Report - docsend.com/view/rqwdkg55p3cy7bhm

Report Overview

Submitted URL
docsend.com/view/rqwdkg55p3cy7bhm
IP
52.20.78.240
ASN
#14618 AMAZON-AES
Submitted
2023-03-12 16:13:44
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-25T04:18:49Z	341 B	799 B	192.229.221.95
js.intercomcdn.com	2440	2020-02-19T12:43:00Z	2023-03-25T09:41:06Z	735 B	144 kB	54.230.111.84
l.evidon.com	8143	2020-08-25T21:57:20Z	2023-03-25T18:24:30Z	480 B	191 B	34.199.144.120
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-25T05:09:34Z	686 B	1.4 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-24T16:33:49Z	2.7 kB	41 kB	34.120.237.76
widget.intercom.io	2417	2020-07-20T14:16:46Z	2023-03-25T11:05:28Z	365 B	4.0 kB	54.230.111.95
cfl.dropboxstatic.com	13598	2017-01-30T05:53:29Z	2023-03-24T17:29:12Z	420 B	623 B	104.16.100.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-25T05:09:25Z	333 B	391 B	34.117.237.239
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T05:09:02Z	3.0 kB	8.0 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-24T18:14:23Z	782 B	2.4 kB	35.241.9.150
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-25T03:31:21Z	340 B	963 B	172.64.155.188
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-24T18:17:07Z	606 B	127 B	52.40.148.136
www.dropbox.com	1994	2012-05-21T22:31:28Z	2023-03-25T18:12:32Z	4.1 kB	29 kB	162.125.71.18
consent.dropbox.com	27413	2021-06-16T17:13:58Z	2023-03-25T18:24:27Z	667 B	1.4 kB	143.204.55.62
d.dropbox.com	1300	2012-11-25T21:07:07Z	2023-03-25T18:12:49Z	1.1 kB	1.1 kB	162.125.8.20
docsend.com	58938	2014-04-04T12:48:39Z	2023-03-25T03:34:41Z	3.9 kB	24 kB	3.232.242.170
api-iam.intercom.io	2892	2018-08-02T22:07:54Z	2023-03-25T05:12:16Z	944 B	1.9 kB	54.160.56.92
d2qvtfnm75xrxf.cloudfront.net	unknown	2015-07-20T12:03:28Z	2023-03-25T01:55:41Z	2.3 kB	2.3 MB	18.66.242.88
d5doxliz2zm8u.cloudfront.net	unknown	2021-11-04T18:17:10Z	2023-03-25T01:55:41Z	574 B	46 kB	18.66.242.7
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-25T05:09:20Z	1.1 kB	2.9 kB	54.230.80.227
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-25T05:09:20Z	350 B	946 B	108.157.228.227
c.evidon.com	1097	2017-03-09T22:38:50Z	2023-03-24T18:56:20Z	2.3 kB	21 kB	104.88.23.136
nexus-websocket-a.intercom.io	2137	2015-06-26T12:17:57Z	2023-03-25T05:10:04Z	729 B	281 B	35.174.127.31
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-25T00:27:50Z	422 B	630 B	142.250.74.106
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-24T18:20:20Z	413 B	5.9 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-12 16:13:34	high	162.125.71.18	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use
2023-03-12 16:13:35	high	162.125.8.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	docsend.com/view/rqwdkg55p3cy7bhm	777 B	2023-03-07	2024-04-20
Pretty URL docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-20 22:15:48 Times Seen487 Hash eed47e70bb30c26af1d2b05cb6cbb36e a6280e737500da85f94d5dd1b4bcf53e8ab7ebb6 33f828b1c1cc8d01a5365dda26f42257988e5ab755e9d1c9c06c8b650564b612 Loading...

	docsend.com/view/rqwdkg55p3cy7bhm	303 B	2023-03-13	2023-05-22
Pretty URL docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 20:16:17 Last Seen2023-05-22 21:46:59 Times Seen88 Hash c4ba3ed09b1b5daa4f5669df1358fa6f ed09f1f1c6d2f8786e864ef84805732132ada42f 45b6408e534ecfd1ba65fa3d47b9de7614090e311914216653a59f305e94ffce Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflH6FFhl.js	236 kB	2023-03-25	2023-03-26
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflH6FFhl.js IP 104.16.100.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 23:49:22 Last Seen2023-03-26 05:52:00 Times Seen10 Hash 1fa145865191677da2a7829997b32e45 44f9df1f773c118f4dff398e6c0322d0866fc3e0 9ab4fe927e3c0ed47ef9be342cc2f453993a23f5f97acde8e758be0621619430 Loading...

	c.evidon.com/sitenotice/3401/translations/en.js	43 kB	2023-03-14	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:08:30 Last Seen2023-04-02 21:30:47 Times Seen66 Hash 657b6bb22752382cbdc4208cce7687cb b5eca88f80bab534624fbdd43c59522d25ea75bf 85856b6da83b941b434643e4558d1edc658cb46c69063c6aa770c7289ab4fa9b Loading...

	docsend.com/view/rqwdkg55p3cy7bhm	4.1 kB	2023-03-26	2023-03-26
Pretty URL docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:12:14 Last Seen2023-03-26 04:12:14 Times Seen1 Hash 77aa9eb85bcf44ceb6036295fca04dac 64f1efabf722794fc330b90627d4c967a3d49a3a f72c3566884581caf7fefc5d9c9aceaf6d4df00e93b398460254d633b8a5d478 Loading...

	docsend.com/view/rqwdkg55p3cy7bhm	586 B	2023-03-26	2023-03-26
Pretty URL docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:12:14 Last Seen2023-03-26 04:12:14 Times Seen1 Hash 3782b6ecc0c55890ed2974aecf4f0380 f845af5c102430a39d980e81226c76e1f203d0d5 a1ab9a7f3feb8321fc43e44ded774ec7cd77446b007b714c955ea764f3a75697 Loading...

	www.dropbox.com/pithos/privacy_consent_service	13 kB	2023-03-26	2023-03-26
Pretty URL www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:12:14 Last Seen2023-03-26 04:12:14 Times Seen1 Hash cb0dd62652c1af8755001b5231c88976 0581305a526fb975af9b636ad5d97841777f55ee b048d4f9462a0b8f2c491faf74ea89470bfd2a5dbbcbdbd6b3e48f84590a8c16 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 08:00:43 Times Seen37034550 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	569 B	2023-03-07	2023-04-05
Pretty URL consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-04-05 02:11:39 Times Seen83 Hash 61b81b2411a67a89aad55835c4e864f2 623c4e487131583d402815eb75cfced9b694017d 929203495e37db6972ddc172e9664002093c6bb973da2ca7a5001c26d680d2de Loading...

