proxy.quickmail.com/click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next
34.201.80.84301 Moved Permanently 0 B URL HTTP/1.1 proxy.quickmail.com/click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next
IP 34.201.80.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Cowboy
Date: Thu, 19 Jan 2023 22:09:07 GMT
Connection: keep-alive
Content-Type: text/html
Location: https://proxy.quickmail.com/click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next
Transfer-Encoding: chunked
Via: 1.1 vegur
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17070
Expires: Fri, 20 Jan 2023 02:53:37 GMT
Date: Thu, 19 Jan 2023 22:09:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6227
Expires: Thu, 19 Jan 2023 23:52:54 GMT
Date: Thu, 19 Jan 2023 22:09:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 19 Jan 2023 21:34:34 GMT
content-type: application/json
age: 2073
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 19 Jan 2023 22:09:07 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15879
Expires: Fri, 20 Jan 2023 02:33:46 GMT
Date: Thu, 19 Jan 2023 22:09:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wBTlAkgq+gWGiABU4YQRQmyr9tpn+/+yOscHqHHemRVknU+ZL92mUDsigwF4ZbsjcHaU9CS+J+E=
x-amz-request-id: GNHY2SYVH0SEYDVD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 19 Jan 2023 21:17:21 GMT
age: 3106
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6893594d5859d31fd298cccf10f95d6f
0f3d5bb32c35e5ab6ae103d8cdd893be330254ea
b7cfda893fc255eab77fd071011d3072d6c67b6f1553b7ace68bb5f54a303aeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7CFDA893FC255EAB77FD071011D3072D6C67B6F1553B7ACE68BB5F54A303AEB"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19979
Expires: Fri, 20 Jan 2023 03:42:06 GMT
Date: Thu, 19 Jan 2023 22:09:07 GMT
Connection: keep-alive
proxy.quickmail.com/click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next
54.196.16.164301 Moved Permanently 107 B URL HTTP/1.1 proxy.quickmail.com/click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next
IP 54.196.16.164:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 1d6f47d78a7697ba909d7a66db11fbf6
ca5607a2670eb83679f37f266bed405464ef8db8
fbe4439ce0d7da062b2ff1fc08905d41b2c92c3607f7b1d4bc067e077b3cf5b5
Analyzer Verdict Alert fortinet Phishing
GET /click/1/533210528/5ed94d26f39397d6e68c28ede26771e2/baf05151ef1a314ad62cd6391c68fe3e/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://docsend.com/view/ixrtsfq6baghdvci
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
X-Request-Id: c8d8f960-7f7e-4e83-aac8-a72fd2870f90
X-Runtime: 0.029782
Server:
Date:
Last-Modified:
Strict-Transport-Security: max-age=63072000; includeSubDomains
Transfer-Encoding: chunked
Via: 1.1 vegur
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 19 Jan 2023 21:48:57 GMT
age: 1211
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1470
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:08 GMT
Last-Modified: Thu, 19 Jan 2023 21:44:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 63ec55ec31b9e544ae14ae034a51c751
6864f869ebc0c35e8c91fb1d0176dc20edd635bd
3b85ea34cb950b1617327fb7fbac2bc99a0fdda0482265f73b3d6ba5bdc24cb9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 19 Jan 2023 22:09:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 03:57:43 GMT
Expires: Tue, 24 Jan 2023 03:57:42 GMT
Etag: "6864f869ebc0c35e8c91fb1d0176dc20edd635bd"
Cache-Control: max-age=365913,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78c2e4995d061bfa-OSL
push.services.mozilla.com/
35.166.224.175101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.224.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yngA1SCoiZm1zTA0gK6gAw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j+wlv60y1fsuYKKSigLXJzdMdIo=
docsend.com/view/ixrtsfq6baghdvci
3.220.57.224200 OK 14 kB URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci
IP 3.220.57.224:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5461)
Hash 03b74261a019653ca4c7cf3148b37fdc
1da4558ba059b30feee6244a3e8b60ef32df17f1
f1b99fb4ac34b10e4844c571c03d79065548400a90ff32451a179f3c7d184ea1
GET /view/ixrtsfq6baghdvci HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"f8b4a1dc46a4abe6179d72b9b5686214"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-+pCPeFmrvBky2rOgbmkcTQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:08 GMT; SameSite=None; secure
_us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Mon, 19 Jan 2043 22:09:08 GMT; SameSite=None; secure
_dss_=0e07052a4ae775b9ed1d31ef6b9714d2; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None
X-Request-Id: c0e3dac0-87ea-4085-b077-82b9251cd522
X-Runtime: 0.115802
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-46c117fb99758ac154d6.js
143.204.42.157200 OK 13 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-46c117fb99758ac154d6.js
IP 143.204.42.157:0
File type ASCII text, with very long lines (44763), with no line terminators
Hash 0b67a0b1e9585ae639f1192fe8cc7764
270a4e12b8a6e4aa64e6cd63fe53c02958711e08
3130bb09cf5dd595cd0efd53eaf2aee737a4ab2315cfe71a26a0fbbff6a8193e
GET /packs/js/javascripts/error_handling-46c117fb99758ac154d6.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:33:35 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:46 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5pmvlS5XMZF5TdGH8sCCmsX-ZS1RD1QbUuFO4NFbdv55HZEHdQhqrQ==
Age: 77733
d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-098f7269.css
143.204.42.157200 OK 96 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-098f7269.css
IP 143.204.42.157:0
File type Unicode text, UTF-8 text, with very long lines (65517)
Hash fd28ac0d7602820fac6a2b9d3a97b9f6
a8109f0e1f50df2546d4322bb38fd21e4a3f9340
4d999b0a450d62993b2574361331d1342180c47f601cfe4784f68ca35e2daaee
GET /packs/css/stylesheets/presentation-098f7269.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 21:29:16 GMT
Last-Modified: Thu, 19 Jan 2023 20:58:36 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
Content-Encoding: gzip
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fgq6OZ1Xyn2uHj40pQF4LFFPVgqW5kF4HYp9m_j-hLe8BIEYo4RjzA==
Age: 2391
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bc8663a126da77ebae25208a7be19e3e
6212f785d79a5a45393f900d230d8fbe32c7e9ab
239db50c46851e94c7d12d2eb2eb1eb9cb34e7d52e91c883c1055ddac4b79e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2410
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:08 GMT
Last-Modified: Thu, 19 Jan 2023 21:28:58 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-5e97e24d.css
143.204.42.157200 OK 23 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-5e97e24d.css
IP 143.204.42.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5db41c9735509ea383f6c966cb71528f
6c4cc8b6287b05210766351da9e658fb47e09f93
f442f035d93369511eca0e21cff9b6dbacf7b61a041d9c6d471363d2c67f8cee
GET /packs/css/javascripts/presentation-5e97e24d.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 21:29:16 GMT
Last-Modified: Thu, 19 Jan 2023 20:58:36 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
Content-Encoding: gzip
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FQGI-Pbts-34LaVckgrm6XwHw2fPo1lmpodzccVX6uv-jB38AOwm1A==
Age: 2391
d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
143.204.42.157200 OK 948 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
IP 143.204.42.157:0
File type exported SGML document, ASCII text
Hash a7ace942f4f580ee5902c36fed888af9
ca1c01b03c6763b0f458af9eea82b8f00b430141
514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0
GET /assets/ie_specific_hacks_v2.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 01:09:47 GMT
Last-Modified: Wed, 18 Jan 2023 23:43:19 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iNsKtCA8VTgr8V2HHigbgjYp12N-FSkT7Ys_9JCKWukoL4SfqYdPeg==
Age: 75561
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js
143.204.42.157200 OK 3.2 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js
IP 143.204.42.157:0
File type ASCII text, with very long lines (10023), with no line terminators
Hash a81251cd4a5c204ff984695b882e569e
1f3c5156f7617a9b3d9a9063f3690d1aa69e0069
e1bd4b4b2dd17bb05a75344d15ac10a9f95b7e7e40b8b99e2410d573a1ce068b
GET /packs/js/javascripts/langpacks/en-193959047f11a047fd5f.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 00:33:35 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:46 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Gd_Ye3Mx1p0BNhQtEP8vYZcmTq-PUbtHqF1kOBNYTpLg7zeun9ymAg==
Age: 77733
