwl9ac3OQxbt6NBii5FL accept-ranges: bytes server: AmazonS3 date: Fri, 08 Dec 2023 20:04:33 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "bc01597a46274ebf9a4c1a3dd6531fb5" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: hqEALaDUwdAUJlpBocpxCIOBxPsDgHO3-DfYqC3HRt7auQ0vJqkcdQ== age: 488 strict-transport-security: max-age=31536000; includeSubDomains; preload cross-origin-resource-policy: cross-origin X-Firefox-Spdy: h2

	assets.ducksend.com/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2	54.230.111.21	200 OK	46 kB
URL GET HTTP/1.1 assets.ducksend.com/assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 IP 54.230.111.21:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn.ducksendusercontent.com Fingerprint0E:65:20:88:A1:C6:D8:30:B6:D7:7C:31:96:B4:6D:6B:2C:04:89:EA ValidityThu, 11 May 2023 00:00:00 GMT - Sat, 08 Jun 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers GET /assets/AtlasGrotesk-Medium-Web-LFHKUOTE-b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3.woff2 HTTP/1.1 Host: assets.ducksend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://assets.docsend.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: Cowboy Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701751705&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=8q1Fxboagx09%2B3DMviwlNa0g6FJ%2FFUEZOiOT%2FN0inYY%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701751705&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=8q1Fxboagx09%2B3DMviwlNa0g6FJ%2FFUEZOiOT%2FN0inYY%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Wed, 29 Mar 2023 23:43:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 1764af62d635a1a6ee51aabc37405452.cloudfront.net (CloudFront), 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) Date: Fri, 08 Dec 2023 05:14:23 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA53-C1, OSL50-P1 X-Amz-Cf-Id: hcgaGrODyrEiuRciolphh4CAPycByeANakd-ZIQAMe2JYQ2qxuQO-A== Age: 53896

	assets.ducksend.com/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2	54.230.111.21	200 OK	45 kB
URL GET HTTP/1.1 assets.ducksend.com/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 IP 54.230.111.21:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subjectcdn.ducksendusercontent.com Fingerprint0E:65:20:88:A1:C6:D8:30:B6:D7:7C:31:96:B4:6D:6B:2C:04:89:EA ValidityThu, 11 May 2023 00:00:00 GMT - Sat, 08 Jun 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 45008, version 1.66\012- data Size 45 kB (45008 bytes) Hash 38846f0a3b6bb0b9d1b4f21b61e57c54 8893fa19d5550ae165dcdee85935d67677e5888d 39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff HTTP Headers GET /assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 HTTP/1.1 Host: assets.ducksend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://assets.docsend.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 45008 Connection: keep-alive Server: Cowboy Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1701923262&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=d%2FyI4kIXL8UjTvXFPYwENjlZnOCXc7vbBx7yAaFhCFE%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1701923262&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=d%2FyI4kIXL8UjTvXFPYwENjlZnOCXc7vbBx7yAaFhCFE%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Wed, 29 Mar 2023 23:43:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 cc77875ec7dfc885cffaa2ec6fa578f6.cloudfront.net (CloudFront), 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) Date: Fri, 08 Dec 2023 20:12:40 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: FRA53-C1, OSL50-P1 X-Amz-Cf-Id: oFeRdzGUX6gnrb2tmW51WOjvBcq-4Eo2G4KzMCPaDYhNymPtIbt1gA== Age: 56597

	d.dropbox.com/crashdash/proxy/sessions	162.125.8.20	200 OK	21 B
URL OPTIONS HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.8.20:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-12-08T20:12:46.198Z Content-Length: 532 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: b1d4aeee-dcbb-40ee-ad63-5bac443362f5 content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Fri, 08 Dec 2023 20:12:40 GMT referrer-policy: strict-origin-when-cross-origin server: envoy via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 x-dropbox-response-origin: far_remote x-dropbox-request-id: cb88d38c8558478d889f167911dd1983 X-Firefox-Spdy: h2