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	75 kB	2023-03-25	2023-03-26
Pretty URL c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 22:33:06 Last Seen2023-03-26 13:12:38 Times Seen54 Hash 67f474b38c27672f31348c6aef233047 e3ae8dee05727849d2acd5964b3ada47a2d0007e 76ae0c41115317e422e9cf9e307a976fe11a1b34d48f51ab72cb91b5fe1ad3d8 Loading...

	c.evidon.com/sitenotice/3401/dropbox/settings.js	5.7 kB	2023-03-14	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:08:30 Last Seen2023-04-02 21:30:46 Times Seen66 Hash dcb013ce5f00abe84675f6343f644539 eaf1302710b93f286a640d04e80d04d67cee8a02 a15aeb744bf1016099ba1d237c3b6940b184ce7de278b87d8caa7e55226a2dd2 Loading...

	c.evidon.com/sitenotice/evidon-banner.js	13 kB	2023-03-09	2023-03-26
Pretty URL c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:10:59 Last Seen2023-03-26 13:12:38 Times Seen50 Hash 953f08dcce4b8af3f743056f673c8514 4e8acdae78b9b5f1c228cb28de23cca6ad5b3c4e f82f137e8e73611fa376c19abe5d768d8880cfce9082c8cb8a5819d3350bc881 Loading...

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3.js	91 kB	2023-03-14	2023-03-29
Pretty URL d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3.js IP 18.66.242.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 18:12:54 Last Seen2023-03-29 21:56:12 Times Seen20 Hash 53f7bfdc12c6cae818ff3f82d0133399 2be0211d18d8b38f68cdd6b9e3dae771bdb1ba52 15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3 Loading...

	docsend.com/view/rqwdkg55p3cy7bhm	31 B	2023-03-07	2024-04-20
Pretty URL docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-20 22:15:48 Times Seen468 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	www.dropbox.com/pithos/privacy_consent	9.2 kB	2023-03-26	2023-03-26
Pretty URL www.dropbox.com/pithos/privacy_consent IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:21:55 Last Seen2023-03-26 05:32:53 Times Seen6 Hash 53cd362ff670e2f71794cd87c3a76bd4 317a9ed00d266136bbbb7017df04173f22c1b0f4 0bd76eb01dc32d1fe4b56b1f088c1c68039476281d18d153ee33616bca4eedc4 Loading...

	widget.intercom.io/widget/lv6lji7h	8.5 kB	2023-03-26	2023-03-26
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.95 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:40:47 Last Seen2023-03-26 05:11:44 Times Seen36 Hash fe724c2c7cacfc955c6742f2416d5df2 e0551a7f32a6a2652ec4555ab002c6f16ff5dde2 d38b1bcad03d54715bee066bc5afd65e375b2232cb62883b5d7e6e1be2f67fbf Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflxTuuE6.js	126 kB	2023-03-25	2023-03-26
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflxTuuE6.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-25 23:49:22 Last Seen2023-03-26 05:52:00 Times Seen16 Hash c53bae13a128ab19a029f02c370d648f 4a1cb8cd4a2eb56b8eb3d2654198baec9d8db06d baa40c887568c7298e1ebbb387b30b6265539a0e0ea8d4310f9ef8230f7ca928 Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-24 07:29:02 Times Seen14272 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (65)

	URL	IP	Response	Size
	docsend.com/view/rqwdkg55p3cy7bhm	3.232.242.170	301 Moved Permanently	0 B
URL HTTP/1.1 docsend.com/view/rqwdkg55p3cy7bhm IP 3.232.242.170:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /view/rqwdkg55p3cy7bhm HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:31 GMT Content-Type: text/html Transfer-Encoding: chunked Location: https://docsend.com/view/rqwdkg55p3cy7bhm Vary: Origin Via: 1.1 vegur`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9ce33c47154f4826255fe9bbe54d72be e10a363c007a6d15ed43eb35b4e5c246d85c5eed cf423db1a8ad1dce1b5c25f6025d14411b4a46e95a6001288949f046e244bc24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CF423DB1A8AD1DCE1B5C25F6025D14411B4A46E95A6001288949F046E244BC24" Last-Modified: Fri, 10 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2727 Expires: Sun, 12 Mar 2023 16:58:59 GMT Date: Sun, 12 Mar 2023 16:13:32 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 405abd45d42535567c1ecb518f4bdb04 0505c27fe2921bfa89657173fb77ca7280f04772 bdef4e5edfe0bf3fefb4dc5625e41f3faeb23a0afd24c4e6255f40f757568c35 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BDEF4E5EDFE0BF3FEFB4DC5625E41F3FAEB23A0AFD24C4E6255F40F757568C35" Last-Modified: Sun, 12 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2725 Expires: Sun, 12 Mar 2023 16:58:57 GMT Date: Sun, 12 Mar 2023 16:13:32 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Backoff, Retry-After, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 12 Mar 2023 15:13:59 GMT content-type: application/json age: 3573 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1a564ae484daef6a82bb08116ad794eb f75350abf28a42c16324901035889a1f3af700a1 225214187df3f50835a8aafcc4555fe47cf0b78938b71d34fb422942292b153b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "225214187DF3F50835A8AAFCC4555FE47CF0B78938B71D34FB422942292B153B" Last-Modified: Fri, 10 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11111 Expires: Sun, 12 Mar 2023 19:18:43 GMT Date: Sun, 12 Mar 2023 16:13:32 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash b5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Ew+SfzP2jrIOM0kRAg8IfXkSPh2V5qa8628LIJfeHLmU2seMmlsI7Qm5EccbLS9z4Ite3IDKJ78= x-amz-request-id: EC6N528WH9BV3J08 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sun, 12 Mar 2023 15:46:01 GMT age: 1651 last-modified: Sat, 18 Feb 2023 20:28:27 GMT etag: "b5ba6334e73496995e3e3a9ecd0eb323" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 12 Mar 2023 16:13:32 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 241bf0ea2f7009c943a5cd981860cd13 bb03abc43f3e6c8232c416528fa62cd856364ca1 91069738eb2e3259b24475738cf8abad98e9194bd212c105a6816cec441312d9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sun, 12 Mar 2023 16:13:32 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Fri, 10 Mar 2023 15:57:44 GMT Expires: Fri, 17 Mar 2023 15:57:43 GMT Etag: "bb03abc43f3e6c8232c416528fa62cd856364ca1" Cache-Control: max-age=430450,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7a6d5335cf98b4f7-OSL`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, ETag, Backoff, Expires, Alert, Pragma, Cache-Control, Content-Length, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 12 Mar 2023 16:06:47 GMT age: 405 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash db27ecc2f481e8871b2e99584e751660 e671ecb839d53e296f4ec303208ddb713c72aecc 5c910268b5c4f0244540c5570056673f8cbe4a0979f301363cb56dc359c147df HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5C910268B5C4F0244540C5570056673F8CBE4A0979F301363CB56DC359C147DF" Last-Modified: Sun, 12 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5922 Expires: Sun, 12 Mar 2023 17:52:14 GMT Date: Sun, 12 Mar 2023 16:13:32 GMT Connection: keep-alive`