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-34230d0ca56de7a6bf83.js
143.204.42.157200 OK 2.1 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-34230d0ca56de7a6bf83.js
IP 143.204.42.157:0
File type ASCII text, with very long lines (65445)
Size 2.1 MB (2090868 bytes)
Hash 7106ad71daec53e0406d943378fdf368
b9f32037da5627f3de5065bfafb63186187880ce
72303eb5b6a27eadc36b5145f26f5e6265608571fa20a6df5a7f8f0d2ac583c1
GET /packs/js/javascripts/presentation-34230d0ca56de7a6bf83.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 21:25:45 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Thu, 19 Jan 2023 20:58:36 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
Content-Encoding: br
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g-120wxid0svLJGnF2cf5ABEVx2eU7RZET9ApjrOnmcas94wosBikQ==
Age: 2603
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a435563e4adb6d7d64a8600e6250bf45
a8f5a99620153938ec4cfba0423d6d06c66bb7fe
9e5c713c50dca08152c55041574e3e4003213133a8c78494ff18d1d1808589fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
143.204.42.157200 OK 43 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
IP 143.204.42.157:0
File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data
Hash 93b6f18ec99bcb7c3fa7ea570a75e240
60b9e3062fe532cbc18b897fac542c56a03544c7
43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db
GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 43308
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 04:58:13 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Wed, 18 Jan 2023 23:43:19 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PzcD8g1WaaU3mM640fsa6tQVrY3Re_h-0nndiZaFkieJPBFQ1eeQAg==
Age: 61855
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
143.204.42.157200 OK 46 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
IP 143.204.42.157:0
File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data
Hash dfc5e24cbc1b134e0c00c61e84ec999a
d3b1a8ef1d0f6f9162986479252570525719f203
b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3
GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 46188
Connection: keep-alive
Server: nginx
Date: Wed, 18 Jan 2023 23:31:18 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Wed, 18 Jan 2023 19:32:51 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GBHqe4f64KjijtsfVVeumEVgFGqRgMGRlJgMitHEYFVt3Taf_4dspA==
Age: 81470
www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
162.125.71.18200 OK 3.0 kB URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
IP 162.125.71.18:0
File type ASCII text, with very long lines (3947)
Hash 71b1651cca9f29e7adceb2c3e4e617b0
17dfce9272d3cfefafe8ab6fdd2847929919e99b
467e158af97b63d172a71d9118fe6727a8bfa8a827657076d9e25a873688d8cd
GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Cookie: gvc=MzQzMjk1OTc4Mjc1NTg0OTMwMzAwOTUxMDE5NTg4OTE3Mjg5NTI%3D; t=lLo5wbp3ohtDvoq-PFoYZwr7; __Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; locale=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-cache, no-store
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-THlqEQ+UervOY4XdqVBe' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-THlqEQ+UervOY4XdqVBe' 'nonce-N53x/EUz+Xm+/bOfifuY'
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=lLo5wbp3ohtDvoq-PFoYZwr7; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:09 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; expires=Sun, 18 Jan 2026 22:09:09 GMT; Path=/; SameSite=None; Secure
__Host-ss=fc2jXlUmiw; expires=Sun, 18 Jan 2026 22:09:09 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
__Host-logged-out-session=ChBSn3MwvUGpdftM9rK%2FYwfREIX%2Fpp4GGi5BRmk2bERra0I4aEFDekJoZ3FoNjRKcTg1clVhTGk0ZVVubVVYNUhReVNGclRn; HttpOnly; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-server-response-time: 39
x-xss-protection: 1; mode=block
content-type: text/javascript; charset=UTF-8
date: Thu, 19 Jan 2023 22:09:09 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 121f630ef80e4b99b3df1b94ffb88c43
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de21dfb0dc9ce60907578f6a341d1c26
d4e1e33ceed6f91101d3bf3487b0202bad36e3cc
ad8e59c85e36be2b029a9094145a13f2d97c62a34ccc07d7ce3440774705c97b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2726
Cache-Control: max-age=145133
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:09 GMT
Etag: "63c948cc-1d7"
Expires: Sat, 21 Jan 2023 14:28:02 GMT
Last-Modified: Thu, 19 Jan 2023 13:42:36 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de21dfb0dc9ce60907578f6a341d1c26
d4e1e33ceed6f91101d3bf3487b0202bad36e3cc
ad8e59c85e36be2b029a9094145a13f2d97c62a34ccc07d7ce3440774705c97b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2726
Cache-Control: max-age=145133
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:09 GMT
Etag: "63c948cc-1d7"
Expires: Sat, 21 Jan 2023 14:28:02 GMT
Last-Modified: Thu, 19 Jan 2023 13:42:36 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
142.250.74.74200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
IP 142.250.74.74:0
Hash 364619c463d74363e6671d0408090e4f
145210ea15132e307638118f4baaee4106b83be5
108d831f72b70eeca430b3a8502419fd33df07c14a0cb5d34c737c068f83a0fc
GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 19 Jan 2023 22:09:08 GMT
date: Thu, 19 Jan 2023 22:09:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4293
Expires: Thu, 19 Jan 2023 23:20:42 GMT
Date: Thu, 19 Jan 2023 22:09:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4293
Expires: Thu, 19 Jan 2023 23:20:42 GMT
Date: Thu, 19 Jan 2023 22:09:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4293
Expires: Thu, 19 Jan 2023 23:20:42 GMT
Date: Thu, 19 Jan 2023 22:09:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b8f931fb5afe958e67fce9e1822dac4
5732887999b819f6facc6f4608a407b5a09adf75
3c6c787e700f8139ec0eeaad93923f647f9efa5ce60120fc0aab52fa9588efaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F358af8d7-be1d-4bbe-ab3e-a9efaf49e1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5005
x-amzn-requestid: 647dd62e-6b47-4298-9457-c7f37e653e0e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e5qLKEX6IAMFX0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c6f0ad-3dc1396c1b3662fa4ec5f1fa;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 19:02:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ge_XozSe44BAhC-fFiu-u8Oa4jd8Uctn4O3fmdLCavhYpcSVrhNMww==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 17:22:45 GMT
age: 17184
etag: "5732887999b819f6facc6f4608a407b5a09adf75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b015242ebdda9cc22cfe6741d2e926f1
76072223007cd11c6f7b9fda8f01818ab0fea740
b7a72c737cac91c83c39718de999bc6ff0ec4ede63342e86407190d95e60d9a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f344d-12b3-4719-9ecf-6191897f233e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6908
x-amzn-requestid: 5f0a0b3b-1d4c-450e-bcd5-481bda79f4e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq1qQHwYIAMF-IQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1030e-62d053e35c8ab2374fd2fe35;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:06:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WdNoHBL4A3J_FHp8V9HLUMNKmEPIw-lstt0OdqYJtcUGfMRZJXPdwQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 11:03:43 GMT
age: 39926
etag: "76072223007cd11c6f7b9fda8f01818ab0fea740"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 511bbd0c410838e4a978d471d361d876
706be1b2636ad65bf5fe78ef7301af472c015275
e124c1ba6059fb613d0ab8f7ad37f4524323e7bbde851f78e9e5727c7d20f19f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef64b6-6b9b-4860-a201-58a01048084b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9916
x-amzn-requestid: 42bb326d-889c-4b91-b989-47c1fd650afa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e96pVF61oAMF76g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8a4a1-2f33e6be45e298a7120d1119;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 02:02:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 68BfqCCeDzqQURstD87lSuWaXjwrqVQnXX8ws6EeFfQtbu_ad9JEgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 05:26:43 GMT
etag: "706be1b2636ad65bf5fe78ef7301af472c015275"
content-type: image/jpeg
age: 60146
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bYiQLNEiz35_p4_5MV3ky7R5fpl4qUYtf-F2KP0C2gzmeXp5B7kgSQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 22:10:04 GMT
age: 86345
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 884f5d7c3a0ee782d4f3fe9f16099891
1c80645a9b9879d1e4b57c546ba35131ba3c28fd