	docsend.com/metrics/properties	143.204.55.97	204 No Content	0 B
URL POST HTTP/1.1 docsend.com/metrics/properties IP 143.204.55.97:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerSectigo Limited Subject.docsend.com Fingerprint4D:9A:72:4A:F7:FF:E7:AB:AE:24:1D:8B:C0:E0:30:A7:B4:82:D3:8E ValidityWed, 23 Aug 2023 00:00:00 GMT - Sun, 22 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: mwJL2U2vPRGU8T9YynuSqIXuAc1m576FesnEGCvgtfoxqAbT2gRi/YBZMP/P336rRjVjjGNhk2ombj03gWguUA== X-Requested-With: XMLHttpRequest Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/view/c2jf7zhdsr4pi249 Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 20:12:39 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702066360&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=K07YVPnIOydbeTPrLUfQjkEuiMZmJ1%2BMC3MsYkdA9T8%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702066360&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=K07YVPnIOydbeTPrLUfQjkEuiMZmJ1%2BMC3MsYkdA9T8%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} X-Frame-Options: DENY X-Content-Type-Options: nosniff Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://assets.docsend.com https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com https://.previews.dropboxusercontent.com//p.m3u8 https://*.dropboxusercontent.com 'nonce-01mGUQXZeqd2wR9Zp1/AuA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: c3fce21b-64ce-408e-bb2a-5bbe6cf58bcc X-Runtime: 0.010828 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur, 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: vN9UlJalrH3hNsgpAHFzavwAmyj_Rhr5sqLQCOQ-1Ez8XWnyQUMsgQ==

	docsend.com/metrics/events	143.204.55.97	204 No Content	0 B
URL POST HTTP/1.1 docsend.com/metrics/events IP 143.204.55.97:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerSectigo Limited Subject.docsend.com Fingerprint4D:9A:72:4A:F7:FF:E7:AB:AE:24:1D:8B:C0:E0:30:A7:B4:82:D3:8E ValidityWed, 23 Aug 2023 00:00:00 GMT - Sun, 22 Sep 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------197138350020398285262487982460 Content-Length: 1088 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/view/c2jf7zhdsr4pi249 Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=1301db4ffbf20b81e66e9b56451c1132 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 20:12:40 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702066360&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=K07YVPnIOydbeTPrLUfQjkEuiMZmJ1%2BMC3MsYkdA9T8%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702066360&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=K07YVPnIOydbeTPrLUfQjkEuiMZmJ1%2BMC3MsYkdA9T8%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} X-Frame-Options: DENY X-Content-Type-Options: nosniff Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://assets.docsend.com https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com https://.previews.dropboxusercontent.com//p.m3u8 https://*.dropboxusercontent.com 'nonce-q0KeeJP8+8U2/+4q7GRspw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: f8d872b3-7465-4a45-80bd-690eed924108 X-Runtime: 0.018683 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur, 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront) X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: blhTv8XOgBeZlxFzHYdSgq2oBn6wO7wKs4VVe3gs4uQIu1I7YVyTMQ==

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3979 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-qHihnjoSvF3ixVyHiHE2' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-qHihnjoSvF3ixVyHiHE2' 'nonce-1uE8y9WDKN4hYUjp6KxE' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTMwMDg0MjcwMDUyNjgwNjU5Mzg4NDAxMTg2MDk0MTgxNDc4NTcw; expires=Wed, 06 Dec 2028 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure t=7nCoHXebx4QvtLe0zNIq1UZW; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=7nCoHXebx4QvtLe0zNIq1UZW; expires=Mon, 07 Dec 2026 20:12:40 GMT; Path=/; SameSite=None; Secure __Host-ss=bXqA-a2wqM; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:40 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:39 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 7fc7ff58d7634216b921cb39b05bfcf2 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3979 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-I7nfxEveoItPI+k4ytdm' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-I7nfxEveoItPI+k4ytdm' 'nonce-uguttRn64dYvMKPsw+dz' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzgzOTg2MTg4NTg4NjUwNjA0NTk3MzcxMjYyNjE2NDQxMDQzMTE%3D; expires=Wed, 06 Dec 2028 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure t=0H-_w7v3kLMd8UVWoFC4PD2e; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=0H-_w7v3kLMd8UVWoFC4PD2e; expires=Mon, 07 Dec 2026 20:12:40 GMT; Path=/; SameSite=None; Secure __Host-ss=1-19hWtP8g; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:40 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:39 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 55b390ab00a948b7a7c5d7b8a8c5664d X-Firefox-Spdy: h2