	docsend.com/view/rqwdkg55p3cy7bhm	52.20.78.240	200 OK	11 kB
URL HTTP/1.1 docsend.com/view/rqwdkg55p3cy7bhm IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5461) Size 11 kB (11242 bytes) Hash 817896168ff29b0025dc6f2c82d9d7f1 40268751e309d4ee05e7eb4c7a47c7de4646a675 85dd81f796db70714459c5064da8c3ce6e8fe1c07a84cb88b16a48cc60398bca HTTP Headers `GET /view/rqwdkg55p3cy7bhm HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:32 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"be6af7af2ed4c855598e288a29b3f003" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-caBOu3cA29Vq8FY26S3rzw=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=6UyaH16OzpGWPpLwtPJH0qDFkv%2BtkqkRQk8Orn%2FvdxmZ8OlLf6Z0H1lez2RTMYbe%2BUCqXFiSPS0GpCdLdXI%2FVoJZnDtfkYxsy4mvrrA%3D--K3H3wb2GHg%2BlZe2N--gjlXoCZq0iS0%2FfhLJm3AjA%3D%3D; domain=.docsend.com; path=/; expires=Tue, 12 Mar 2024 16:13:32 GMT; SameSite=None; secure _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Thu, 12 Mar 2043 16:13:32 GMT; SameSite=None; secure _dss_=d63d9725a2753ad6b6437b325559f3e7; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None X-Request-Id: 5dd396d5-34a1-4537-a981-696c9f22b608 X-Runtime: 0.083694 Vary: Accept-Encoding, Origin Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3c5612c5131d59819b60bcd3123fbe1e 86f82bfa3a20987ac256d2efd06dc95c0df285e8 00fc14cc05fb85329d10ee97f1c959244f274c67d56a37f4eb8006acd0e867bf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 16:13:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css	18.66.242.88	200 OK	948 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css IP 18.66.242.88:0 ASN #16509 AMAZON-02 File type exported SGML document, ASCII text Size 948 B (948 bytes) Hash a7ace942f4f580ee5902c36fed888af9 ca1c01b03c6763b0f458af9eea82b8f00b430141 514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0 HTTP Headers `GET /assets/ie_specific_hacks_v2.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Thu, 09 Mar 2023 18:48:44 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 bf943aab70e585412f7a215fb0a10790.cloudfront.net (CloudFront) Content-Encoding: br Date: Sun, 12 Mar 2023 06:08:23 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: YzAQ16kfHJnx53Y7kV_QkFJPgn7invER9Ezn4RCg7jnGR05VjrLLEg== Age: 36310

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-285f887c1c92be504a77863e5ae07032de4eb76d3df864d82dd84245c67d876e.css	18.66.242.88	200 OK	24 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-285f887c1c92be504a77863e5ae07032de4eb76d3df864d82dd84245c67d876e.css IP 18.66.242.88:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 24 kB (23495 bytes) Hash 09dfa7e71171bfc2b29801f898b8bb4b 23d396cbcab241a54f3bdcf8f616dbe41176f04a ea32b4a4c09f91a8fa1feb3bfa477a84eee983114e0fe63b955d2116b3f63908 HTTP Headers `GET /assets/javascripts/presentation-285f887c1c92be504a77863e5ae07032de4eb76d3df864d82dd84245c67d876e.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Tue, 07 Mar 2023 21:12:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 d2f47ea7c79de35229ffbfc6942082c0.cloudfront.net (CloudFront) Content-Encoding: br Date: Sun, 12 Mar 2023 02:21:24 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: I2KKTNHoTQkVuEs308TzilrGBPfWBDcSSdrE12RmUCciUbAV8zMNVA== Age: 50007

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3c5612c5131d59819b60bcd3123fbe1e 86f82bfa3a20987ac256d2efd06dc95c0df285e8 00fc14cc05fb85329d10ee97f1c959244f274c67d56a37f4eb8006acd0e867bf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 16:13:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3.js	18.66.242.88	200 OK	24 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/langpacks/en-15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3.js IP 18.66.242.88:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 24 kB (24439 bytes) Hash 83d024d22bf94f1baa3eeaa75cef9252 3fb2892261a7c295114037fbdfd8e3967824cb96 c462021271b6d53095e258da53c9d7eb00bd69ccb8339c798ec028939eed4b9b HTTP Headers `GET /assets/javascripts/langpacks/en-15418fe66914c86a5d251ac76b7c40c743f4ac159606b683c11bab05a20de4c3.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Sat, 04 Mar 2023 00:09:19 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 197c4cb5add90683639ea9a7475e4dd2.cloudfront.net (CloudFront) Content-Encoding: gzip Date: Sun, 12 Mar 2023 01:20:45 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: lgyBgo_U6itK0IH9K36Q_2YHHfsnS7G3qZJJ-7pOynSvfpW25CLraA== Age: 53568

	d2qvtfnm75xrxf.cloudfront.net/assets/stylesheets/presentation-f65de2c1bb1c28992583e764e3ba6dd2e9eef9b64a51c0b4a0d8ddebcd2692a8.css	18.66.242.88	200 OK	102 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/stylesheets/presentation-f65de2c1bb1c28992583e764e3ba6dd2e9eef9b64a51c0b4a0d8ddebcd2692a8.css IP 18.66.242.88:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 102 kB (102549 bytes) Hash d1ac5bee0251bbe3c61a7fa279fe615a c15d40d72bb0587898396f2b8307c98318cb5bff 8b0cdfe740d6088f95c1fdb75d74ae4afc3620f3e7f2b7d5484c36369d1d292b HTTP Headers `GET /assets/stylesheets/presentation-f65de2c1bb1c28992583e764e3ba6dd2e9eef9b64a51c0b4a0d8ddebcd2692a8.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Last-Modified: Thu, 23 Feb 2023 18:42:14 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 ed18d8ae19db26837eda53bbf8f03c08.cloudfront.net (CloudFront) Content-Encoding: gzip Date: Sun, 12 Mar 2023 06:06:51 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: 1dIcjDSpfDzoMh4XitzjtISSkJ6GNi4Z9SBimz6kar4X_rP72mWuaQ== Age: 39542