a7b63d331e09518150e6d9eff0c1d80928185ed0734cf1992af7df0021b6886f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88cefb6f-1c5c-4b01-a9b7-a36abdbbc20c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10497
x-amzn-requestid: 3bc349ba-7da8-48c8-aa90-2c48c93a023d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEG8mIAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-08e751fc7f0eacb43fc92712;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f8-pNhxDbAcrbORfT71Y_XAXV3C6Je_9Zi5auLlRNyl7zSRB1_9VzA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 04:30:08 GMT
age: 63541
etag: "1c80645a9b9879d1e4b57c546ba35131ba3c28fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 21:54:37 GMT
age: 872
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
143.204.42.157200 OK 43 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
IP 143.204.42.157:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /public/blank.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Date: Thu, 19 Jan 2023 01:46:36 GMT
Last-Modified: Sat, 12 Apr 2014 01:42:38 GMT
ETag: "f837aa60b6fe83458f790db60d529fc9"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lJMrAP1HjUNlq82CQJUH20YoAArQPASNxDeS8TcyRsV2NgLxuB121w==
Age: 73355
d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
143.204.42.157200 OK 49 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
IP 143.204.42.157:0
File type GIF image data, version 89a, 144 x 144\012- data
Hash ceb150ad0df5017df3c4f3599cd61779
e61e9bbd8a97d9b544b131e0340e371b9f9bf2d8
216a694fc417dce27076f118e45ca73ead42a1be5004a8550eeca3e99af3ea02
GET /public/loading_images/large-loader.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 48903
Connection: keep-alive
Last-Modified: Mon, 23 May 2016 23:39:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 05:19:07 GMT
ETag: "ceb150ad0df5017df3c4f3599cd61779"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RTkeQArStR3wkxuoNEXUXeR8aI8EkS4bSfEgzZQ0GvNCQ0IyeWD1jA==
Age: 73383
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 77ba215f7c10eef45505d5e5bb62350e
7c463b4784634a38641be5a9aadd97b53eee1e62
9116a8e43cd7fdf6a4841590849218ab1336b41f5a85125a543afd0c6e9d7640
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
143.204.42.157200 OK 2.4 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
IP 143.204.42.157:0
File type PNG image data, 207 x 40, 8-bit colormap, non-interlaced\012- data
Hash 0b50c78d0f0f86275c8f61c4b205b457
868bea9e3911611556fa257c4f68be3cf9dc91ce
a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19
GET /assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2430
Connection: keep-alive
Server: nginx
Last-Modified: Wed, 06 Jul 2022 19:07:24 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
Date: Thu, 19 Jan 2023 07:38:09 GMT
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MfISbbt1cD0P5mkpWtvGIlZNNHBcV9BELAn4p7_JWmz7dtFj-eDX-Q==
Age: 52655
docsend.com/favicon-196x196.png
3.220.57.224200 OK 4.1 kB URL HTTP/1.1 docsend.com/favicon-196x196.png
IP 3.220.57.224:0
File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data
Hash 6664c3890e329c7609151e0081f5e7cb
6216d5de79d8b245676a86f8b862880837345e2a
8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568
GET /favicon-196x196.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:10 GMT
Content-Type: image/png
Content-Length: 4131
Last-Modified: Thu, 19 Jan 2023 20:10:30 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
www.dropbox.com/csp_log?policy_name=docsend
162.125.71.18204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP 162.125.71.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-R6tW17MdQz578GomYDfg' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-R6tW17MdQz578GomYDfg' 'nonce-CYeTM/UUSEZ3qE+JNrxp'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MzI1NzQ5OTUzNDMzMDcxNzc4Mjg0MTIxNzM0NDczMzc4NDQ3Nzk1; expires=Tue, 18 Jan 2028 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=c6vPAyhf-FGq4PdR9CPec8JI; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=c6vPAyhf-FGq4PdR9CPec8JI; expires=Sun, 18 Jan 2026 22:09:10 GMT; Path=/; SameSite=None; Secure
__Host-ss=Iq2vmVN05c; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 22:09:10 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 22:09:09 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 8b1137427e124ca4b7ae9115ce29ef1a
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
162.125.71.18204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP 162.125.71.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3995
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-S/TYAdnSvNn9CK1hce1K' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-S/TYAdnSvNn9CK1hce1K' 'nonce-s2BlpGhDzs7GUqdkotqs'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTIzODc3NjYzNTk0NDQ1Nzc3ODQxMzAyMTg1MzEzNzQ4MjAzNjY4; expires=Tue, 18 Jan 2028 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=KQ8vo3ukBwkxMSKsQhl28q2x; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=KQ8vo3ukBwkxMSKsQhl28q2x; expires=Sun, 18 Jan 2026 22:09:10 GMT; Path=/; SameSite=None; Secure
__Host-ss=BHR78cLDDs; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 22:09:10 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 22:09:10 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 0033a653542b40138647059967b7be62
X-Firefox-Spdy: h2
d5doxliz2zm8u.cloudfront.net/packs/media/preso/stats-page-background-1e262cd3.png
54.230.245.180200 OK 41 kB URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/packs/media/preso/stats-page-background-1e262cd3.png
IP 54.230.245.180:0
File type PNG image data, 550 x 490, 8-bit colormap, non-interlaced\012- data
Hash 4e39837566ec7d68160eef6af1d2bc11
b8046a7413e42c708b24c7eed5366c2d6d91829d
2bd40acd16e9487ad24ac742b315be386ddf74e823943f93265bae785aaf5867
GET /packs/media/preso/stats-page-background-1e262cd3.png HTTP/1.1
Host: d5doxliz2zm8u.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 41139
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 03:16:53 GMT
Last-Modified: Thu, 19 Jan 2023 00:17:46 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gzpYIa578-EG6sS3YnYVbjGbaJ3w2x25RykCrOLHb8QEUISeOqY1Xg==
Age: 67937
docsend.com/favicon-16x16.png
3.220.57.224200 OK 393 B URL HTTP/1.1 docsend.com/favicon-16x16.png
IP 3.220.57.224:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a8c678babc40c4ac6d8c70fc560094d4
66002c0719ddbd75c837f5a939689ea6df13b6dc
a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1
GET /favicon-16x16.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:10 GMT
Content-Type: image/png
Content-Length: 393
Last-Modified: Thu, 19 Jan 2023 20:10:30 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
lh6.googleusercontent.com/-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg
142.250.74.129200 OK 2.0 kB URL HTTP/2 lh6.googleusercontent.com/-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg
IP 142.250.74.129:0
File type PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced\012- data
Hash 9aa5f84c7bd72248d7e4ca9b420bf092
b6532a3bfc330c5ed8d0ffc8509cebbc354b215a
393feddec6129d8f5609b8839ddcacb886106e991f40ac7ce40ca3ace47ad88f
GET /-FJaV9KrFdg0/AAAAAAAAAAI/AAAAAAAAAAA/AKF05nCLfZclrZ0rzr7ZEmG-m0aBP-z1Bw/photo.jpg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 20 Jan 2023 22:09:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 19 Jan 2023 22:09:10 GMT
server: fife
content-length: 2036
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
docsend.com/metrics/events
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------14469544326792107804161451078
Content-Length: 788
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:10 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-WtlZH1rlMIi8w3ImatIThA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 52c7717f-24c2-4d74-96f1-6b78718abe2c
X-Runtime: 0.014302
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
widget.intercom.io/widget/lv6lji7h
54.230.111.53200 OK 6.2 kB URL HTTP/2 widget.intercom.io/widget/lv6lji7h
IP 54.230.111.53:0
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash a181a2fd73937b485317fb703e9a55e5
f896e6d21d695a1d4f4cb0c07a26e92dfffcacac
8ec5dde39166f229fd823162c63794c97e02985b226b0fb79f82cc38fdd36caf
GET /widget/lv6lji7h HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6171
last-modified: Thu, 19 Jan 2023 16:03:45 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 4Xc4PieA439pKjvA97gQDkw3ASWR_oDZ
accept-ranges: bytes
server: AmazonS3
date: Thu, 19 Jan 2023 22:02:56 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "a181a2fd73937b485317fb703e9a55e5"