	www.dropbox.com/log/ux_analytics	162.125.71.18	200 OK	0 B
URL POST HTTP/2 www.dropbox.com/log/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /log/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/x-www-form-urlencoded Content-Length: 669 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en; __Host-logged-out-session=ChAQnMN+UUKxGs5qSllv6FnOELXxzasGGi5BSWFZWnh3aERmNDUwbDMwS1lHWVlUWmtnSnI0MGRYQkJVcnR2alFtZUhEcTNR Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://docsend.com access-control-expose-headers: Accept-Ranges, Content-Disposition, Content-Encoding, Content-Length, Content-Range, X-Dropbox-Metadata, X-Dropbox-Request-Id, X-JSON, X-Server-Response-Time, Timing-Allow-Origin, x-dropbox-pdf-password-needed content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:40 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure vary: Origin x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 52 x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:40 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-length: 0 cache-control: no-cache, no-store x-dropbox-response-origin: far_remote x-dropbox-request-id: 87df9427bad544e9bb2b92b3dfd5de11 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4177 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-7G/op7ie0X/oNPeDgD8A' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-7G/op7ie0X/oNPeDgD8A' 'nonce-vhaIL5I1vY/ocW65/B4V' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=Mjg5OTIwODUxMDAwMTY0NTI3MDQyMjU3NzI4MjMxOTg5ODc3OTI5; expires=Wed, 06 Dec 2028 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure t=HwmOcfhU7EfcxVrMwK7Lr1n4; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=HwmOcfhU7EfcxVrMwK7Lr1n4; expires=Mon, 07 Dec 2026 20:12:40 GMT; Path=/; SameSite=None; Secure __Host-ss=pSuFNky3nQ; expires=Mon, 07 Dec 2026 20:12:40 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:40 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:40 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 12cfabd466a641e9814109321b2153f4 X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	3.229.59.64	200 OK	2.1 kB
URL POST HTTP/2 api-iam.intercom.io/messenger/web/ping IP 3.229.59.64:443 ASN #14618 AMAZON-AES Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subject.intercom.com Fingerprint27:36:75:E6:21:EC:FC:7E:08:BC:C4:6B:91:C8:C1:2C:22:70:F7:34 ValidityTue, 14 Feb 2023 00:00:00 GMT - Thu, 14 Mar 2024 23:59:59 GMT File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5540), with no line terminators Size 2.1 kB (2082 bytes) Hash 3f8437603d69f4a264c827ef5b189a09 5c89cf8185bb6a766ec5ee6f7d421abb9e3c5d67 53740461835a504bf794d49563df7d2feaa86d207214b06178b2d6a56cbe0e64 HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 429 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 20:12:40 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding strict-transport-security: max-age=31556952; includeSubDomains; preload x-intercom-version: c5bbc13a914eb88b0808fa181a2ef22979fe0409 content-encoding: gzip x-xss-protection: 1; mode=block x-request-queueing: 0 x-request-id: 00055siqv36p1pj5jmrg access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"53740461835a504bf794d49563df7d2f" x-runtime: 0.312950 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0fb0b20986efabbf0 X-Firefox-Spdy: h2

	statsigapi.net/v1/sdk_exception	34.120.214.181	204 No Content	0 B
URL OPTIONS HTTP/2 statsigapi.net/v1/sdk_exception IP 34.120.214.181:443 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerLet's Encrypt Subjectstatsigapi.net Fingerprint31:B6:18:31:2F:D9:0F:40:5B:9A:01:35:B5:C9:AD:0C:B1:D6:36:32 ValidityFri, 20 Oct 2023 03:47:25 GMT - Thu, 18 Jan 2024 03:47:24 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1/sdk_exception HTTP/1.1 Host: statsigapi.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,statsig-api-key,statsig-sdk-type,statsig-sdk-version Referer: https://docsend.com/ Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 204 No Content vary: Origin, Access-Control-Request-Headers access-control-allow-origin: * access-control-allow-methods: POST, GET, DELETE, PATCH, PUT access-control-allow-headers: content-type,statsig-api-key,statsig-sdk-type,statsig-sdk-version access-control-max-age: 7200 date: Fri, 08 Dec 2023 20:12:42 GMT x-envoy-upstream-service-time: 1 server: istio-envoy content-security-policy: frame-ancestors .statsig.com .atlassian.net referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff; x-statsig-region: gke-europe-west1 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	statsigapi.net/v1/sdk_exception	34.120.214.181	204 No Content	16 B
URL OPTIONS HTTP/2 statsigapi.net/v1/sdk_exception IP 34.120.214.181:443 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerLet's Encrypt Subjectstatsigapi.net Fingerprint31:B6:18:31:2F:D9:0F:40:5B:9A:01:35:B5:C9:AD:0C:B1:D6:36:32 ValidityFri, 20 Oct 2023 03:47:25 GMT - Thu, 18 Jan 2024 03:47:24 GMT File type JSON data\012- , ASCII text, with no line terminators Size 16 B (16 bytes) Hash 7363e85fe9edee6f053a4b319588c086 a15e2127145548437173fc17f3e980e3f3dee2d0 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97 HTTP Headers POST /v1/sdk_exception HTTP/1.1 Host: statsigapi.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ STATSIG-API-KEY: client-rUeuazmIIgsQ4DOPVC3ukXiZX1F0O99jg9P7egpXVxu STATSIG-SDK-TYPE: js-client STATSIG-SDK-VERSION: 4.33.6 Content-Type: application/json Content-Length: 5396 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 202 Accepted vary: Origin, Accept-Encoding access-control-allow-origin: * content-type: application/json; charset=utf-8 content-length: 16 date: Fri, 08 Dec 2023 20:12:42 GMT x-envoy-upstream-service-time: 8 server: istio-envoy content-security-policy: frame-ancestors .statsig.com .atlassian.net referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff; x-statsig-region: gke-europe-west1 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4177 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-M/5fc/QX3TZY0MjO+4Pw' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-M/5fc/QX3TZY0MjO+4Pw' 'nonce-kuvmsyrW6+TZfgTB8YJ1' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTc5NjAzNzQ1MDcxNjA1NDA1Nzg4ODA4ODc1NDE2MDIzNzYyMzYx; expires=Wed, 06 Dec 2028 20:12:42 GMT; HttpOnly; Path=/; SameSite=None; Secure t=xd4GGLMGETfj1zop_1Ph6Nr0; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:42 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=xd4GGLMGETfj1zop_1Ph6Nr0; expires=Mon, 07 Dec 2026 20:12:42 GMT; Path=/; SameSite=None; Secure __Host-ss=Dbl6wmjecM; expires=Mon, 07 Dec 2026 20:12:42 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:42 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:42 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 16a28b811fcc444f83961a776b182599 X-Firefox-Spdy: h2

	www.dropbox.com/log/ux_analytics	162.125.71.18	200 OK	0 B
URL POST HTTP/2 www.dropbox.com/log/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /log/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/x-www-form-urlencoded Content-Length: 669 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en; __Host-logged-out-session=ChAQnMN+UUKxGs5qSllv6FnOELXxzasGGi5BSWFZWnh3aERmNDUwbDMwS1lHWVlUWmtnSnI0MGRYQkJVcnR2alFtZUhEcTNR Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://docsend.com access-control-expose-headers: Accept-Ranges, Content-Disposition, Content-Encoding, Content-Length, Content-Range, X-Dropbox-Metadata, X-Dropbox-Request-Id, X-JSON, X-Server-Response-Time, Timing-Allow-Origin, x-dropbox-pdf-password-needed content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:43 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:43 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:43 GMT; HttpOnly; Path=/; SameSite=Strict; Secure vary: Origin x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 21 x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:43 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-length: 0 cache-control: no-cache, no-store x-dropbox-response-origin: far_remote x-dropbox-request-id: e0bd7c86fd8846ed8616f60c01843a50 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL POST HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4177 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-/SGSPRWcH3MoV4lRzQKR' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-/SGSPRWcH3MoV4lRzQKR' 'nonce-yj3OJGY5RTiBq3WAfEW1' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjkwNzgwNTM2MDg5NzU1NDE1NTk4MTE1MzA3OTcyNzQ2NDY2MDI5; expires=Wed, 06 Dec 2028 20:12:46 GMT; HttpOnly; Path=/; SameSite=None; Secure t=Gjf9XluBAtCS_BbMKL1TjfzI; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:46 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=Gjf9XluBAtCS_BbMKL1TjfzI; expires=Mon, 07 Dec 2026 20:12:46 GMT; Path=/; SameSite=None; Secure __Host-ss=sJ4V01RcbQ; expires=Mon, 07 Dec 2026 20:12:46 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:46 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:46 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: e2bdf407b0874b14a80624c7a6bd0c2d X-Firefox-Spdy: h2

	www.dropbox.com/log/ux_analytics	162.125.71.18	200 OK	0 B
URL POST HTTP/2 www.dropbox.com/log/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /log/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/x-www-form-urlencoded Content-Length: 670 Origin: https://docsend.com DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en; __Host-logged-out-session=ChAQnMN+UUKxGs5qSllv6FnOELXxzasGGi5BSWFZWnh3aERmNDUwbDMwS1lHWVlUWmtnSnI0MGRYQkJVcnR2alFtZUhEcTNR Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK access-control-allow-credentials: true access-control-allow-origin: https://docsend.com access-control-expose-headers: Accept-Ranges, Content-Disposition, Content-Encoding, Content-Length, Content-Range, X-Dropbox-Metadata, X-Dropbox-Request-Id, X-JSON, X-Server-Response-Time, Timing-Allow-Origin, x-dropbox-pdf-password-needed content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:48 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:48 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:48 GMT; HttpOnly; Path=/; SameSite=Strict; Secure vary: Origin x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 23 x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Fri, 08 Dec 2023 20:12:48 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-length: 0 cache-control: no-cache, no-store x-dropbox-response-origin: far_remote x-dropbox-request-id: fd1109065b684d1d8190845a7df61346 X-Firefox-Spdy: h2

	events.statsigapi.net/v1/rgstr	34.120.214.181		0 B
URL POST events.statsigapi.net/v1/rgstr IP 34.120.214.181:0 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerLet's Encrypt Subjectstatsigapi.net Fingerprint31:B6:18:31:2F:D9:0F:40:5B:9A:01:35:B5:C9:AD:0C:B1:D6:36:32 ValidityFri, 20 Oct 2023 03:47:25 GMT - Thu, 18 Jan 2024 03:47:24 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1/rgstr HTTP/1.1 Host: events.statsigapi.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,statsig-api-key,statsig-client-time,statsig-encoded,statsig-sdk-type,statsig-sdk-version Referer: https://docsend.com/ Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: istio-envoy x-frame-options: SAMEORIGIN x-content-type-options: nosniff, nosniff; permissions-policy: interest-cohort=() x-response-time: 0 ms access-control-allow-origin: * access-control-allow-methods: POST, GET, PATCH, DELETE, PUT, OPTIONS access-control-allow-headers: * access-control-max-age: 7200 access-control-allow-credentials: true content-length: 0 date: Fri, 08 Dec 2023 20:12:49 GMT x-envoy-upstream-service-time: 2 content-security-policy: frame-ancestors *.statsig.com referrer-policy: strict-origin-when-cross-origin x-statsig-region: gke-europe-west1 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	events.statsigapi.net/v1/rgstr	34.120.214.181		16 B
URL POST events.statsigapi.net/v1/rgstr IP 34.120.214.181:0 ASN #15169 GOOGLE Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerLet's Encrypt Subjectstatsigapi.net Fingerprint31:B6:18:31:2F:D9:0F:40:5B:9A:01:35:B5:C9:AD:0C:B1:D6:36:32 ValidityFri, 20 Oct 2023 03:47:25 GMT - Thu, 18 Jan 2024 03:47:24 GMT File type JSON data\012- , ASCII text, with very long lines (6130), with no line terminators, ASCII text, with no line terminators Size 16 B (16 bytes) Hash 7363e85fe9edee6f053a4b319588c086 a15e2127145548437173fc17f3e980e3f3dee2d0 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97 HTTP Headers POST /v1/rgstr HTTP/1.1 Host: events.statsigapi.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Content-type: application/json; charset=UTF-8 STATSIG-API-KEY: client-rUeuazmIIgsQ4DOPVC3ukXiZX1F0O99jg9P7egpXVxu STATSIG-CLIENT-TIME: 1702066376382 STATSIG-SDK-TYPE: js-client STATSIG-SDK-VERSION: 4.33.6 STATSIG-ENCODED: 0 Content-Length: 1339 Origin: https://docsend.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 202 Accepted content-type: application/json server: istio-envoy permissions-policy: interest-cohort=() x-frame-options: SAMEORIGIN x-content-type-options: nosniff, nosniff; x-response-time: 0 ms access-control-allow-origin: * access-control-allow-methods: POST, GET, PATCH, DELETE, PUT, OPTIONS access-control-allow-headers: * access-control-max-age: 7200 access-control-allow-credentials: true content-length: 16 date: Fri, 08 Dec 2023 20:12:48 GMT x-envoy-upstream-service-time: 2 content-security-policy: frame-ancestors *.statsig.com referrer-policy: strict-origin-when-cross-origin x-statsig-region: gke-europe-west1 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cfl.dropboxstatic.com/static/metaserver/static/pithos/marketing_tracker_client.bundle-vflqz_v1A.js	104.16.99.29	200 OK	6.0 kB
URL GET HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/marketing_tracker_client.bundle-vflqz_v1A.js IP 104.16.99.29:443 ASN #13335 CLOUDFLARENET Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subjectcfl.dropboxstatic.com FingerprintF2:23:53:E3:9A:02:F7:52:57:BA:E1:14:A7:03:E9:77:48:AF:87:03 ValidityTue, 14 Feb 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (6130), with no line terminators Size 6.0 kB (6015 bytes) Hash 97a8bd267e9ae147b1455a9b55b5d2ae 24c499c74d36d7231fadee8484d94a27c500fd52 19b06e508dab17daeba568d7d830741b61471198fc1f4a38699888eebbec2f6b HTTP Headers `GET /static/metaserver/static/pithos/marketing_tracker_client.bundle-vflqz_v1A.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 20:12:38 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Fri, 01 Dec 2023 21:22:23 GMT x-dropbox-request-id: f0543b421e0c3fab4bb44082c58faa0f x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 355630 server: cloudflare cf-ray: 8327aa130fc356c7-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	0.0.0.0		0 B
URL GET consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 0.0.0.0:0 ASN #0 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Cookie: t=ATYN9gfRISuB0yusda2Xm9x2; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache

	docsend.com/view/c2jf7zhdsr4pi249	143.204.55.97	200 OK	33 kB
URL User Request GET HTTP/1.1 docsend.com/view/c2jf7zhdsr4pi249 IP 143.204.55.97:443 ASN #16509 AMAZON-02 Certificate IssuerSectigo Limited Subject.docsend.com Fingerprint4D:9A:72:4A:F7:FF:E7:AB:AE:24:1D:8B:C0:E0:30:A7:B4:82:D3:8E ValidityWed, 23 Aug 2023 00:00:00 GMT - Sun, 22 Sep 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4123) Size 33 kB (32749 bytes) Hash 54583db5258169633babc1ec8fb1e14b be48f377cde6faa7c960b90793e86a527bb5dd51 932107ddf66747a8a8baf564c6afb28ef047be42d2fb6f52884a4e59a41dc8d2 HTTP Headers `GET /view/c2jf7zhdsr4pi249 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Server: Cowboy Date: Fri, 08 Dec 2023 20:12:36 GMT Report-To: {"group":"heroku-nel","max_age":3600,"endpoints":[{"url":"https://nel.heroku.com/reports?ts=1702066356&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=YRutW09vMmVKWrMeI6%2BBxPrNZ961NqnRHUSeWCfqqx8%3D"}]} Reporting-Endpoints: heroku-nel=https://nel.heroku.com/reports?ts=1702066356&sid=af571f24-03ee-46d1-9f90-ab9030c2c74c&s=YRutW09vMmVKWrMeI6%2BBxPrNZ961NqnRHUSeWCfqqx8%3D Nel: {"report_to":"heroku-nel","max_age":3600,"success_fraction":0.005,"failure_fraction":0.05,"response_headers":["Via"]} X-Frame-Options: DENY X-Content-Type-Options: nosniff Etag: W/"932107ddf66747a8a8baf564c6afb28e" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://assets.docsend.com https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-pRzppwRfEZWxwJZpn6/V3Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://assets.docsend.com https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://events.statsigapi.net/v1/rgstr https://statsigapi.net/v1/sdk_exception https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://assets.docsend.com https://.previews.dropboxusercontent.com/ https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://assets.docsend.com https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=Ik7WNGCQZNhyDsi294EXlBUWZ3f%2B1OwoU9PmUIvzfC3u1Fq%2Be%2Bw0iRRc7hsp0X9matuIaPIMziaDm64Db7BZCOp8blPAau1e3GVWjbo%3D--Uu7W1isd%2FnzaYSpP--cdfQhL7WM32ccTy7aBYOng%3D%3D; domain=.docsend.com; path=/; expires=Sun, 08 Dec 2024 20:12:36 GMT; SameSite=None; secure _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Tue, 08 Dec 2043 20:12:36 GMT; SameSite=None; secure _dss_=1301db4ffbf20b81e66e9b56451c1132; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None X-Request-Id: 7461c970-0e17-4ddb-b7f3-152105166f62 X-Runtime: 0.108919 Vary: Accept-Encoding, Origin Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 8B44A9Bjq1_qEmgpNFqUdAGqjdXZinrJVLWO-1kzL-n3NBfXKCD5lg==

	www.dropbox.com/pithos/ux_analytics	162.125.71.18	307 Temporary Redirect	13 kB
URL GET HTTP/2 www.dropbox.com/pithos/ux_analytics IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 13 kB (12821 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /pithos/ux_analytics HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/ux_analytics referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MTM3OTcyMDU2MzQ1Njc1NjAwNjEwNDk3NzU3MDYyMTQ0ODIyNTgx; expires=Wed, 06 Dec 2028 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure t=AF5YrV8iQVpBmzb3LQpXp3kO; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=AF5YrV8iQVpBmzb3LQpXp3kO; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=0FZcTWNC6o; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:37 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Fri, 08 Dec 2023 20:12:36 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 124a0c57943e41199eb3ef9b8c9f55e6 X-Firefox-Spdy: h2

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflgcVmNN.js	104.16.99.29	200 OK	238 kB
URL GET HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflgcVmNN.js IP 104.16.99.29:443 ASN #13335 CLOUDFLARENET Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subjectcfl.dropboxstatic.com FingerprintF2:23:53:E3:9A:02:F7:52:57:BA:E1:14:A7:03:E9:77:48:AF:87:03 ValidityTue, 14 Feb 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT File type Size 238 kB (238380 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /static/metaserver/static/pithos/privacy_consent.bundle-vflgcVmNN.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 20:12:38 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Fri, 01 Dec 2023 21:22:23 GMT x-dropbox-request-id: bf27179b24351ea5c4f9b992fc24f856 x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 356419 server: cloudflare cf-ray: 8327aa130fc056c7-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false&locale=en	0.0.0.0		0 B
URL GET consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false&locale=en IP 0.0.0.0:0 ASN #0 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=true&should_disable_banner=false&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false&locale=en HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Cookie: t=ATYN9gfRISuB0yusda2Xm9x2; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache

	widget.intercom.io/widget/lv6lji7h	54.230.111.53	200 OK	7.0 kB
URL GET HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.53:443 ASN #16509 AMAZON-02 Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerAmazon Subject.intercom.com Fingerprint27:36:75:E6:21:EC:FC:7E:08:BC:C4:6B:91:C8:C1:2C:22:70:F7:34 ValidityTue, 14 Feb 2023 00:00:00 GMT - Thu, 14 Mar 2024 23:59:59 GMT File type ASCII text, with very long lines (7154), with no line terminators Size 7.0 kB (6952 bytes) Hash 88bd4949e9c4cecdf1d741e995c11256 4c89bd180040db2b728bada0627654a2a3b8a8f8 9b49543d9ae880b63e4bf1e23809b6c3555b1bee23400a62f995fa419fd40670 HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 2705 last-modified: Fri, 08 Dec 2023 15:51:55 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: MXAtM0hcSYKI1u5JfcZqRwiuMwLdl36J accept-ranges: bytes server: AmazonS3 date: Fri, 08 Dec 2023 20:07:46 GMT cache-control: max-age=300, s-maxage=300, public etag: "97c627ed9208032d4223332ddabc6f74" x-cache: Error from cloudfront via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: VxerSk66psb0T-OQ2CJbZNZiWA7ZgiEVV5BmC1tW6HisGJhKbe5fqQ== age: 294 cross-origin-resource-policy: cross-origin vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	nexus-websocket-a.intercom.io/pubsub/5-arHkUnvJhETPV-U9sRKO-45DkF8IF8SI4hZroG0cEJslzGNuyRAw3PHiSyOxC4X75UnHkbKsK_dQnZIXOxXhjJnGVFMnNJKq2fd7?X-Nexus-New-Client=true&X-Nexus-Version=0.12.9&user_role=undefined	34.237.73.95	101 Switching Protocols	0 B
URL GET HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-arHkUnvJhETPV-U9sRKO-45DkF8IF8SI4hZroG0cEJslzGNuyRAw3PHiSyOxC4X75UnHkbKsK_dQnZIXOxXhjJnGVFMnNJKq2fd7?X-Nexus-New-Client=true&X-Nexus-Version=0.12.9&user_role=undefined IP 34.237.73.95:443 ASN #14618 AMAZON-AES Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.intercom.io Fingerprint3D:91:3E:2A:5D:80:08:D2:F0:DB:C3:9B:89:90:85:AA:FA:31:B2:DE ValidityTue, 07 Nov 2023 00:00:00 GMT - Sat, 07 Dec 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-arHkUnvJhETPV-U9sRKO-45DkF8IF8SI4hZroG0cEJslzGNuyRAw3PHiSyOxC4X75UnHkbKsK_dQnZIXOxXhjJnGVFMnNJKq2fd7?X-Nexus-New-Client=true&X-Nexus-Version=0.12.9&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: tpLFInTQDDIGjThnOJQ5uQ== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Fri, 08 Dec 2023 20:12:41 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: pyXHEIIKiEqqHHzAkV1Z2FaTna8= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	www.dropbox.com/pithos/marketing_tracker_client	162.125.71.18	307 Temporary Redirect	7.9 kB
URL GET HTTP/2 www.dropbox.com/pithos/marketing_tracker_client IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type Size 7.9 kB (7893 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /pithos/marketing_tracker_client HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/marketing_tracker_client referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjU1MzI5NDI1NzA2NDU3Mjg5NDA0MTAxOTkxNTYwOTMxNjQ5MDg1; expires=Wed, 06 Dec 2028 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure t=UWaWbYqJDezZH80KFN1mYm2v; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=UWaWbYqJDezZH80KFN1mYm2v; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=eg-gFOypaU; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Wed, 06 Dec 2028 20:12:37 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Fri, 08 Dec 2023 20:12:36 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 92094c0469e7494abf4e721735dedd69 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/marketing_tracker_client	162.125.71.18	200 OK	7.9 kB
URL GET HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/marketing_tracker_client IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (8200), with no line terminators Size 7.9 kB (7893 bytes) Hash 0d8393737357a1913d3e423d840b76f3 327413dd14927e1d3bcb49e4d950c4c4af7929cd 460de8226a388dd3f3e4ada109938700b50d21a0c5bd6864ed3b045780a74fba HTTP Headers GET /pithos/host%3Adocsend.com/marketing_tracker_client HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChBGPurhv2RJdZDbxVznxg2cELXxzasGGi5BSVlIZGJodjkyaUdsWFV4amJZZ292UGtnVUE4anJPVDJnblBXMnUxQ0VDb2Rn; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 11 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Fri, 08 Dec 2023 20:12:37 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: ccb3b056d4694a87ae49c48f6ee30682 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	7.8 kB
URL GET HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:443 ASN #19679 DROPBOX Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subject.dropbox.com Fingerprint17:55:A3:E8:7A:9A:D8:FF:86:5A:8E:81:2C:30:73:6B:8A:88:10:43 ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT File type ASCII text, with very long lines (8091), with no line terminators Size 7.8 kB (7790 bytes) Hash ea99260a08df1467a478d8b2363e19ba e234ceb2e197b7e379ebc82184f364f6fdd8b806 83582cab4160bda78fef197a86c97a898b685d422bb69443b4beb835ff77a411 HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Cookie: gvc=MjAzNDIwODg4MjEwMTI4NzE3NjM2MjY0ODM3MzI2NjQ5NzcwMjI0; t=ATYN9gfRISuB0yusda2Xm9x2; __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws wss://dsimports.dropbox.com/ ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-cfGin33TVMJqbt6cWA2W' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ https://www.dropbox.com/encrypted_folder_download/service_worker.js blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-cfGin33TVMJqbt6cWA2W' 'nonce-GaGqCioxv6y8aWiXXUKA' referrer-policy: strict-origin-when-cross-origin set-cookie: t=ATYN9gfRISuB0yusda2Xm9x2; Domain=dropbox.com; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=ATYN9gfRISuB0yusda2Xm9x2; expires=Mon, 07 Dec 2026 20:12:37 GMT; Path=/; SameSite=None; Secure __Host-ss=QlcK5q8p3A; expires=Mon, 07 Dec 2026 20:12:37 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChAQnMN+UUKxGs5qSllv6FnOELXxzasGGi5BSWFZWnh3aERmNDUwbDMwS1lHWVlUWmtnSnI0MGRYQkJVcnR2alFtZUhEcTNR; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 24 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Fri, 08 Dec 2023 20:12:37 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 3d4491e32e784062beb4a5ca97af8f5c X-Firefox-Spdy: h2

	cfl.dropboxstatic.com/static/metaserver/static/pithos/ux_analytics.bundle-vflH4tjYr.js	104.16.99.29	200 OK	34 kB
URL GET HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/ux_analytics.bundle-vflH4tjYr.js IP 104.16.99.29:443 ASN #13335 CLOUDFLARENET Requested by https://docsend.com/view/c2jf7zhdsr4pi249 Certificate IssuerDigiCert Inc Subjectcfl.dropboxstatic.com FingerprintF2:23:53:E3:9A:02:F7:52:57:BA:E1:14:A7:03:E9:77:48:AF:87:03 ValidityTue, 14 Feb 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (34352) Size 34 kB (34358 bytes) Hash 1f8b6362ba9f04ef760d098e6998a4c7 4ff0ed717a92d957bde296a83a8f59d7e4dc6828 ab8244771a0c26d715992d14f3939431c983b59e1f41b1f29656f176f4451d85 HTTP Headers `GET /static/metaserver/static/pithos/ux_analytics.bundle-vflH4tjYr.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 08 Dec 2023 20:12:38 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Fri, 08 Dec 2023 08:29:03 GMT x-dropbox-request-id: 177fd3d1ced3679105ec82cb184529cd x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 10868 server: cloudflare cf-ray: 8327aa130fc156c7-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by