	push.services.mozilla.com/	52.40.148.136	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.40.148.136:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 9ZNipjmKAWjKbsivWMgsaw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: VOwhPOPC3d7W5YtW2IO/xCPQOFU=`

	d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-9e1fdf1e2dae0e2221e4f4913980dfdebe1262d98aff8104b6a88d355b4fdab2.js	18.66.242.88	200 OK	2.1 MB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/javascripts/presentation-9e1fdf1e2dae0e2221e4f4913980dfdebe1262d98aff8104b6a88d355b4fdab2.js IP 18.66.242.88:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (15729) Size 2.1 MB (2125008 bytes) Hash 89d4602199c3695cfe210c9c8741784e a7d2caeecc64656440c0c339033ead6ccdadfa55 74096d1bc84f3e8a1b5e80906f4ff224fbf9c59810e725fa2f500c3585f83acc HTTP Headers `GET /assets/javascripts/presentation-9e1fdf1e2dae0e2221e4f4913980dfdebe1262d98aff8104b6a88d355b4fdab2.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 07 Mar 2023 23:19:32 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 197c4cb5add90683639ea9a7475e4dd2.cloudfront.net (CloudFront) Content-Encoding: br Date: Sun, 12 Mar 2023 04:30:59 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: rtHXMMcBF8O8Isaaodw27S4G-G_3MlIiOIVVWykCRMSD68HCSNb0Zg== Age: 42154

	ocsp.digicert.com/	192.229.221.95	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash e7eefb77045b7b0ae120a8d21bbd16ee bb629f640876296cba1ba6653c6eafd23aed85d8 97eff65eec36166c1dcc05babccb17504f1e1c4dc4220d718b39741489ea33df HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6511 Cache-Control: max-age=158010 Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 16:13:34 GMT Etag: "640da6f9-1d7" Expires: Tue, 14 Mar 2023 12:07:04 GMT Last-Modified: Sun, 12 Mar 2023 10:18:33 GMT Server: ECAcc (ska/F776) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11089 Expires: Sun, 12 Mar 2023 19:18:23 GMT Date: Sun, 12 Mar 2023 16:13:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11089 Expires: Sun, 12 Mar 2023 19:18:23 GMT Date: Sun, 12 Mar 2023 16:13:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11089 Expires: Sun, 12 Mar 2023 19:18:23 GMT Date: Sun, 12 Mar 2023 16:13:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11089 Expires: Sun, 12 Mar 2023 19:18:23 GMT Date: Sun, 12 Mar 2023 16:13:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11089 Expires: Sun, 12 Mar 2023 19:18:23 GMT Date: Sun, 12 Mar 2023 16:13:34 GMT Connection: keep-alive`

	www.dropbox.com/pithos/privacy_consent	162.125.71.18	307 Temporary Redirect	9.0 kB
URL HTTP/2 www.dropbox.com/pithos/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type data Size 9.0 kB (9006 bytes) Hash 12634f273586dcc10d14e20ff9be9e3d a2bb3d701eaf6e9af8e5d016fe3c90ff0dea04a8 83a6b4665c69846ea2e4a640796a19b61940429396d2beb6dc1e32d0de9bf58f HTTP Headers `GET /pithos/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=NjQ0ODQxMjAyOTAzMTgxMTA4Nzk5MTI0Mzk0NTU3OTQ4MjIwNQ%3D%3D; expires=Fri, 10 Mar 2028 16:13:34 GMT; HttpOnly; Path=/; SameSite=None; Secure t=GnxQkErfagPAZlIcVBipeYZC; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; expires=Wed, 11 Mar 2026 16:13:34 GMT; Path=/; SameSite=None; Secure __Host-ss=O3cNOCWvgA; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Fri, 10 Mar 2028 16:13:34 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Sun, 12 Mar 2023 16:13:34 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 8839443c26da4397bb9123acfd23c327 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5381 bytes) Hash ebf97627ec9fd083bf5c22de39a524b5 35866e5d26ee25485d090011a1d50ec603d6761b 0b518329364fb793881cb0ff5ef464ecc4cd90c3694dcb7cfef40d0958446a14 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5381 x-amzn-requestid: 6507e3ee-6ce1-46d3-89d7-409b6d7000f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BosvnHK_IAMFdkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf4ca-3d2fb61641f8b1212fc60c8c;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:18 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: NkNRsBnupSmAJQk4lWdlmuZBFtNai49WoU6vDJCj1pkH2MJ-Qx0hjQ== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6bdc2963c9ed59b475ec36c35e5932a4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:40:56 GMT age: 66758 etag: "35866e5d26ee25485d090011a1d50ec603d6761b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8487 bytes) Hash be71491cee9b47dc3ffb23b4fdff25b3 79c7d22c8df6d305f46c5779ccb9f25169d4d111 e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8487 x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BkEcBGizoAMFgOA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0 x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:25 GMT age: 66669 etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6dda5706-64c5-467d-9645-a46dedb81818.jpeg	34.120.237.76	200 OK	6.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6dda5706-64c5-467d-9645-a46dedb81818.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.1 kB (6053 bytes) Hash 6a4d6ee7d459e2a9b742d0dbca932998 eada4a4de40e5035173bb18ee51aacd624b8b169 2e6eef4f452ef3700d4c9d06e8c3bf8999e077e24c332ab4670edd0884839d38 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6dda5706-64c5-467d-9645-a46dedb81818.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6053 x-amzn-requestid: 5f306311-ac84-4ce2-b9c2-6af31c110062 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Bosb-FD5oAMFwJw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf44c-61fea28e45516fad0d30cf65;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:36:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: gE_WoxZmuEc9mzbWmh3tMo_UshbjeTGIdbA8xew7ZB44sigj9fR3cw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 22:09:20 GMT age: 65054 etag: "eada4a4de40e5035173bb18ee51aacd624b8b169" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4512 bytes) Hash 26033b42139d27c847cf9881a17e0332 b196fbef36c2a5242abfc5d7115f1efd39499453 028dd1c86eaab6b991ad3dcb7fda21cdcfe8f9b22155c6bcb9363fbe379096ec HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4512 x-amzn-requestid: e9ba0dc3-3e1a-4ff5-8d0d-57386ced2fb1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BotIeGZ-IAMFmBQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf569-1a45fa73148fb01f3822ee29;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:40:57 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: wkfdSY68kDN6OsZ-rUHVYuqwBOHFh2lupX6GUYdmi25d3Ae2CEl6vw== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d15b6a95f7c8298444f59a99d8027cec.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:40:57 GMT age: 66757 etag: "b196fbef36c2a5242abfc5d7115f1efd39499453" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae3c2980-a44e-45c6-a99d-629945594f8f.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae3c2980-a44e-45c6-a99d-629945594f8f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11176 bytes) Hash 56954902055f7b634773a3cf27cec213 c08733caed5383a2790e0760a889a6e545753105 16aa87074a92c80776c901da479e182fff8e81600d0a026b1e8c2ca38033b4fb HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae3c2980-a44e-45c6-a99d-629945594f8f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11176 x-amzn-requestid: 8f3332e2-954e-4c35-96c9-390e257f5451 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BosvyFdeIAMF3MA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf4cb-3869435d54341ff376a91d06;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: JdyxGvD16BjZNkG6J1b5pDwb4kJcyDZBDJAPi793Hxf3tP3VPm6Izw== via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 22:01:01 GMT age: 65553 etag: "c08733caed5383a2790e0760a889a6e545753105" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4036 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-2gDjUEdSGUd1cV2taSt2' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-2gDjUEdSGUd1cV2taSt2' 'nonce-TFzIiPIFGsmDJZdjcaap' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=ODk4NDY1MDc1ODU0NjgwNDA2MDAzMDQzNDg1OTMwMTg2NzgxNzg%3D; expires=Fri, 10 Mar 2028 16:13:34 GMT; HttpOnly; Path=/; SameSite=None; Secure t=0qr_bwk8Y1D7hzIVeJsh1ZSj; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=0qr_bwk8Y1D7hzIVeJsh1ZSj; expires=Wed, 11 Mar 2026 16:13:34 GMT; Path=/; SameSite=None; Secure __Host-ss=RsKBDIYQik; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Fri, 10 Mar 2028 16:13:34 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Sun, 12 Mar 2023 16:13:34 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 9825173bed3c4d14a5c598cec73081c6 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4068 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-BdQNxfrXjnYvaMv3qw0H' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-BdQNxfrXjnYvaMv3qw0H' 'nonce-Kb4ys2mM9eu2WTr5QGJu' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzM5NTQ5NTA5MTI1MDM4MTY1NjkyNDY0MTI1OTUyODY2NTg4ODQ0; expires=Fri, 10 Mar 2028 16:13:35 GMT; HttpOnly; Path=/; SameSite=None; Secure t=hKAvNII1hmDQc9bzidbx_5bu; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=hKAvNII1hmDQc9bzidbx_5bu; expires=Wed, 11 Mar 2026 16:13:35 GMT; Path=/; SameSite=None; Secure __Host-ss=C-_NJULToA; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Fri, 10 Mar 2028 16:13:35 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Sun, 12 Mar 2023 16:13:34 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 141d0cd48c2940238dffb97f8a1d397a X-Firefox-Spdy: h2