x-cache: Error from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VOkiV9DrYR8CUa_aHCdCGemOTJJB02ub3v_6zcVSlSsOMxXQk4mKGQ==
age: 392
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false
143.204.55.85200 OK 854 B URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false
IP 143.204.55.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash dc63fb23d6563676b3090bae3f02ccde
dd6c4202705f760dd5744caee7ccb31f703fc880
c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1
GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1
Host: consent.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Cookie: t=lLo5wbp3ohtDvoq-PFoYZwr7; locale=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 854
date: Thu, 19 Jan 2023 03:42:56 GMT
last-modified: Tue, 06 Sep 2022 19:00:36 GMT
x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ
etag: "dc63fb23d6563676b3090bae3f02ccde"
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S62kywVoac1lTPLlAJWE1wdshSPrc7BxS-v5cvUfsGyboOkoqCBeGw==
age: 66375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 77ba215f7c10eef45505d5e5bb62350e
7c463b4784634a38641be5a9aadd97b53eee1e62
9116a8e43cd7fdf6a4841590849218ab1336b41f5a85125a543afd0c6e9d7640
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 19 Jan 2023 22:09:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
docsend.com/metrics/events
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------170077387720722369414264698793
Content-Length: 1088
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:10 GMT
X-Frame-Options: DENY
Cache-Control: no-cache
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-GjEoWfgCte712VQgw17hUg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 6dc35e61-b4f0-4098-a61a-6f725e99b8a3
X-Runtime: 0.024059
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
docsend.com/view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 712 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash e052c52cd1a01a26fb83a7d52aced298
e7baaea8ae570a914b5a196d5a6a053ba727b4b6
cc17c08c896b98079c2a37983fd1303c760eead59b25a36d039ad13ef5f474ac
GET /view/ixrtsfq6baghdvci/page_data/1?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=E430d9e9AWTTNvG8BYtk%2BlyEjZH34v8jjOxpl1k5gaS31XdqAUoXuoaEDKF61KmaiO0tE7K7jwvj4whX6HQ4ywvH4IJkm%2Fony2sIzRw%3D--Zgq%2FdLToFKsojYqy--L55%2FBc4zToHVbUnpz9oE5g%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:10 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"5b77b7712bcfaade081ba97ad2559087"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-4GTJxbEvKEUGowrI+KsF0g=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=6MRQ6C2y%2FrzLk8%2BS42PTxFWMe07ZT5JlKwyDabpxtt172jutEI0ZD0jUT8VGCOhYAQt5yo%2FJsQVirTW%2Bu7aYa%2F7QAEW6CvQbsDAQaz4%3D--jJMR3vnuIUMPS%2FwF--FAC%2FYZhq8aGpA1dONdEsMQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:10 GMT; SameSite=None; secure
X-Request-Id: a7dab357-d0b7-423d-b536-a967d04c3aa5
X-Runtime: 0.092153
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
js.intercomcdn.com/frame.fdff5ed4.js
54.230.111.33200 OK 139 kB URL HTTP/2 js.intercomcdn.com/frame.fdff5ed4.js
IP 54.230.111.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 139 kB (139146 bytes)
Hash 8b54b7c79b483c57602803dbe348ce17
980009d6bc66935f73f69f69d653e18fc03f85b2
d083d789553cfb81a7a59cb15b1459c37f6c3ce412d2ccf0c7dc04a4ab91db79
GET /frame.fdff5ed4.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 139146
date: Thu, 19 Jan 2023 22:00:20 GMT
last-modified: Thu, 19 Jan 2023 16:02:02 GMT
etag: "8b54b7c79b483c57602803dbe348ce17"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, s-maxage=7200, public
content-encoding: gzip
x-amz-version-id: 6VjfCpHXjfgYh2w.B08iE1pNWE1QD2Cx
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: g4HIhX3k1x80wdc_m6AdtzPIUJYtNZvyQ6mFzfA1NXYQ2LOhmVHuXw==
age: 531
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1fb7f7233720ccad96cd0c6484734b2a
670b948a5c133649a30517d1d2f1808a4150c259
bbd47928ebce3027eef295f6a709c8682facec574720d1a1a0f98a0ca6e1dd5a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 19 Jan 2023 22:09:10 GMT
Last-Modified: Thu, 19 Jan 2023 21:01:45 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QzKZHkI1VVPgGPR1-hiYrTdGLiV3kbZ0BvfT6RkyXldBQPrCUHv7Mw==
Age: 4045
d.dropbox.com/crashdash/proxy/sessions
162.125.8.20200 OK 0 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP 162.125.8.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://docsend.com/
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
content-length: 0
date: Thu, 19 Jan 2023 22:09:10 GMT
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 6c57152d176141e09b576bc18c196371
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 985820f1b47b9581285c5acfe379053b
e7bb1300870ce56ca56b7be699a57e894ac77211
ab81de1d4c3d2ccccbe51ac413209947443d7c2c78c4be31d67d16b7ee97e77d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 19 Jan 2023 22:09:10 GMT
Last-Modified: Thu, 19 Jan 2023 20:26:36 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kw_N-j_EISdUwgR0bgl2w7AAf4imMERmTlY_RkhDi7vyHc8BolWCMA==
Age: 6155
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674166210&Signature=adc~uBqkojM96tu0cEofG5AxiNvLPEjPzZIDwkzg0KrrjOmYCSNGjA5U331OI8QfN4bPRysqkTcMN0IQRTQiy2PqtogdMyvJrIcNbJfbEvHlXk2prWkk~jndaWOGcfJZGtpI6zSqe3PlqVAp-caeZG8dC6jhYRBiZdV8ImgCRIPN04DIEob05WfyMREhLOn4lBhd1CWCud-pgx7q9grkH~AJC6HQvXVZ1H25v8sjFRXuWT5dcBPZ0j6~AjKW5DK1TkgsyWXAO1wmTquwLFE~gA7lkhb2LUqFUYCM2rrLKP8PHjd1Cm7B9bmWNfgBfRBtxEtJfWzFza45NM~Jg8RMIw__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 558 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674166210&Signature=adc~uBqkojM96tu0cEofG5AxiNvLPEjPzZIDwkzg0KrrjOmYCSNGjA5U331OI8QfN4bPRysqkTcMN0IQRTQiy2PqtogdMyvJrIcNbJfbEvHlXk2prWkk~jndaWOGcfJZGtpI6zSqe3PlqVAp-caeZG8dC6jhYRBiZdV8ImgCRIPN04DIEob05WfyMREhLOn4lBhd1CWCud-pgx7q9grkH~AJC6HQvXVZ1H25v8sjFRXuWT5dcBPZ0j6~AjKW5DK1TkgsyWXAO1wmTquwLFE~gA7lkhb2LUqFUYCM2rrLKP8PHjd1Cm7B9bmWNfgBfRBtxEtJfWzFza45NM~Jg8RMIw__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type PNG image data, 2956 x 1663, 8-bit/color RGBA, non-interlaced\012- data
Size 558 kB (557691 bytes)
Hash 003acbdbe3f09e810cc8b9778e6ecb7e
ad788bd9756835db33c54f900b420440ca5c45fb
9dbd2094f21b6e95699fb406db154e8a51afd12410fd78acace3d4426500631d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F1?Expires=1674166210&Signature=adc~uBqkojM96tu0cEofG5AxiNvLPEjPzZIDwkzg0KrrjOmYCSNGjA5U331OI8QfN4bPRysqkTcMN0IQRTQiy2PqtogdMyvJrIcNbJfbEvHlXk2prWkk~jndaWOGcfJZGtpI6zSqe3PlqVAp-caeZG8dC6jhYRBiZdV8ImgCRIPN04DIEob05WfyMREhLOn4lBhd1CWCud-pgx7q9grkH~AJC6HQvXVZ1H25v8sjFRXuWT5dcBPZ0j6~AjKW5DK1TkgsyWXAO1wmTquwLFE~gA7lkhb2LUqFUYCM2rrLKP8PHjd1Cm7B9bmWNfgBfRBtxEtJfWzFza45NM~Jg8RMIw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 557691
Connection: keep-alive
Date: Thu, 19 Jan 2023 20:26:16 GMT
Last-Modified: Fri, 06 Jan 2023 02:21:03 GMT
ETag: "003acbdbe3f09e810cc8b9778e6ecb7e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pOj9q8xGoULEgVHF0pBRJsko9AV9bEOhEzrkmv_oRpfZhg-Y3gEf3A==
Age: 6175
d.dropbox.com/crashdash/proxy/sessions
162.125.8.20202 Accepted 21 B URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions
IP 162.125.8.20:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST /crashdash/proxy/sessions HTTP/1.1
Host: d.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2023-01-19T22:09:08.692Z
Content-Length: 465
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
bugsnag-session-uuid: 6afd51ac-1e8c-4ac3-9f8c-4a199f21acb6
content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none'
content-type: application/json
date: Thu, 19 Jan 2023 22:09:10 GMT
referrer-policy: strict-origin-when-cross-origin
via: 1.1 google
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 21
server: envoy
x-dropbox-response-origin: far_remote
x-dropbox-request-id: c572680746214a11aabaff23ad78dee0
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/evidon-sitenotice-tag.js
104.88.23.136200 OK 20 kB URL HTTP/2 c.evidon.com/sitenotice/evidon-sitenotice-tag.js
IP 104.88.23.136:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3b00a7ecdaf4bff1751456e89ce005f4
2645658a488474676e934af157bf2164f8edeb6b
b8fb30b4d1bdb4738bf563d499929ccdadda6a489d88faf959f40166268ed300
GET /sitenotice/evidon-sitenotice-tag.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "b9539a2e77d15a946ad29fbada55c14c:1671558610.191575"
last-modified: Tue, 20 Dec 2022 17:50:10 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 22:09:10 GMT