	docsend.com/metrics/events	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------99689167737066300973274732863 Content-Length: 1080 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/rqwdkg55p3cy7bhm Cookie: _v_=6UyaH16OzpGWPpLwtPJH0qDFkv%2BtkqkRQk8Orn%2FvdxmZ8OlLf6Z0H1lez2RTMYbe%2BUCqXFiSPS0GpCdLdXI%2FVoJZnDtfkYxsy4mvrrA%3D--K3H3wb2GHg%2BlZe2N--gjlXoCZq0iS0%2FfhLJm3AjA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d63d9725a2753ad6b6437b325559f3e7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:35 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-80NZ0NxJM/6ljalQGU1jmA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 9807b2ca-eace-464b-ae42-4c231c6bc7a5 X-Runtime: 0.015107 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur

	d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2	18.66.242.7	200 OK	45 kB
URL HTTP/1.1 d5doxliz2zm8u.cloudfront.net/assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 IP 18.66.242.7:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 45008, version 1.66\012- data Size 45 kB (45008 bytes) Hash 38846f0a3b6bb0b9d1b4f21b61e57c54 8893fa19d5550ae165dcdee85935d67677e5888d 39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff HTTP Headers GET /assets/AtlasGrotesk-Regular-Italic-Web-ZM4W24YU-39e1b683885a862832eb9f30c6626b7e36613856ee10e8c2d1bf671921ab70ff.woff2 HTTP/1.1 Host: d5doxliz2zm8u.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 45008 Connection: keep-alive Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 06 Dec 2022 19:39:39 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 8d4901eb4989773bb579fc1597e54ea8.cloudfront.net (CloudFront) Date: Sun, 12 Mar 2023 16:13:35 GMT Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: DUS51-P1 X-Amz-Cf-Id: YZcamHrAqXkH0FFZ8k_Mso3x3ubDuUcSa96EDkqU0CyvNJg-nldkow== Age: 37417

	docsend.com/metrics/properties	52.20.78.240	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/properties IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: miGmBQegB1xvVOaTiMHfmmB4CVftbeFjZHZYo7+LHRrugzqEOKqLI2hTRgymtticcskbPRK1KhYzKmk9f6Kz9A== X-Requested-With: XMLHttpRequest Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/rqwdkg55p3cy7bhm Cookie: _v_=6UyaH16OzpGWPpLwtPJH0qDFkv%2BtkqkRQk8Orn%2FvdxmZ8OlLf6Z0H1lez2RTMYbe%2BUCqXFiSPS0GpCdLdXI%2FVoJZnDtfkYxsy4mvrrA%3D--K3H3wb2GHg%2BlZe2N--gjlXoCZq0iS0%2FfhLJm3AjA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d63d9725a2753ad6b6437b325559f3e7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:35 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-lPrUEXJx42tvuHXCMFtziA=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 60b468c9-c20c-49e8-9836-e69aeccae0b7 X-Runtime: 0.011347 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	143.204.55.62	200 OK	854 B
URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.62:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 854 B (854 bytes) Hash dc63fb23d6563676b3090bae3f02ccde dd6c4202705f760dd5744caee7ccb31f703fc880 c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&is_migration_gate_enabled=undefined&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: t=GnxQkErfagPAZlIcVBipeYZC; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/html content-length: 854 last-modified: Tue, 06 Sep 2022 19:00:36 GMT x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ server: AmazonS3 date: Sun, 12 Mar 2023 07:06:49 GMT etag: "dc63fb23d6563676b3090bae3f02ccde" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: uIR_-ObCRWcqOH0VgI0I8Q5IaNTIrHcxiToXEmlWc5YCYxmEwvfKqg== age: 32807 X-Firefox-Spdy: h2`

	docsend.com/favicon-196x196.png	52.20.78.240	200 OK	4.1 kB
URL HTTP/1.1 docsend.com/favicon-196x196.png IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/rqwdkg55p3cy7bhm Cookie: _v_=6UyaH16OzpGWPpLwtPJH0qDFkv%2BtkqkRQk8Orn%2FvdxmZ8OlLf6Z0H1lez2RTMYbe%2BUCqXFiSPS0GpCdLdXI%2FVoJZnDtfkYxsy4mvrrA%3D--K3H3wb2GHg%2BlZe2N--gjlXoCZq0iS0%2FfhLJm3AjA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d63d9725a2753ad6b6437b325559f3e7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:35 GMT Content-Type: image/png Content-Length: 4131 Last-Modified: Thu, 09 Mar 2023 18:48:44 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur`

	docsend.com/favicon-16x16.png	52.20.78.240	200 OK	393 B
URL HTTP/1.1 docsend.com/favicon-16x16.png IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 393 B (393 bytes) Hash a8c678babc40c4ac6d8c70fc560094d4 66002c0719ddbd75c837f5a939689ea6df13b6dc a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/rqwdkg55p3cy7bhm Cookie: _v_=6UyaH16OzpGWPpLwtPJH0qDFkv%2BtkqkRQk8Orn%2FvdxmZ8OlLf6Z0H1lez2RTMYbe%2BUCqXFiSPS0GpCdLdXI%2FVoJZnDtfkYxsy4mvrrA%3D--K3H3wb2GHg%2BlZe2N--gjlXoCZq0iS0%2FfhLJm3AjA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=d63d9725a2753ad6b6437b325559f3e7 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Sun, 12 Mar 2023 16:13:35 GMT Content-Type: image/png Content-Length: 393 Last-Modified: Thu, 09 Mar 2023 18:48:44 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Vary: Origin Via: 1.1 vegur`

	widget.intercom.io/widget/lv6lji7h	54.230.111.95	200 OK	3.3 kB
URL HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8520), with no line terminators Size 3.3 kB (3265 bytes) Hash 3276ae8d8029ce867bb96ad133aaaa28 d7bf50427bf15ddbb819004af0b772b8c89f5227 08b01839d3728cbd92963b58543a7bbcca0306781255929232a005e693d2b811 HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 3265 last-modified: Fri, 10 Mar 2023 16:31:29 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: UjgBmG2nR8tPr1wuH5UiFH4EQXzUAv1a accept-ranges: bytes server: AmazonS3 date: Sun, 12 Mar 2023 16:00:33 GMT cache-control: max-age=900, s-maxage=900, public etag: "3276ae8d8029ce867bb96ad133aaaa28" x-cache: Error from cloudfront via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 7HyH09E-HQ6nzkD6ZrQoVcrB7ypl1_ldXDsWgykURzQkzhz_T2ajtA== age: 849 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.8.20	200 OK	0 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.8.20:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Sun, 12 Mar 2023 16:13:35 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 2518249265ba4f1e816a1d5553e82b2f X-Firefox-Spdy: h2`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 05e51b223884d34a36c1d69ed8f90071 b061c50e1f219cd056b1d509327efff556fa4ecc 2b666daf6a1c595e9d3795599a84e23cb83000bc326cacf1afa3545bcb5bdbcd HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 12 Mar 2023 16:13:35 GMT Last-Modified: Sun, 12 Mar 2023 15:00:58 GMT Server: ECAcc (bsa/EA8F) X-Cache: Miss from cloudfront Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: vu_z7w4bAg3RPNbSteb6ZUlUhDFgk1OGs07aarz9Yki4yDCnMIYjtg== Age: 4359`

	js.intercomcdn.com/frame.5368c7ca.js	54.230.111.84	200 OK	142 kB
URL HTTP/2 js.intercomcdn.com/frame.5368c7ca.js IP 54.230.111.84:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 142 kB (142209 bytes) Hash 8a92ad3fc3ca69e2eb2f80d512306b84 7a10ae5451243ee6e864a227828369662a99caac 7b1c21f48aa36b92366e06b1cd7f88561daa2e018cc7b2e58ea2c222f7fd2fbb HTTP Headers `GET /frame.5368c7ca.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 142209 last-modified: Fri, 10 Mar 2023 16:28:37 GMT x-amz-storage-class: INTELLIGENT_TIERING x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: vCjgr4VnaXaw362ZNEphO_b1_esXHzgb accept-ranges: bytes server: AmazonS3 date: Sun, 12 Mar 2023 14:22:03 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "8a92ad3fc3ca69e2eb2f80d512306b84" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: njyU0NfYkRpmc6HQcqJ95Ij7hordc7qYKltrjV23v1cxHhVfx9njiQ== age: 6693 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	108.157.228.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 108.157.228.227:0 ASN #0 File type data Size 471 B (471 bytes) Hash 4ffd13df5114dbf044fe4d4ad0ba0bfe 4c6bf5044f6cbeb846fb9e0477b3b92ca6580c57 62f11a54f7a553d056eb50a112f8a23bd6054b34c496ce1988411458f58486b9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 12 Mar 2023 16:13:35 GMT Last-Modified: Sun, 12 Mar 2023 14:41:31 GMT Server: ECAcc (bsa/EB4C) X-Cache: Miss from cloudfront Via: 1.1 f26fbc8f93ad20ccbbd480fccb1e6f88.cloudfront.net (CloudFront) X-Amz-Cf-Pop: ARN56-P2 X-Amz-Cf-Id: uif1sTT1scIpjXtaf2KBS0FnUFVcOMavQh_ZjKguLQv2IrF82rPkpg== Age: 5525`