date: Thu, 19 Jan 2023 22:09:10 GMT
content-length: 19598
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/translations/en.js
104.88.23.136200 OK 6.4 kB URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js
IP 104.88.23.136:0
File type ASCII text, with very long lines (41349), with no line terminators
Hash 7cdb0408336768c3c8697de7fe062fed
455d1237f3256aba83c5102b10212f8bc767bf22
f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece
GET /sitenotice/3401/translations/en.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772"
last-modified: Tue, 04 Oct 2022 16:06:31 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 22:09:10 GMT
date: Thu, 19 Jan 2023 22:09:10 GMT
content-length: 6406
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/snthemes.js
104.88.23.136200 OK 37 kB URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js
IP 104.88.23.136:0
Hash 5c9b8a13c492ca33feb0fd3db09ff77f
081f4cfc8ac6a9b4b31610ded2a07deb14449fb2
4632dfccd797b15a6573fec3742c5ab024303697b23d43acbac5f5e6102f9700
GET /sitenotice/3401/snthemes.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398"
last-modified: Fri, 29 Jul 2022 21:56:25 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 22:09:10 GMT
date: Thu, 19 Jan 2023 22:09:10 GMT
content-length: 5695
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/dropbox/settings.js
104.88.23.136301 Moved Permanently 0 B URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js
IP 104.88.23.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sitenotice/3401/dropbox/settings.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
date: Thu, 19 Jan 2023 22:09:10 GMT
vary: Origin
cache-control: max-age=432000, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
104.88.23.136200 OK 1.7 kB URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js
IP 104.88.23.136:0
File type ASCII text, with very long lines (5082), with no line terminators
Hash 181b62cb4ca1877b5952d8864d1ddb04
ebae59485369852733c2648e907227b2a7666bc5
425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f
GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043"
last-modified: Tue, 06 Sep 2022 17:34:52 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 22:09:11 GMT
date: Thu, 19 Jan 2023 22:09:11 GMT
content-length: 1691
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
c.evidon.com/sitenotice/evidon-banner.js
104.88.23.136200 OK 3.5 kB URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js
IP 104.88.23.136:0
File type ASCII text, with very long lines (12607), with no line terminators
Hash 304674456118422bd448366f7bb05879
c6549199a4fb419c05a3513238a89002307034b9
29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068
GET /sitenotice/evidon-banner.js HTTP/1.1
Host: c.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236"
last-modified: Tue, 20 Dec 2022 17:50:10 GMT
server: AkamaiNetStorage
content-encoding: gzip
expires: Sat, 21 Jan 2023 22:09:11 GMT
date: Thu, 19 Jan 2023 22:09:11 GMT
content-length: 3535
vary: Accept-Encoding, Origin
cache-control: max-age=172800, private;max-age=86400
access-control-max-age: 108000
access-control-allow-origin:
access-control-allow-headers: *
access-control-allow-methods: GET,OPTIONS,POST
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
162.125.71.18204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP 162.125.71.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-laNqh8byJ4hyOemCVDsV' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-laNqh8byJ4hyOemCVDsV' 'nonce-hWidycIyec0DLamb325L'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MTE2MzQ4NjM1ODA0ODk1Njg2MTU3MjY3NTkyNjM0OTAzMDMzMTk0; expires=Tue, 18 Jan 2028 22:09:11 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=dw6KkvwYc9e0mgQpJZdY88Am; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:11 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=dw6KkvwYc9e0mgQpJZdY88Am; expires=Sun, 18 Jan 2026 22:09:11 GMT; Path=/; SameSite=None; Secure
__Host-ss=VlYG2AH7TM; expires=Sun, 18 Jan 2026 22:09:11 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 22:09:11 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 22:09:10 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 4c92a415ca9a4a72b8d70a519dbac204
X-Firefox-Spdy: h2
docsend.com/view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 711 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash ac60394212481246bf8eaed5497b1c30
d3230e3f0dd817c6461993fd495b81ecd7c43e31
880699cfec0e7104220c75e7a33354a4a308aeb13b7c07f6e94d580c68f478b5
GET /view/ixrtsfq6baghdvci/page_data/2?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=6MRQ6C2y%2FrzLk8%2BS42PTxFWMe07ZT5JlKwyDabpxtt172jutEI0ZD0jUT8VGCOhYAQt5yo%2FJsQVirTW%2Bu7aYa%2F7QAEW6CvQbsDAQaz4%3D--jJMR3vnuIUMPS%2FwF--FAC%2FYZhq8aGpA1dONdEsMQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:11 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"29971e647a2e902733822b49c302cc41"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-vi8+hTDynku1RDTFLzeZZQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=OJFt9WOnfWtWDDFfMNy3qQsEulQAgqYJ7eIiSNsGt87K0fppxBPuklds8gMIXd2469xgrQnlGMeUQVcne8vbFVAFzdGZb7edUfPR5vE%3D--A7%2BOKMWSnSNBnhpM--T%2B6HAFxav3j%2BTSnu5JImNw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:11 GMT; SameSite=None; secure
X-Request-Id: 1df80a49-eaa1-45fb-b7fa-79b9c5e06b84
X-Runtime: 0.085723
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9fd1472a0e2d9377564688230c55328d
bc016e8087e9d586a9e199802d1517d736d8732c
17882f20e28c2efd2bbacf9043f9cf6121ecd99c433a97a0d657edf0c5178d20
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153334
Date: Thu, 19 Jan 2023 22:09:11 GMT
Etag: "63c959c6-1d7"
Expires: Sat, 21 Jan 2023 16:44:45 GMT
Last-Modified: Thu, 19 Jan 2023 14:55:02 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eO1TYAktRATJF2otWwxbVQjfw65790vkOuBVKvRSJDBXMEMfAdKMfg==
Age: 6583
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 9fd1472a0e2d9377564688230c55328d
bc016e8087e9d586a9e199802d1517d736d8732c
17882f20e28c2efd2bbacf9043f9cf6121ecd99c433a97a0d657edf0c5178d20
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147261
Date: Thu, 19 Jan 2023 22:09:11 GMT
Etag: "63c959c6-1d7"
Expires: Sat, 21 Jan 2023 15:03:32 GMT
Last-Modified: Thu, 19 Jan 2023 14:55:02 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EyqzyrGtPkC7x4MCyNFzwMPISYEYOfgRGarIUEn5qxNdaDIoVU32Fg==
Age: 510
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674166211&Signature=i7uClgycN3pjRTA7JnWbj5HQgZpfKF3V9XI22ysbohfh2N5feK1FPo9ha4pX2P9ImCuwbb01vjfYsA7~7FGSMIbDzl91s5471fe~mDriVc3QVkMohr0pJYHHYCI3zuXvsKBp5pW2k-1Wl8-u-F8N5u8bjxuJ-7M8RmeoWUoEuYGjrCEIApBnAHq9PVHxYYszj8tbc6Bu7UgfAFnVf22E5CW~NtsXZggKg0yOpQyIGTH9Xv0kTcZsBd3BkVoi5Gi2OtltjrLTr7VhvD4xKLlHpNVqnkuAt-ebs-breV7jH7U5TOJbZKdsS6vUfV-OOXNHyWU~f9MPNm5tEEsVbOfwOw__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 1.2 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674166211&Signature=i7uClgycN3pjRTA7JnWbj5HQgZpfKF3V9XI22ysbohfh2N5feK1FPo9ha4pX2P9ImCuwbb01vjfYsA7~7FGSMIbDzl91s5471fe~mDriVc3QVkMohr0pJYHHYCI3zuXvsKBp5pW2k-1Wl8-u-F8N5u8bjxuJ-7M8RmeoWUoEuYGjrCEIApBnAHq9PVHxYYszj8tbc6Bu7UgfAFnVf22E5CW~NtsXZggKg0yOpQyIGTH9Xv0kTcZsBd3BkVoi5Gi2OtltjrLTr7VhvD4xKLlHpNVqnkuAt-ebs-breV7jH7U5TOJbZKdsS6vUfV-OOXNHyWU~f9MPNm5tEEsVbOfwOw__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 1.2 MB (1154764 bytes)
Hash 0e1c66e07fe70e9da2b26f2a28645ee0
dbdbdb2f9a294deabdea3ab1346031251ea7e6e2
0facf2732250412d5091d78e602e1a35a748d0e00e896fe06b0367b967dfff3d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F2?Expires=1674166211&Signature=i7uClgycN3pjRTA7JnWbj5HQgZpfKF3V9XI22ysbohfh2N5feK1FPo9ha4pX2P9ImCuwbb01vjfYsA7~7FGSMIbDzl91s5471fe~mDriVc3QVkMohr0pJYHHYCI3zuXvsKBp5pW2k-1Wl8-u-F8N5u8bjxuJ-7M8RmeoWUoEuYGjrCEIApBnAHq9PVHxYYszj8tbc6Bu7UgfAFnVf22E5CW~NtsXZggKg0yOpQyIGTH9Xv0kTcZsBd3BkVoi5Gi2OtltjrLTr7VhvD4xKLlHpNVqnkuAt-ebs-breV7jH7U5TOJbZKdsS6vUfV-OOXNHyWU~f9MPNm5tEEsVbOfwOw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 1154764
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 20:26:18 GMT
ETag: "0e1c66e07fe70e9da2b26f2a28645ee0"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5_0zI-BplNz7bEst92J5_EzCAsci2GijZifH6iD4Z4AJaznOUyoImA==
Age: 6174
l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
54.211.248.145204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
IP 54.211.248.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/1/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 22:09:11 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
54.211.248.145204 No Content 0 B URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F
IP 54.211.248.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site/v3/3401/59514/1/4/2/2/104138?consent=0®ulationid=0®ulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1
Host: l.evidon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://consent.dropbox.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 19 Jan 2023 22:09:11 GMT
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
nexus-websocket-a.intercom.io/pubsub/5-pqHDGUK6JLi1f_qjaFZCM9wcrc5oyIq-0t5DCgt248FkvU7yZHPh7ivD2YOP1E78ltnxaGcj1U3z4cXUVTGV43la8VpJNXoebz96?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
34.237.73.95101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-pqHDGUK6JLi1f_qjaFZCM9wcrc5oyIq-0t5DCgt248FkvU7yZHPh7ivD2YOP1E78ltnxaGcj1U3z4cXUVTGV43la8VpJNXoebz96?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP 34.237.73.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-pqHDGUK6JLi1f_qjaFZCM9wcrc5oyIq-0t5DCgt248FkvU7yZHPh7ivD2YOP1E78ltnxaGcj1U3z4cXUVTGV43la8VpJNXoebz96?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://docsend.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uwUVuTMAzQqo9O2basW6Pg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 19 Jan 2023 22:09:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f3ccznmKrXA03CbMaEdLztV7jHo=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
docsend.com/view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 712 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 7242e481c168e728c79fac5c377d9167
b20d852c4d406e0916509e1b1c8b42df365a52fc
273b9806d306900991cf06356b24b7789371ce4f5c12dc9cc3c134c8c0de64fd
GET /view/ixrtsfq6baghdvci/page_data/3?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=OJFt9WOnfWtWDDFfMNy3qQsEulQAgqYJ7eIiSNsGt87K0fppxBPuklds8gMIXd2469xgrQnlGMeUQVcne8vbFVAFzdGZb7edUfPR5vE%3D--A7%2BOKMWSnSNBnhpM--T%2B6HAFxav3j%2BTSnu5JImNw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:12 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"08d9e3f458d3095148cdb8170600c5a4"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-Ll81XVjeFuAblSTSbo5cOw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=aYoOm9Vi9h%2ByfBGcTQ2BtEZcRkQsara%2B6IHsEsgn585jqw49b7R19oMJLY0VR7ELGxFqEksuUIfsbCEdGy6l5S0YO4MpsDkDGeR7CnY%3D--9eZteLlmzXSob2VW--790tbMeTEWIiP%2BBzWWxb9Q%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:11 GMT; SameSite=None; secure
X-Request-Id: 12b8c9ef-0947-4820-9c10-f1a9e2b80347
X-Runtime: 0.044708
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674166211&Signature=YIg3IiZXsL7U1lImZCSD66muGBTD2ZTr-r~dWpO8q5pjZzlmc~gqSvyJT7of7Or2a2OjoWtKaQvIuZqOqMnwnWns8-NCxGqL7Tpzi9zDVNfoMikCpUpr3gw6XxAQdXXZD5WU5luWiJdakX1ckR3qQXG5zMcdptgkf8sQPvvywZWN1xGyd6r5NlaAWe7173AkbiUFqfmjuRPl5qobwXx3ZFbyaRF0N~ksWDfi9tVDkWZ-EqJNmCWH1hqfC6Wll7e4MhnEJ1ooXpU1oDgL-d6xzb-WcnlCYJD-AEMPiybWIYBVGMwEqy9LNqzk~P7ImIuZnjBmfnYv8q3INAlk44tE2w__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 602 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674166211&Signature=YIg3IiZXsL7U1lImZCSD66muGBTD2ZTr-r~dWpO8q5pjZzlmc~gqSvyJT7of7Or2a2OjoWtKaQvIuZqOqMnwnWns8-NCxGqL7Tpzi9zDVNfoMikCpUpr3gw6XxAQdXXZD5WU5luWiJdakX1ckR3qQXG5zMcdptgkf8sQPvvywZWN1xGyd6r5NlaAWe7173AkbiUFqfmjuRPl5qobwXx3ZFbyaRF0N~ksWDfi9tVDkWZ-EqJNmCWH1hqfC6Wll7e4MhnEJ1ooXpU1oDgL-d6xzb-WcnlCYJD-AEMPiybWIYBVGMwEqy9LNqzk~P7ImIuZnjBmfnYv8q3INAlk44tE2w__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 602 kB (601550 bytes)
Hash fbe50b8ffc35187dd12d6f7c622783ca
c21954184d4d4357f327cbfd890f06c874a20c65
d8778558687d46bb546e6bf05b59160bcef763c0c28c0e541907cf9d0ce1de3d
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F3?Expires=1674166211&Signature=YIg3IiZXsL7U1lImZCSD66muGBTD2ZTr-r~dWpO8q5pjZzlmc~gqSvyJT7of7Or2a2OjoWtKaQvIuZqOqMnwnWns8-NCxGqL7Tpzi9zDVNfoMikCpUpr3gw6XxAQdXXZD5WU5luWiJdakX1ckR3qQXG5zMcdptgkf8sQPvvywZWN1xGyd6r5NlaAWe7173AkbiUFqfmjuRPl5qobwXx3ZFbyaRF0N~ksWDfi9tVDkWZ-EqJNmCWH1hqfC6Wll7e4MhnEJ1ooXpU1oDgL-d6xzb-WcnlCYJD-AEMPiybWIYBVGMwEqy9LNqzk~P7ImIuZnjBmfnYv8q3INAlk44tE2w__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 601550
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:03 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 20:26:21 GMT
ETag: "fbe50b8ffc35187dd12d6f7c622783ca"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HmEcXzbdrgzboc4g6HuMJhkOk9q3JGWMo77vabA7mOoUALX7v_ShOg==
Age: 6172
www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
162.125.71.18200 OK 4.4 kB URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
IP 162.125.71.18:0
File type ASCII text, with very long lines (4105)
Hash 2bf70503fbd5e15fc02ec8cfa77e305c
170c4badf3e9d17805b7f16c79a545aa5dad85ac
c675ef06589e4751f8ee503bc07f4500338c26ac68a4ca35a559ade01c6ed021
GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MzQzMjk1OTc4Mjc1NTg0OTMwMzAwOTUxMDE5NTg4OTE3Mjg5NTI%3D; t=lLo5wbp3ohtDvoq-PFoYZwr7; __Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; locale=en; __Host-logged-out-session=ChBSn3MwvUGpdftM9rK%2FYwfREIX%2Fpp4GGi5BRmk2bERra0I4aEFDekJoZ3FoNjRKcTg1clVhTGk0ZVVubVVYNUhReVNGclRn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-cache, no-store
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-THlqEQ+UervOY4XdqVBe' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-THlqEQ+UervOY4XdqVBe' 'nonce-N53x/EUz+Xm+/bOfifuY'
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=lLo5wbp3ohtDvoq-PFoYZwr7; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; expires=Sun, 18 Jan 2026 22:09:10 GMT; Path=/; SameSite=None; Secure
__Host-ss=fc2jXlUmiw; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-server-response-time: 34
x-xss-protection: 1; mode=block
content-type: text/javascript; charset=UTF-8
date: Thu, 19 Jan 2023 22:09:10 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 361129b886bd49079c4a6282c75037bc
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
52.22.156.216200 OK 532 kB URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP 52.22.156.216:0
Size 532 kB (532274 bytes)
Hash 460c232076063a6c42700dda2068fd18
05653e90163c4900747d84cc24934cb61c14b253
9b3e5510d65675c0df40a67bfdb9447a94d64198eecfc7c52a49e0220158e6c5
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 354
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 22:09:11 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1674166160
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13325
access-control-allow-origin: https://docsend.com
vary: Accept,Accept-Encoding
x-intercom-version: 05a7d2d26731522c0444882e6e063d5b21f8d84c
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 00056trmvic561q6oksg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"a9eb413aab80e77a02fdde4ac3af04b2"
x-runtime: 0.375127
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0705273452fc644ba
X-Firefox-Spdy: h2
www.dropbox.com/csp_log?policy_name=docsend
162.125.71.18204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP 162.125.71.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 4028
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-86xvIac4uZ5J1SSsquXY' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-86xvIac4uZ5J1SSsquXY' 'nonce-7MIX/1GANmCaH/Jd3X14'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=Mjk3MDU3NjIwMDMwMTQ3NzcxNTU4NTkxNzU4NDEwNTQ0MTQyNTQ5; expires=Tue, 18 Jan 2028 22:09:13 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=ASdQ6WSTvSaTNf4Oc_-3XKfH; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:13 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=ASdQ6WSTvSaTNf4Oc_-3XKfH; expires=Sun, 18 Jan 2026 22:09:13 GMT; Path=/; SameSite=None; Secure
__Host-ss=SMwFoxB3bo; expires=Sun, 18 Jan 2026 22:09:13 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 22:09:13 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 19 Jan 2023 22:09:13 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: e5ffba3e1c114de590e45d044d82f0a7
X-Firefox-Spdy: h2
docsend.com/view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 709 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash f754cb4a8e2dd6ad3520fb66ecc8510e
9100416ffe540d7368695b04abb6e6c48875f031
04931fc7bd0293e5057d6466e63c3610923b51d5026cd377b73e8f836faaaade
GET /view/ixrtsfq6baghdvci/page_data/5?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=7Z%2FSH38fokqYmnd02VRey2yOzOLKBL1rSw7%2F4lezkIe2FOd9w7gGLWxlkUojIKILMP%2FtFhTvwHBIwHsdxEiyh0z%2F0P%2FpG6agfrbAkYI%3D--wlL1a3BGIoMuHUYf--fUSagglEHy8fr0z35m9gtg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:13 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"2c23fd3517f8a95045c6e4c4798a80b9"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-1DaApx8FEc1sKfP6S3GkPg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=dNM1FpEKhBRqV5bJtVfvfAR%2Bb70dD%2FxWVNWn000oHDMaSbN15H5KEhTcrpIWKC1jM8vevQJw42zbhvm5QbO7y1cG7nON5K07GbUJ9QI%3D--wDi4Ilt5ycQu623r--rJlG8pqTmX3jKa6iKqHeAQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:13 GMT; SameSite=None; secure
X-Request-Id: 62cf7f49-b627-4e8d-82a9-5cf5ce14eec0
X-Runtime: 0.053652
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674166213&Signature=kvU0~5kf7MsSpL18F8p-5srna90cxuf7bSygbAh6ggFXa2CLrKLQU78k5y~uMHYO~QEOJ-dKQdslQdr--1frOpsCl9YggVcRV1GdIJK2E9PPjAadz5Jdwqc-HUUec2FcIU17-6rmqXMmdzJk4F8traqzQLtFQ52hggPxa47Rm-5mX~zmDeFElb03J1uRG5s9Xf2Ilt5heKj93cw1977h84M0Jra02eqUBzwJlmC5rAqknGj26YeAYoriKu0m6zNVbaejQFoWJ45BX7CXFxuNIQhK8L0B7p9ZpsDFJbQp33hXBXAtMxD9C923qePh~elEpMOD5OtUa8SpEHGHCtbHSQ__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 541 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674166213&Signature=kvU0~5kf7MsSpL18F8p-5srna90cxuf7bSygbAh6ggFXa2CLrKLQU78k5y~uMHYO~QEOJ-dKQdslQdr--1frOpsCl9YggVcRV1GdIJK2E9PPjAadz5Jdwqc-HUUec2FcIU17-6rmqXMmdzJk4F8traqzQLtFQ52hggPxa47Rm-5mX~zmDeFElb03J1uRG5s9Xf2Ilt5heKj93cw1977h84M0Jra02eqUBzwJlmC5rAqknGj26YeAYoriKu0m6zNVbaejQFoWJ45BX7CXFxuNIQhK8L0B7p9ZpsDFJbQp33hXBXAtMxD9C923qePh~elEpMOD5OtUa8SpEHGHCtbHSQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 541 kB (540978 bytes)
Hash bc3fff50f29cbec29fea37f2cdc7fda0
e29dd7630651a2124a44c4223fbaffce5802632b
3c030f249bb52a77595fc14e994cfb3a827a744592160316bcff17697d97aa8a
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F5?Expires=1674166213&Signature=kvU0~5kf7MsSpL18F8p-5srna90cxuf7bSygbAh6ggFXa2CLrKLQU78k5y~uMHYO~QEOJ-dKQdslQdr--1frOpsCl9YggVcRV1GdIJK2E9PPjAadz5Jdwqc-HUUec2FcIU17-6rmqXMmdzJk4F8traqzQLtFQ52hggPxa47Rm-5mX~zmDeFElb03J1uRG5s9Xf2Ilt5heKj93cw1977h84M0Jra02eqUBzwJlmC5rAqknGj26YeAYoriKu0m6zNVbaejQFoWJ45BX7CXFxuNIQhK8L0B7p9ZpsDFJbQp33hXBXAtMxD9C923qePh~elEpMOD5OtUa8SpEHGHCtbHSQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 540978
Connection: keep-alive
Date: Thu, 19 Jan 2023 20:26:25 GMT
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
ETag: "bc3fff50f29cbec29fea37f2cdc7fda0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ciMxzSkFFWt_LcGc2bvDHSN5UuxkG2i9nCHAADBDYEm_QP_MDrcFMg==
Age: 6169
docsend.com/view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 712 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 76ec4fc75334abf9c3bccc86161e134b
18db983641d11b97b2042eff2fd49c0f19480624
5e8024c5ae378475c821f11ff7353185653fc6b9d016e8599d3dc0d4d91e84a8
GET /view/ixrtsfq6baghdvci/page_data/6?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=dNM1FpEKhBRqV5bJtVfvfAR%2Bb70dD%2FxWVNWn000oHDMaSbN15H5KEhTcrpIWKC1jM8vevQJw42zbhvm5QbO7y1cG7nON5K07GbUJ9QI%3D--wDi4Ilt5ycQu623r--rJlG8pqTmX3jKa6iKqHeAQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"f17f60b6f602604df5ba55cb662d7a7f"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-RDyoUWGAu+IN1n8G1nBUig=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=hG3qQUBQ1rkNDPDPsjcMwqtNX%2BWSEcYePYF%2BsWOHZtri3eB7x%2FVUt7JU%2B5nuL6GomNRL5o%2BeQkjnZ1n0el%2BkJLO21nODdk8Q77ppwQQ%3D--SFhNvdooKQq2OU%2Fs--0Q7Dc7BUTBBn4WuximyUYA%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:14 GMT; SameSite=None; secure
X-Request-Id: 630b4e54-7cd9-4afa-9db3-a3c6a898cd5d
X-Runtime: 0.046950
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674166214&Signature=WIK1hhqPuSptOgSw9ZPdCZtlL~F4AU3gJW9M6AKQj2~vxeRu-Kd~NaZCsOyC-GRw-et6ro~N8Tj9mHYLe6UmiSDMIGQb3tE~hHgwW4Lrv92q2dyAVK81d3XQKqayPPOvaakIjmxSWdVQI6zT0pdNj6WCHibJmemPZ9eJGSEgW4C-NhOy9A0vtYMrQOqfTwPW8vxyqYuO5gAaauXw6av8IK3q71g3sCQv1KnQTY28kZa1QtrfCoYVo74vkyyOLNkOivX1SJ0Bg4WJRUv6477AVTwEinpdPUwlOA~qCujc4e9SpdgG7OnooFfY6JZNoIjxItwMxisCsYRZJ9lGjPmNug__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 824 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674166214&Signature=WIK1hhqPuSptOgSw9ZPdCZtlL~F4AU3gJW9M6AKQj2~vxeRu-Kd~NaZCsOyC-GRw-et6ro~N8Tj9mHYLe6UmiSDMIGQb3tE~hHgwW4Lrv92q2dyAVK81d3XQKqayPPOvaakIjmxSWdVQI6zT0pdNj6WCHibJmemPZ9eJGSEgW4C-NhOy9A0vtYMrQOqfTwPW8vxyqYuO5gAaauXw6av8IK3q71g3sCQv1KnQTY28kZa1QtrfCoYVo74vkyyOLNkOivX1SJ0Bg4WJRUv6477AVTwEinpdPUwlOA~qCujc4e9SpdgG7OnooFfY6JZNoIjxItwMxisCsYRZJ9lGjPmNug__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 824 kB (824076 bytes)
Hash 2c8c6164dec2c1ce2c7c76665b109f46
9032a9e778077b8741d46dcb0aaa6f1f5cbfd265
e9d2d29b863fac2a46d3a45ba6df1c55b2dd53f5f212d1c4f85177180791476e
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F6?Expires=1674166214&Signature=WIK1hhqPuSptOgSw9ZPdCZtlL~F4AU3gJW9M6AKQj2~vxeRu-Kd~NaZCsOyC-GRw-et6ro~N8Tj9mHYLe6UmiSDMIGQb3tE~hHgwW4Lrv92q2dyAVK81d3XQKqayPPOvaakIjmxSWdVQI6zT0pdNj6WCHibJmemPZ9eJGSEgW4C-NhOy9A0vtYMrQOqfTwPW8vxyqYuO5gAaauXw6av8IK3q71g3sCQv1KnQTY28kZa1QtrfCoYVo74vkyyOLNkOivX1SJ0Bg4WJRUv6477AVTwEinpdPUwlOA~qCujc4e9SpdgG7OnooFfY6JZNoIjxItwMxisCsYRZJ9lGjPmNug__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 824076
Connection: keep-alive
Date: Thu, 19 Jan 2023 20:26:27 GMT
Last-Modified: Fri, 06 Jan 2023 02:21:04 GMT
ETag: "2c8c6164dec2c1ce2c7c76665b109f46"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JFlA9QeXvtZyuECWy-BvzEE6zMRr_NPXzVxcf980nNbhz-CeFnKqog==
Age: 6168
docsend.com/view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 709 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 7355b8c3b36d8be3e80d1fe48d3bc294
8f85d8b31ad307557b75a0a85a46b301330fcc49
9a5b256add8f2d6bd0550e69c123dc9ebc662b7f66edd5d311952150fceab9e1
GET /view/ixrtsfq6baghdvci/page_data/7?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=hG3qQUBQ1rkNDPDPsjcMwqtNX%2BWSEcYePYF%2BsWOHZtri3eB7x%2FVUt7JU%2B5nuL6GomNRL5o%2BeQkjnZ1n0el%2BkJLO21nODdk8Q77ppwQQ%3D--SFhNvdooKQq2OU%2Fs--0Q7Dc7BUTBBn4WuximyUYA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"1272b4703bdab4063c37e056e56b2b5f"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-MVh0Nxbs1Oa7GCsoEYeekQ=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=pHjxVgo%2Bo6Q0ey%2BppQmb0NWXhWm6dA0mGuaLlWjf14aesvTlEs7u0h%2BjLsG4V2peSkD5LsB6TWblidkI3MMt1oD7%2Bw9Ve6Y6zrm24nQ%3D--bTM1FBpazHk3mmxH--Qsbp0H4sfELE2Z%2BEUpU22A%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:14 GMT; SameSite=None; secure
X-Request-Id: b509fb57-b973-48e9-ae5d-becfd360a589
X-Runtime: 0.066032
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674166214&Signature=S8MJJdUv7uKPl4sla0wx03iAaQIuv8QN2AQzubPV5FktPQS3FUFyxBFBv2XK76lc2VyyyrNReaL4LDoMRoUQEzEzm7uyj9JFy~BGAu8T5wN7RlH2u6-u4QxzGJHRyTZwR5AcfSoUHXJTs6V8vYeOm67~NmUuj8bIqs2apxemWUsPbaoHNP6MtGqwFKtN9CaJffN2dKybuJ0gUcTmnkRoSwkvuf60EtupIAJsWBMQ3lya~PPbn8H7NScfQNGuvAd-YhoZ~MJMhN~XImBk1cnAEilQBloe-2unGUN8dxjYb9AhZAsmbJ8asJEaNyD27idynitSr3fsCq-LqutL0w7mqA__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 706 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674166214&Signature=S8MJJdUv7uKPl4sla0wx03iAaQIuv8QN2AQzubPV5FktPQS3FUFyxBFBv2XK76lc2VyyyrNReaL4LDoMRoUQEzEzm7uyj9JFy~BGAu8T5wN7RlH2u6-u4QxzGJHRyTZwR5AcfSoUHXJTs6V8vYeOm67~NmUuj8bIqs2apxemWUsPbaoHNP6MtGqwFKtN9CaJffN2dKybuJ0gUcTmnkRoSwkvuf60EtupIAJsWBMQ3lya~PPbn8H7NScfQNGuvAd-YhoZ~MJMhN~XImBk1cnAEilQBloe-2unGUN8dxjYb9AhZAsmbJ8asJEaNyD27idynitSr3fsCq-LqutL0w7mqA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 706 kB (705588 bytes)
Hash 784dde450901f1c1f6591a236095d052
2c898a4259afcd8edc3dc5717909e938a09234a4
958577bb0e02c19c7da68abde8de1889af091d9ab63cc5d87e2ee1bff16e8828
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F7?Expires=1674166214&Signature=S8MJJdUv7uKPl4sla0wx03iAaQIuv8QN2AQzubPV5FktPQS3FUFyxBFBv2XK76lc2VyyyrNReaL4LDoMRoUQEzEzm7uyj9JFy~BGAu8T5wN7RlH2u6-u4QxzGJHRyTZwR5AcfSoUHXJTs6V8vYeOm67~NmUuj8bIqs2apxemWUsPbaoHNP6MtGqwFKtN9CaJffN2dKybuJ0gUcTmnkRoSwkvuf60EtupIAJsWBMQ3lya~PPbn8H7NScfQNGuvAd-YhoZ~MJMhN~XImBk1cnAEilQBloe-2unGUN8dxjYb9AhZAsmbJ8asJEaNyD27idynitSr3fsCq-LqutL0w7mqA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 705588
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 19 Jan 2023 21:30:51 GMT
ETag: "784dde450901f1c1f6591a236095d052"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Lwe5fJl-z3tzM85Vs7H02BSyJ6807ydp2Bn_VDAxKhhyD1Vp3Z3xVg==
Age: 2304
docsend.com/view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 711 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash e7cb1cefafca4cec9a84f2dd1fc6c58b
99c52cedbb821eeccd027198f6f67b66421a229b
08a2ea595abd242bc8316bd9699fe7a305bb9dfcec81f5b1de1bf8af26b56d41
GET /view/ixrtsfq6baghdvci/page_data/8?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=pHjxVgo%2Bo6Q0ey%2BppQmb0NWXhWm6dA0mGuaLlWjf14aesvTlEs7u0h%2BjLsG4V2peSkD5LsB6TWblidkI3MMt1oD7%2Bw9Ve6Y6zrm24nQ%3D--bTM1FBpazHk3mmxH--Qsbp0H4sfELE2Z%2BEUpU22A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:15 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"7de433d642b6e10ac9ba663bcad61236"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-MADm6ckQj5wMGkWFATfbZg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=JstbhNbAVq13LgGBZ2ZdBoiG1asV%2B74kRWRMpBljkuA0%2BxURRqVlgXEKqfWD3el%2BG9yWsA%2B0gswGDRrulc5ockuk6E%2BOBV2CXB%2FvzGA%3D--s4ETi%2FxDHX4hQg5%2F--gNAtk%2FrfGWBfhSXEdIjrZg%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:15 GMT; SameSite=None; secure
X-Request-Id: 9b07a3d9-4751-440b-b016-4ee13ea2e9e3
X-Runtime: 0.043968
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F8?Expires=1674166215&Signature=MRC6gsj7AH61fH3lVXCtQ0nNCUdA92aK9VmtsFGVauFTPrZ8YJR0Mc3Xz8QvDrZWo1oPQrhn8LxHn44gUxBMCfEY3bmu5L7ihrq47vNSw76P73XsTszvPheRj-ONOvCrqOVeqPRGHwd6eT17mMotPksHmrBQrrE1-wiYuMJMMCWr7hYqM81PbQDXCsEBZcawR~FziKNbSWG9VWQFLDGuoAgEns4IBGt8vYru5zZ3T31z~JKR77D83cFC2dt0ZLN3OSozXAdVF6XPfm4LgqV4JMh~jQEAFbt1LG-76P04pF9JFisGhEYwt8r5xRn-0fawp7R5cwlQSJ0QfjrKK5-J-w__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 547 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F8?Expires=1674166215&Signature=MRC6gsj7AH61fH3lVXCtQ0nNCUdA92aK9VmtsFGVauFTPrZ8YJR0Mc3Xz8QvDrZWo1oPQrhn8LxHn44gUxBMCfEY3bmu5L7ihrq47vNSw76P73XsTszvPheRj-ONOvCrqOVeqPRGHwd6eT17mMotPksHmrBQrrE1-wiYuMJMMCWr7hYqM81PbQDXCsEBZcawR~FziKNbSWG9VWQFLDGuoAgEns4IBGt8vYru5zZ3T31z~JKR77D83cFC2dt0ZLN3OSozXAdVF6XPfm4LgqV4JMh~jQEAFbt1LG-76P04pF9JFisGhEYwt8r5xRn-0fawp7R5cwlQSJ0QfjrKK5-J-w__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type PNG image data, 2956 x 1663, 8-bit/color RGBA, non-interlaced\012- data
Size 547 kB (546832 bytes)
Hash 606c80613d6cb92d2d455d42613483ce
578d1ecb2593c2b04b225fc601f34e9234f706e6
ce4e89fcfc09dc052d1fe1c1a0b2eec3311df209fa27602753bcb9f008ef457b
GET /docs%2Fee6f62b9-00f1-4083-92b1-7f92fcc2bfc9%2Fv2_images%2F8?Expires=1674166215&Signature=MRC6gsj7AH61fH3lVXCtQ0nNCUdA92aK9VmtsFGVauFTPrZ8YJR0Mc3Xz8QvDrZWo1oPQrhn8LxHn44gUxBMCfEY3bmu5L7ihrq47vNSw76P73XsTszvPheRj-ONOvCrqOVeqPRGHwd6eT17mMotPksHmrBQrrE1-wiYuMJMMCWr7hYqM81PbQDXCsEBZcawR~FziKNbSWG9VWQFLDGuoAgEns4IBGt8vYru5zZ3T31z~JKR77D83cFC2dt0ZLN3OSozXAdVF6XPfm4LgqV4JMh~jQEAFbt1LG-76P04pF9JFisGhEYwt8r5xRn-0fawp7R5cwlQSJ0QfjrKK5-J-w__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 546832
Connection: keep-alive
Date: Thu, 19 Jan 2023 21:30:57 GMT
Last-Modified: Fri, 06 Jan 2023 02:21:05 GMT
ETag: "606c80613d6cb92d2d455d42613483ce"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HPAKiqXKpKmWnovqfFjvDnr_Eo7YJmCZgMrAmY1dibQEytUnYMZOdA==
Age: 2298
docsend.com/view/ixrtsfq6baghdvci/page_data/9?viewLoadTime=1674166148&timezoneOffset=0
3.220.57.224200 OK 708 B URL HTTP/1.1 docsend.com/view/ixrtsfq6baghdvci/page_data/9?viewLoadTime=1674166148&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 701c27cbae498986038a8dc4fda95065
07406d52dc3b138a97755af02825a110c53fe7a2
00283ac4956cc4767ebc8c78011b007750c8654f9cd043de9da3c12b68092812
GET /view/ixrtsfq6baghdvci/page_data/9?viewLoadTime=1674166148&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: SgDXXe+4arzClXvVpkhrw8NaVFcxFz7yAJwGp2zI7wd752wNj8a0ebcWZn5PT7iTrnC3HYmLf5u5jzJW03cu9g==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/ixrtsfq6baghdvci
Cookie: _v_=JstbhNbAVq13LgGBZ2ZdBoiG1asV%2B74kRWRMpBljkuA0%2BxURRqVlgXEKqfWD3el%2BG9yWsA%2B0gswGDRrulc5ockuk6E%2BOBV2CXB%2FvzGA%3D--s4ETi%2FxDHX4hQg5%2F--gNAtk%2FrfGWBfhSXEdIjrZg%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=0e07052a4ae775b9ed1d31ef6b9714d2; __Secure-dbx_consent={"consentType":1,"consentDate":"2023-01-19T22:09:10.715Z","expireDate":"2023-07-19T22:09:10.715Z","consentMonths":6,"categories":{},"userInteracted":false,"numDots":1}; intercom-id-lv6lji7h=ea73ae31-e55d-48fa-88c4-31d721ff98b9; intercom-session-lv6lji7h=; intercom-device-id-lv6lji7h=efea66b0-e84b-40b5-b314-efd41ac40f8e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 19 Jan 2023 22:09:16 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"911d79b874b7137e05ad09fd9eb67d01"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-BB8J59/eLztBzn/Uf4I7Yw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxapi.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=%2B6KEREsEIl5Ne57e3dD0G2Zipit65dlfeMICi4pab%2F7PVRNh3%2F6AWeoZzmfekeDIJ5ay%2BaSdOEsPxViaDOhvb3MerE%2BVnoWffz9pxWE%3D--Y6FYQo1uge8uXtHo--trjwKVkFci6%2FN%2B9VZpBEAQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 19 Jan 2024 22:09:16 GMT; SameSite=None; secure
X-Request-Id: a9ed9c8b-c548-424e-8b7c-16276b0b109e
X-Runtime: 0.044480
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
js.intercomcdn.com/vendor.125a2035.js
54.230.111.33200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.125a2035.js
IP 54.230.111.33:0
GET /vendor.125a2035.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108271
last-modified: Thu, 19 Jan 2023 16:02:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: XOfh_3jVP4CMMF6ZiRQjMzYYkp9O6OvG
accept-ranges: bytes
server: AmazonS3
date: Thu, 19 Jan 2023 21:19:59 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "d7841cf11a784340d6f64aa8956832ee"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lzIRLSOWkArFZqw_qy2QAlD-VkDlZMyb7Uz2BnsXt9ZsAuYrGfLA9A==
age: 2952
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.dropbox.com/pithos/privacy_consent
162.125.71.18307 Temporary Redirect 0 B URL HTTP/2 www.dropbox.com/pithos/privacy_consent
IP 162.125.71.18:0
GET /pithos/privacy_consent HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MzQzMjk1OTc4Mjc1NTg0OTMwMzAwOTUxMDE5NTg4OTE3Mjg5NTI%3D; expires=Tue, 18 Jan 2028 22:09:08 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=lLo5wbp3ohtDvoq-PFoYZwr7; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:08 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; expires=Sun, 18 Jan 2026 22:09:08 GMT; Path=/; SameSite=None; Secure
__Host-ss=fc2jXlUmiw; expires=Sun, 18 Jan 2026 22:09:08 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 18 Jan 2028 22:09:08 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Thu, 19 Jan 2023 22:09:08 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: dacae7fdf2574b89863b897a616c4f11
X-Firefox-Spdy: h2
cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js
104.16.100.29200 OK 0 B URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js
IP 104.16.100.29:0
GET /static/metaserver/static/pithos/privacy_consent.bundle-vflwJFXrU.js HTTP/1.1
Host: cfl.dropboxstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 19 Jan 2023 22:09:09 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Wed, 18 Jan 2023 04:57:33 GMT
x-dropbox-request-id: ec456f95d53725edb88a560cd9b26fca
x-content-type-options: nosniff
x-cached: HIT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
timing-allow-origin: https://www.dropbox.com
cf-cache-status: HIT
age: 104463
server: cloudflare
cf-ray: 78c2e4a19cb80b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dropbox.com/pithos/privacy_consent_service
162.125.71.18307 Temporary Redirect 0 B URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service
IP 162.125.71.18:0
GET /pithos/privacy_consent_service HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.dropbox.com/
Connection: keep-alive
Cookie: gvc=MzQzMjk1OTc4Mjc1NTg0OTMwMzAwOTUxMDE5NTg4OTE3Mjg5NTI%3D; t=lLo5wbp3ohtDvoq-PFoYZwr7; __Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; locale=en; __Host-logged-out-session=ChBSn3MwvUGpdftM9rK%2FYwfREIX%2Fpp4GGi5BRmk2bERra0I4aEFDekJoZ3FoNjRKcTg1clVhTGk0ZVVubVVYNUhReVNGclRn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache,no-cache, no-store
content-security-policy: sandbox
location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service
referrer-policy: strict-origin-when-cross-origin
set-cookie: t=lLo5wbp3ohtDvoq-PFoYZwr7; Domain=dropbox.com; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=lLo5wbp3ohtDvoq-PFoYZwr7; expires=Sun, 18 Jan 2026 22:09:10 GMT; Path=/; SameSite=None; Secure
__Host-ss=fc2jXlUmiw; expires=Sun, 18 Jan 2026 22:09:10 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/html; charset=utf-8
date: Thu, 19 Jan 2023 22:09:10 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: df3868b427d94a2da50906f607dbc1f4
X-Firefox-Spdy: h2