	d.dropbox.com/crashdash/proxy/sessions	162.125.8.20	202 Accepted	21 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.8.20:0 ASN #19679 DROPBOX File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-03-12T16:13:34.761Z Content-Length: 549 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: 7da9fc47-dce7-41f3-b68d-b3ebea0349c4 content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Sun, 12 Mar 2023 16:13:35 GMT referrer-policy: strict-origin-when-cross-origin via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 3c192d85cfc54b7fb6a38a4802a870a6 X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/snthemes.js	104.88.23.136	200 OK	5.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/snthemes.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (65536), with no line terminators Size 5.7 kB (5695 bytes) Hash 9a975aa3305c4011b3e07119d2376913 4545dc0986810ba851360f910219b34ce7c4446d 400f7ad9cb8378b5839d4f3449381d936f37fd0762f8507d283304c82068d122 HTTP Headers `GET /sitenotice/3401/snthemes.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "0e8f664fca39681028b4b07b5be34f2d:1659131785.898398" last-modified: Fri, 29 Jul 2022 21:56:25 GMT server: AkamaiNetStorage content-encoding: gzip expires: Tue, 14 Mar 2023 16:13:36 GMT date: Sun, 12 Mar 2023 16:13:36 GMT content-length: 5695 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settings.js	104.88.23.136	301 Moved Permanently	0 B
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/3401/dropbox/settings.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently server: AkamaiGHost content-length: 0 location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js date: Sun, 12 Mar 2023 16:13:36 GMT vary: Origin cache-control: max-age=432000, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/translations/en.js	104.88.23.136	200 OK	6.6 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (42787), with no line terminators Size 6.6 kB (6584 bytes) Hash c5d467fd5818f85d5066106b4acb1056 c8302ad096a473b1cf2f3a46a6e5e2e0fbc7022a af64972f1271bbf13e0186512d3f4740628b523b82f56c23ac33f3546a54e5b5 HTTP Headers `GET /sitenotice/3401/translations/en.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "657b6bb22752382cbdc4208cce7687cb:1677001491.712443" last-modified: Tue, 21 Feb 2023 17:44:51 GMT server: AkamaiNetStorage content-encoding: gzip expires: Tue, 14 Mar 2023 16:13:36 GMT date: Sun, 12 Mar 2023 16:13:36 GMT content-length: 6584 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settingsV2.js	104.88.23.136	200 OK	1.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (5665), with no line terminators Size 1.7 kB (1739 bytes) Hash 9fc9edffc1f73630f77b4929bb120dcb 9e38c6ea96581cfcb3a147cc9bdae7b5a90dd11f 9680d501bfe65dd0e8823eadb470617005def411de6be197642edfa2c794e404 HTTP Headers `GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "dcb013ce5f00abe84675f6343f644539:1677001492.000343" last-modified: Tue, 21 Feb 2023 17:44:51 GMT server: AkamaiNetStorage content-encoding: gzip expires: Tue, 14 Mar 2023 16:13:36 GMT date: Sun, 12 Mar 2023 16:13:36 GMT content-length: 1739 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4068 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-6ff89yAmV/XQcowhgH1f' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-6ff89yAmV/XQcowhgH1f' 'nonce-pGzuJIKPa+nctDI71I2a' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjU2NDM4NzE4Njc4NzMzNjE1NzE4NjkwNTcwMTAyNjY3ODg4NTMy; expires=Fri, 10 Mar 2028 16:13:36 GMT; HttpOnly; Path=/; SameSite=None; Secure t=O04zWUJzUTMNc0s3I82EzD3H; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:36 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=O04zWUJzUTMNc0s3I82EzD3H; expires=Wed, 11 Mar 2026 16:13:36 GMT; Path=/; SameSite=None; Secure __Host-ss=0E0XYlo1wM; expires=Wed, 11 Mar 2026 16:13:36 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Fri, 10 Mar 2028 16:13:36 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Sun, 12 Mar 2023 16:13:35 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: f22f2a1b742b43b1b5d49da10803e1f7 X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-banner.js	104.88.23.136	200 OK	3.5 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (12607), with no line terminators Size 3.5 kB (3535 bytes) Hash 304674456118422bd448366f7bb05879 c6549199a4fb419c05a3513238a89002307034b9 29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068 HTTP Headers `GET /sitenotice/evidon-banner.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "953f08dcce4b8af3f743056f673c8514:1678171379.186949" last-modified: Tue, 07 Mar 2023 06:42:59 GMT server: AkamaiNetStorage content-encoding: gzip expires: Tue, 14 Mar 2023 16:13:36 GMT date: Sun, 12 Mar 2023 16:13:36 GMT content-length: 3535 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 074687dcd13a09e0218b465d9c580e94 9eac3d468b6b0f0638bb359a58d002affde4acb2 bcc6124e3b927a9a8d4f35a8e8a48153d7a89ce4c708dcd6dfe5727fa361a305 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=104075 Date: Sun, 12 Mar 2023 16:13:36 GMT Etag: "640cea95-1d7" Expires: Mon, 13 Mar 2023 21:08:11 GMT Last-Modified: Sat, 11 Mar 2023 20:54:45 GMT Server: ECAcc (nya/7993) X-Cache: Miss from cloudfront Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: -tsrZZDDh2cHyFNU3k_bf_A9IJ1fyy7oUYNf7XhI0AHaHFqxY3oepw== Age: 806

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 074687dcd13a09e0218b465d9c580e94 9eac3d468b6b0f0638bb359a58d002affde4acb2 bcc6124e3b927a9a8d4f35a8e8a48153d7a89ce4c708dcd6dfe5727fa361a305 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Sun, 12 Mar 2023 16:13:36 GMT Last-Modified: Sun, 12 Mar 2023 15:15:27 GMT Server: ECAcc (nya/78BE) X-Cache: Miss from cloudfront Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: GtfjcJkwF2WYxAmWAO5Ss2XCrLWi-Bd46ptaOA0WuMxCkHVhFIVaxA== Age: 3489`

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	104.88.23.136	200 OK	0 B
URL HTTP/2 c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/evidon-sitenotice-tag.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "67f474b38c27672f31348c6aef233047:1678171378.613919" last-modified: Tue, 07 Mar 2023 06:42:58 GMT server: AkamaiNetStorage content-encoding: gzip expires: Tue, 14 Mar 2023 16:13:36 GMT date: Sun, 12 Mar 2023 16:13:36 GMT content-length: 19648 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/	34.199.144.120	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ IP 34.199.144.120:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https://docsend.com/ HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Sun, 12 Mar 2023 16:13:36 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	nexus-websocket-a.intercom.io/pubsub/5-TaTKK641mxxoEG5XOjk_qTFuMK94C1zESJUWytdsaYT57ln_tOL568h5PppPbsYW55TiyHUSB8tLmCHSsLs7f-czVb_ZWxagrsFQ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	35.174.127.31	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-TaTKK641mxxoEG5XOjk_qTFuMK94C1zESJUWytdsaYT57ln_tOL568h5PppPbsYW55TiyHUSB8tLmCHSsLs7f-czVb_ZWxagrsFQ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 35.174.127.31:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-TaTKK641mxxoEG5XOjk_qTFuMK94C1zESJUWytdsaYT57ln_tOL568h5PppPbsYW55TiyHUSB8tLmCHSsLs7f-czVb_ZWxagrsFQ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: r+Szt2PNTjBq3oWKG3dluw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Sun, 12 Mar 2023 16:13:37 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: BArKx9KJiECO/3jnq+PcFcgsmyo= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4068 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-/qOlT8+rsseilpBy/y+T' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-/qOlT8+rsseilpBy/y+T' 'nonce-l5MnpMWeUo3LyNFpNICN' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MzIyNDE4OTE5NDMxODE5NjMxNDc1MDE3MDYzMzA1MDY4MTYzODU2; expires=Fri, 10 Mar 2028 16:13:38 GMT; HttpOnly; Path=/; SameSite=None; Secure t=n5du_ayKB8rmYpPOhl10pdO1; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:38 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=n5du_ayKB8rmYpPOhl10pdO1; expires=Wed, 11 Mar 2026 16:13:38 GMT; Path=/; SameSite=None; Secure __Host-ss=vwhFAxaL40; expires=Wed, 11 Mar 2026 16:13:38 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Fri, 10 Mar 2028 16:13:38 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Sun, 12 Mar 2023 16:13:37 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 27e2cd8c9a3642178c55d17b8d1ca5f2 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: gvc=NjQ0ODQxMjAyOTAzMTgxMTA4Nzk5MTI0Mzk0NTU3OTQ4MjIwNQ%3D%3D; t=GnxQkErfagPAZlIcVBipeYZC; __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-r/ED8F/W7vx3CfeeBnBe' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-r/ED8F/W7vx3CfeeBnBe' 'nonce-Qcb2LhzwY9qy5ptyV/4d' referrer-policy: strict-origin-when-cross-origin set-cookie: t=GnxQkErfagPAZlIcVBipeYZC; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; expires=Wed, 11 Mar 2026 16:13:34 GMT; Path=/; SameSite=None; Secure __Host-ss=O3cNOCWvgA; expires=Wed, 11 Mar 2026 16:13:34 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChBTfTVIOOH2OwoZHcpSLn%2FrEK70t6AGGi5BRi14NGEycG81RDIyYUJWTW56NUg5NjNhZHpKcXV1TC1RdUQtVlljbHNLdWlR; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 13 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Sun, 12 Mar 2023 16:13:33 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: b18df65bd511476d9b81a88ea3bb0c9e X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=NjQ0ODQxMjAyOTAzMTgxMTA4Nzk5MTI0Mzk0NTU3OTQ4MjIwNQ%3D%3D; t=GnxQkErfagPAZlIcVBipeYZC; __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; locale=en; __Host-logged-out-session=ChBTfTVIOOH2OwoZHcpSLn%2FrEK70t6AGGi5BRi14NGEycG81RDIyYUJWTW56NUg5NjNhZHpKcXV1TC1RdUQtVlljbHNLdWlR Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-r/ED8F/W7vx3CfeeBnBe' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-r/ED8F/W7vx3CfeeBnBe' 'nonce-Qcb2LhzwY9qy5ptyV/4d' referrer-policy: strict-origin-when-cross-origin set-cookie: t=GnxQkErfagPAZlIcVBipeYZC; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; expires=Wed, 11 Mar 2026 16:13:35 GMT; Path=/; SameSite=None; Secure __Host-ss=O3cNOCWvgA; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 13 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Sun, 12 Mar 2023 16:13:35 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 5edc2ba1b49d450e94b23eca971b841f X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.5b0c5115.js	54.230.111.84	200 OK	0 B
URL HTTP/2 js.intercomcdn.com/vendor.5b0c5115.js IP 54.230.111.84:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vendor.5b0c5115.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 108469 last-modified: Fri, 10 Mar 2023 16:28:37 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: 16BCF_m_Bh1mPewjCoG4HdksFqCPlrxO accept-ranges: bytes server: AmazonS3 date: Sun, 12 Mar 2023 16:01:24 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "3eeb007706a072d005933a6f701cbcfe" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: gk-21CbqUf46di_tUlUuoS7_K5oMg7AIuk4Exlus0UKU5j5_oObv0g== age: 731 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	54.160.56.92	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 54.160.56.92:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 354 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 16:13:36 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1678637620 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13318 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 0aacff60b95b03ce50ed08c2b92ae95a8bbe04b2 x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0002dd6eqslob2k6i0og access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"37b33214cabb207aa4676605a7553a9c" x-runtime: 0.401055 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0caf57ea91b695747 X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	54.160.56.92	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 54.160.56.92:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 467 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Sun, 12 Mar 2023 16:13:37 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1678637620 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13315 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 0aacff60b95b03ce50ed08c2b92ae95a8bbe04b2 x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 001hurriqn09in56eh8g access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"88fda2a4c86980b81218d6846798841e" x-runtime: 0.230230 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0caf57ea91b695747 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 12 Mar 2023 16:13:33 GMT date: Sun, 12 Mar 2023 16:13:33 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflH6FFhl.js	104.16.100.29	200 OK	0 B
URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflH6FFhl.js IP 104.16.100.29:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /static/metaserver/static/pithos/privacy_consent.bundle-vflH6FFhl.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 16:13:34 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Tue, 07 Mar 2023 19:48:34 GMT x-dropbox-request-id: 59a01f3b2ee3537e123802e57e3c633c x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 342186 server: cloudflare cf-ray: 7a6d53430ac61bfe-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent_service	162.125.71.18	307 Temporary Redirect	0 B
URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=NjQ0ODQxMjAyOTAzMTgxMTA4Nzk5MTI0Mzk0NTU3OTQ4MjIwNQ%3D%3D; t=GnxQkErfagPAZlIcVBipeYZC; __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; locale=en; __Host-logged-out-session=ChBTfTVIOOH2OwoZHcpSLn%2FrEK70t6AGGi5BRi14NGEycG81RDIyYUJWTW56NUg5NjNhZHpKcXV1TC1RdUQtVlljbHNLdWlR Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 307 Temporary Redirect content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service referrer-policy: strict-origin-when-cross-origin set-cookie: t=GnxQkErfagPAZlIcVBipeYZC; Domain=dropbox.com; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=GnxQkErfagPAZlIcVBipeYZC; expires=Wed, 11 Mar 2026 16:13:35 GMT; Path=/; SameSite=None; Secure __Host-ss=O3cNOCWvgA; expires=Wed, 11 Mar 2026 16:13:35 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Sun, 12 Mar 2023 16:13:34 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains cache-control: no-cache, no-store content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 22f1b1ca2cce46208d164e364fd8c7be X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL