Report - docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=docsend.com/view/jezmrgr8v88enku5&data=04|01|anitaheriot@fineartgroup.com|f095443872b543a4072408d9cbdf6e49|898d5f9c93d3464f9678707611dd6b61|1|1|637764982763919986|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0

Report Overview

Submitted URL
docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=docsend.com/view/jezmrgr8v88enku5&data=04|01|anitaheriot@fineartgroup.com|f095443872b543a4072408d9cbdf6e49|898d5f9c93d3464f9678707611dd6b61|1|1|637764982763919986|Unknown|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=|1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0
IP
3.232.242.170
ASN
#14618 AMAZON-AES
Submitted
2023-01-18 04:55:38
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
docsend.com	58938	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.9 kB	23 kB	52.20.78.240
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	963 B	104.18.32.68
consent.dropbox.com	27413	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	631 B	1.4 kB	143.204.55.62
cfl.dropboxstatic.com	13598	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	67 kB	104.16.99.29
c.evidon.com	1097	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	14 kB	104.88.23.136
d.dropbox.com	1300	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	1.1 kB	162.125.7.20
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	172.217.21.163
d2qvtfnm75xrxf.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	2.3 MB	143.204.42.157
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	3.0 kB	54.230.245.118
widget.intercom.io	2417	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	6.9 kB	54.230.111.53
js.intercomcdn.com	2440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	735 B	141 kB	54.230.111.118
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.1 kB	93.184.220.29
www.dropbox.com	1994	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	45 kB	162.125.71.18
lh3.googleusercontent.com	66	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430 B	1.4 kB	142.250.74.97
nexus-websocket-a.intercom.io	2137	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	729 B	281 B	35.174.127.31
api-iam.intercom.io	2892	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	944 B	3.4 kB	34.230.202.181
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
l.evidon.com	8143	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	976 B	382 B	54.84.70.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-18 04:55:29	high	162.125.7.20	Client IP	ET POLICY Dropbox.com Offsite File Backup in Use

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.dropbox.com/pithos/privacy_consent	8.4 kB	2023-03-09	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:38:10 Last Seen2023-03-13 02:24:41 Times Seen1 Hash f801dfd76683ff287236c16f35a797f1 da21548760c03e366ed9dff93c6ee6dfdfa57d6c 5329dbd1613a73746400524f659d3646e10964d0dcb631ecb1b5964031e931f2 Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflI8ZUCf.js	218 kB	2023-03-09	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflI8ZUCf.js IP 104.16.99.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:38:10 Last Seen2023-03-13 02:24:41 Times Seen1 Hash 23c65409fc0fefc06169342ec1140e4f 926ce6815529e8e2deaa16672db3885f9c214b01 07c9e72a49276ef981f90698154b1d1cd29fc2fc922c7b480f2fb077f6aac66a Loading...

	www.dropbox.com/pithos/privacy_consent_service	12 kB	2023-03-13	2023-03-13
Pretty URL www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18 ASN #19679 DROPBOX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:52:35 Last Seen2023-03-13 01:52:35 Times Seen1 Hash c657792a596656d812df36c1a0f069a1 78b156a82c208953de8d1895721011d8a0f1f682 fd4320ee1c8016bc86c772ce7bfc5220302d7456907ee2535192fd4f16d1c887 Loading...

	c.evidon.com/sitenotice/3401/snthemes.js	125 kB	2023-03-07	2023-04-02
Pretty URL c.evidon.com/sitenotice/3401/snthemes.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2023-04-02 21:30:48 Times Seen64 Hash 0e8f664fca39681028b4b07b5be34f2d 7298f430eb83f9116df80423cf956d09d0e6f8c4 4f71436a97288b116c8b61d62030fa6549acb42827ca7f7aeaacab78132190a8 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 04:46:51 Times Seen37083315 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	docsend.com/view/jezmrgr8v88enku5	31 B	2023-03-07	2024-04-25
Pretty URL docsend.com/view/jezmrgr8v88enku5 IP 3.220.57.224 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-25 15:42:24 Times Seen469 Hash 997bc267a126a1af0b147e52ee2274ec 283f5eea465445d4a02d6b006954adabe6ae86b1 f37819c0a8f3d5b4aefb1c1a91f921d9b7b5f9377e136614329bc495b993087a Loading...

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-debcc753ea9b1598d46a.js	9.8 kB	2023-03-12	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-debcc753ea9b1598d46a.js IP 143.204.42.157 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:53:21 Last Seen2023-03-13 02:24:42 Times Seen1 Hash 1619f8e09e2e931e791285b92a2f5007 ff50ff46feac38710c80d3e913bff3e5bd3cb1a8 6c97291c348e0386c2b5518bae7bbc6ecd7743e2160be6538bce2902fdfb28bf Loading...

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflWWLiOG.js	108 kB	2023-03-09	2023-03-13
Pretty URL cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent_service.bundle-vflWWLiOG.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:44:01 Last Seen2023-03-13 02:26:47 Times Seen1 Hash 5962e2386091bd167f90be3d2bfebce0 20dfa5db63225cfeff7247adb4f0a7f6c3708bfc 80c1eb8090dba936ebe64133b5d9b5a4eef1e2d726e1873e98228dc06c940800 Loading...

	c.evidon.com/sitenotice/3401/translations/en.js	41 kB	2023-03-08	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:03:09 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 92ddb3e3355b422d8513e225548bbf64 0d9a331620a7153aa3c70f20fbda54bdc7ed2b8c 83798cc9c57adec03a4547e9cec6a563696f0318ec6e0f885d325e226c34fe06 Loading...

	c.evidon.com/sitenotice/3401/dropbox/settings.js	5.1 kB	2023-03-07	2023-03-14
Pretty URL c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-03-14 06:57:53 Times Seen1 Hash 7119db14253f426ac1ed52da3fd5d054 9377f384c543a5211174e97b4cec458e2a801d34 4a01a147c430ebeffa841da984db9622de37957eed294ed3dcf4fa4deb7422df Loading...

	c.evidon.com/sitenotice/evidon-banner.js	13 kB	2023-03-09	2023-03-26
Pretty URL c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:10:59 Last Seen2023-03-26 13:12:38 Times Seen50 Hash 953f08dcce4b8af3f743056f673c8514 4e8acdae78b9b5f1c228cb28de23cca6ad5b3c4e f82f137e8e73611fa376c19abe5d768d8880cfce9082c8cb8a5819d3350bc881 Loading...

	widget.intercom.io/widget/lv6lji7h	19 kB	2023-03-13	2023-03-13
Pretty URL widget.intercom.io/widget/lv6lji7h IP 54.230.111.53 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:43:35 Last Seen2023-03-13 02:09:13 Times Seen1 Hash 3c32b47900bc41ac49dea0bdf0f2e84c 93acd66a2a56f416e2437b6afd2260ec488d2024 7e8d812aebb4cd5a665439230564c5d54dde8f03df9d959c4e0ea45e8009c985 Loading...

	docsend.com/view/jezmrgr8v88enku5	292 B	2023-03-12	2023-03-13
Pretty URL docsend.com/view/jezmrgr8v88enku5 IP 3.220.57.224 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:23:38 Last Seen2023-03-13 19:45:45 Times Seen1 Hash dd2d086a0c37ecbc9497ae2d2ad4f4d5 ceab8107721d747ee65a763f3ca99ab197f8f0a6 76450dd61645b78669c536ed1182e5951d2eeb7dc7c2bf18d172ad9b8bba3aef Loading...

	docsend.com/view/jezmrgr8v88enku5	2.5 kB	2023-03-13	2023-03-13
Pretty URL docsend.com/view/jezmrgr8v88enku5 IP 3.220.57.224 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:52:35 Last Seen2023-03-13 01:52:35 Times Seen1 Hash b849985ff8f62fa1eeb4bf29d1e11733 e3d006ae0e691fa4b77126d0bc8be274ffd460da b6f661321d0c3e6b645458dadcc9b610e2b02608e319bf9775453d2b610580a9 Loading...

	docsend.com/view/jezmrgr8v88enku5	777 B	2023-03-07	2024-04-25
Pretty URL docsend.com/view/jezmrgr8v88enku5 IP 3.220.57.224 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:32 Last Seen2024-04-25 15:42:22 Times Seen488 Hash eed47e70bb30c26af1d2b05cb6cbb36e a6280e737500da85f94d5dd1b4bcf53e8ab7ebb6 33f828b1c1cc8d01a5365dda26f42257988e5ab755e9d1c9c06c8b650564b612 Loading...

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	569 B	2023-03-07	2023-04-05
Pretty URL consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:24:27 Last Seen2023-04-05 02:11:39 Times Seen83 Hash 61b81b2411a67a89aad55835c4e864f2 623c4e487131583d402815eb75cfced9b694017d 929203495e37db6972ddc172e9664002093c6bb973da2ca7a5001c26d680d2de Loading...

	c.evidon.com/sitenotice/evidon-sitenotice-tag.js	75 kB	2023-03-09	2023-03-13
Pretty URL c.evidon.com/sitenotice/evidon-sitenotice-tag.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:15:50 Last Seen2023-03-13 19:09:27 Times Seen1 Hash b9539a2e77d15a946ad29fbada55c14c 01b157a8436cb78c9ff3364c629b5390429b0308 973e0be9ad095c6bea8d2a9b22df3acbc368ecb234823059ddac700ed103c593 Loading...

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js	45 kB	2023-03-12	2023-03-13
Pretty URL d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js IP 143.204.42.157 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:23:38 Last Seen2023-03-13 02:24:41 Times Seen1 Hash 267c741576d18e6aea1b3895b7213d27 5b5fb1afe00c1f0b2e5212a91ec823ff4cd67a79 fe72e930bcc41f2fe8203ecdcb7a0a9af465b81ce5ddeb264dc00a1d8537ca34 Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-26 04:05:33 Times Seen14316 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (68)

	URL	IP	Response	Size
	docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04\|01\|anitaheriot@fineartgroup.com\|f095443872b543a4072408d9cbdf6e49\|898d5f9c93d3464f9678707611dd6b61\|1\|1\|637764982763919986\|Unknown\|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=\|1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0	52.20.78.240	301 Moved Permanently	0 B
URL HTTP/1.1 docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04\|01\|anitaheriot@fineartgroup.com\|f095443872b543a4072408d9cbdf6e49\|898d5f9c93d3464f9678707611dd6b61\|1\|1\|637764982763919986\|Unknown\|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=\|1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0 IP 52.20.78.240:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04\|01\|anitaheriot@fineartgroup.com\|f095443872b543a4072408d9cbdf6e49\|898d5f9c93d3464f9678707611dd6b61\|1\|1\|637764982763919986\|Unknown\|TWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=\|1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1 HTTP/1.1 301 Moved Permanently Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:27 GMT Content-Type: text/html Transfer-Encoding: chunked Location: https://docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04%7C01%7Canitaheriot@fineartgroup.com%7Cf095443872b543a4072408d9cbdf6e49%7C898d5f9c93d3464f9678707611dd6b61%7C1%7C1%7C637764982763919986%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0 Via: 1.1 vegur

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 648bf42163c5d645d8a33cd0a9afebd0 9b9ac85435c4e90647e8379bca54c689058a8929 060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA" Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10736 Expires: Wed, 18 Jan 2023 07:54:23 GMT Date: Wed, 18 Jan 2023 04:55:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cc07d664b5dadee6f9120d54904dfa57 df75a55b0b2019684a6c512bee528c51a2c4a756 14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34" Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13936 Expires: Wed, 18 Jan 2023 08:47:43 GMT Date: Wed, 18 Jan 2023 04:55:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d38f4bb41e1264b8a1e11ff0b1499d20 21c3e36bd908df43e0d49b747e270ec75cb882b0 3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7" Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13905 Expires: Wed, 18 Jan 2023 08:47:12 GMT Date: Wed, 18 Jan 2023 04:55:27 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 18 Jan 2023 04:49:19 GMT content-type: application/json age: 368 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 9v4sKYMZRnEW1iCsOcl/qjIIe7YStQ8hD1kCkREVRKVpd+n1OLmFgpDME99SYoINR4fpTTUsPBU= x-amz-request-id: XMBE134CV4516RSW content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 18 Jan 2023 04:45:16 GMT age: 611 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 18 Jan 2023 04:55:27 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 63ec55ec31b9e544ae14ae034a51c751 6864f869ebc0c35e8c91fb1d0176dc20edd635bd 3b85ea34cb950b1617327fb7fbac2bc99a0fdda0482265f73b3d6ba5bdc24cb9 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 18 Jan 2023 04:55:27 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 17 Jan 2023 03:57:43 GMT Expires: Tue, 24 Jan 2023 03:57:42 GMT Etag: "6864f869ebc0c35e8c91fb1d0176dc20edd635bd" Cache-Control: max-age=514334,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 78b4bd0c0e87b51e-OSL`

	docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04%7C01%7Canitaheriot@fineartgroup.com%7Cf095443872b543a4072408d9cbdf6e49%7C898d5f9c93d3464f9678707611dd6b61%7C1%7C1%7C637764982763919986%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0	3.220.57.224	302 Found	121 B
URL HTTP/1.1 docsend.com/presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04%7C01%7Canitaheriot@fineartgroup.com%7Cf095443872b543a4072408d9cbdf6e49%7C898d5f9c93d3464f9678707611dd6b61%7C1%7C1%7C637764982763919986%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document, ASCII text, with no line terminators Size 121 B (121 bytes) Hash 4bf230a47eafc358ce6a3db6d194385c ab70107e471c8f0f9819193a695bf66f35f5c88a 4e45418aac853ed80644d400ccd29fc915f365ba8bd0611b22aea55f1de02627 HTTP Headers GET /presentation_users/aptRWd4yXPzmxFhNxW_b?redirect_url=https://docsend.com/view/jezmrgr8v88enku5&data=04%7C01%7Canitaheriot@fineartgroup.com%7Cf095443872b543a4072408d9cbdf6e49%7C898d5f9c93d3464f9678707611dd6b61%7C1%7C1%7C637764982763919986%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C1000&sdata=qDv6bQe5Ek6cQA2p53vcJ3Ky6Luq4eqBLR8vKkHGV5Y=&reserved=0 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 302 Found Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:27 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Location: https://docsend.com/view/jezmrgr8v88enku5 Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-KrWwIVgBNvVzTX7i0Embxg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend Set-Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None X-Request-Id: cd257bc9-9cb5-4ddd-9d0f-ed7a48009baf X-Runtime: 0.017209 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 18 Jan 2023 04:48:57 GMT age: 390 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	docsend.com/view/jezmrgr8v88enku5	3.220.57.224	200 OK	7.9 kB
URL HTTP/1.1 docsend.com/view/jezmrgr8v88enku5 IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5461) Size 7.9 kB (7909 bytes) Hash 2c5c4ecc05b6b2645a1deb71465d9849 3da0523430e46e14c57cf2f18e30bcc32692df99 5bbad2d54ca82298d2756c1d1575e7c96ce4cd17f1f4b770f0cd75f1e46ccdd2 HTTP Headers `GET /view/jezmrgr8v88enku5 HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:27 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked X-Frame-Options: DENY Etag: W/"88409dd24446e6aababff360f3d6200a" Cache-Control: max-age=0, private, must-revalidate Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://.id.opendns.com https://js-agent.newrelic.com https://.nr-data.net https://www.youtube.com https://.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://.quora.com https://.bing.com https://api.autopilothq.com https://.capterra.com https://.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-/5p+KQ62ocsBplEIgpGNlg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://.previews.dropboxusercontent.com//p.m3u8 https://.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://.browser-intake-datadoghq.com https://.kissmetrics.com https://.kissmetrics.io https://api.segment.io https://cdn.segment.com https://.id.opendns.com https://www.google-analytics.com https://.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://.nr-data.net https://.dropbox.com https://.dropboxapi.com https://.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://.pubnub.com https://docsend-prod.s3.amazonaws.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://.okta.com https://.oktapreview.com https://.jumpcloud.com https://.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob: Set-Cookie: _v_=vjGtwJuv6m%2BJ46brOZkI6H10%2F2P%2F7fDzFr%2FAsnefGkFu%2F8R1gGqxDSs63JmnNQ%2BJiAsVyK82X1FhnVZ53JphG2ikexBa3JRdf2TsK5E%3D--UaJ9YgEw%2BYHWaKvg--ZgrjPyEJ%2B7VrcS98VSUW4Q%3D%3D; domain=.docsend.com; path=/; expires=Thu, 18 Jan 2024 04:55:27 GMT; SameSite=None; secure X-Request-Id: 973a7b77-155f-482e-9bb0-2d80d0cc093e X-Runtime: 0.042077 Vary: Accept-Encoding Content-Encoding: gzip Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 8720730dce33d0026a1a354ac93d4a7d ed5f086bc646a4d93d2344b19ff7821c96e44f7c b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4853 Cache-Control: max-age=106335 Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:27 GMT Etag: "63c66529-1d7" Expires: Thu, 19 Jan 2023 10:27:42 GMT Last-Modified: Tue, 17 Jan 2023 09:06:49 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	172.217.21.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 172.217.21.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2b02c407fd912449a1b278f0bf3d8574 817bcff5b7c0444426b19027c772bddce84cf130 67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-12b86b17.css	143.204.42.157	200 OK	22 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-12b86b17.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 22 kB (21834 bytes) Hash 65b72b1a3de11fb0738d36159998c6a8 b70f6cdcbac07f7e90bcff9412f48588f37b26aa da69ab109fe0b47b7e966fc4a65974067215898c106063b6553ff4cbbadce733 HTTP Headers `GET /packs/css/javascripts/presentation-12b86b17.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Tue, 17 Jan 2023 22:46:52 GMT Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: AiNbFYrdXEufO8o2Qebm5iILN4zGo6Trii7epco6cwRianae-bgaOw== Age: 22115

	d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css	143.204.42.157	200 OK	948 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type exported SGML document, ASCII text Size 948 B (948 bytes) Hash a7ace942f4f580ee5902c36fed888af9 ca1c01b03c6763b0f458af9eea82b8f00b430141 514da21f8d0805b785cf184f4beaa6bc62f6c6de58fd489f7d9f52e9087b62e0 HTTP Headers `GET /assets/ie_specific_hacks_v2.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 01:09:32 GMT Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: l0dGZPwet3TbcH_xCNEPkRsEUai4Oc9-pyUnFsZ4pKJBy-obU5MtQg== Age: 13555

	d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-cc45d76f.css	143.204.42.157	200 OK	88 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-cc45d76f.css IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (65517) Size 88 kB (88058 bytes) Hash 67528b329e7332a144158d6ae0a74e36 e987384350f3c04f16de6d744e90689e8cf5ddd9 d76ae7ec2dfb6d0444a7576da37cda39b60efac33fe07a180f3ca4966a47cfbb HTTP Headers `GET /packs/css/stylesheets/presentation-cc45d76f.css HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Tue, 17 Jan 2023 22:46:52 GMT Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ur1MaN68DVki4f_rGg4866tESFdGuwChIuj_Z1z_vUfEwJGIDSvt8g== Age: 22115

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-debcc753ea9b1598d46a.js	143.204.42.157	200 OK	3.1 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/langpacks/en-debcc753ea9b1598d46a.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (9812), with no line terminators Size 3.1 kB (3117 bytes) Hash de7c5ec7622ba340094d26a08a8f6456 c5cbd73b7fe4926b3a4c105cc62fe9ae121d3955 f4bb0a53c94d0f17d96993314ac458bcb3cf32a34cfd9dba9197e330169f7881 HTTP Headers `GET /packs/js/javascripts/langpacks/en-debcc753ea9b1598d46a.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 00:50:04 GMT Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: YBAsvegUpdIDtmwD5P7NOTPWRWwiqKu8xTTjGgVORSQEQrHM7AO5JQ== Age: 14722

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js	143.204.42.157	200 OK	14 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (44763), with no line terminators Size 14 kB (13477 bytes) Hash fead8e8f6ce7597cf5b222435f880933 bcc41c5866acd83b64034126abb836455464023f 5707fe99d46a8836ab38f8070a97a0aa51ebadc0f693d83a740d4945f5f89c37 HTTP Headers `GET /packs/js/javascripts/error_handling-8e2e51488bdfb4cc0305.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Tue, 17 Jan 2023 21:54:31 GMT Last-Modified: Tue, 17 Jan 2023 19:36:12 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: y8kAlSxuJSKEVLUFAqLHxi-SABygXfDl4Qwmn8IH3Ugt3ji5RViqxw== Age: 25256

	d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js	143.204.42.157	200 OK	2.1 MB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65445) Size 2.1 MB (2099824 bytes) Hash cfb5d1bf904f285c4694a2d9451a77f1 5b89186dd04ae65f16c95e2f5820bfad21d102d8 be17ee84a1a76a8bb02c8d78f2066a3894e409d18eeb51f84dcd153b6db02811 HTTP Headers `GET /packs/js/javascripts/presentation-9b1f88dd6e2f34812247.js HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Tue, 17 Jan 2023 22:46:58 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 17 Jan 2023 22:33:53 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) Content-Encoding: br Vary: Accept-Encoding,Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: s08T1YW3L-ZjIUIFNIFeOP-W-cEBJIF5I8jrLr3HctTlmS2j4afcTg== Age: 22109

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c737c7ab4095c23b2852f9f69d9dc49d 6861f0e35dea6b8b44000ca3345f49bfc21ad3d0 f557eb67d3420d5e0f2e4b974686f4c3591db342ba27ab76af7effd042522ca5 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3320 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:27 GMT Last-Modified: Wed, 18 Jan 2023 04:00:07 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	172.217.21.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 172.217.21.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2b02c407fd912449a1b278f0bf3d8574 817bcff5b7c0444426b19027c772bddce84cf130 67ceddcf2eef43f1c11fc85c1398c39b5ff875a93dafbf9c4526e6d3bc5eb52a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2	143.204.42.157	200 OK	46 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data Size 46 kB (46188 bytes) Hash dfc5e24cbc1b134e0c00c61e84ec999a d3b1a8ef1d0f6f9162986479252570525719f203 b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3 HTTP Headers `GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 46188 Connection: keep-alive Server: nginx Date: Tue, 17 Jan 2023 23:24:43 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: eL9qmAmhtfQgjhyBd5DnV_2IoDvNhaoC9-8JQSq0vRlacOBgDe-Xzw== Age: 19845

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2	143.204.42.157	304 Not Modified	0 B
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site If-Modified-Since: Tue, 17 Jan 2023 21:58:17 GMT HTTP/1.1 304 Not Modified Connection: keep-alive Date: Wed, 18 Jan 2023 04:55:28 GMT Server: nginx Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront) Vary: Origin X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: lgupgCxMHpu5VVcrQK86kRXybmUor4NyO742OAc3dAs8Gxe8CXfJsw== Age: 19845

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7c58acc8ab66874496f33940fa6288ba 9df520efafb7b58335785c3b28b733021d57d659 b4bcd40c5504c7f69649d1b0ee488ef49e4ff06c4ac7d25174b346dee6ff06a6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5940 Cache-Control: max-age=123967 Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:28 GMT Etag: "63c6a5cb-1d7" Expires: Thu, 19 Jan 2023 15:21:35 GMT Last-Modified: Tue, 17 Jan 2023 13:42:35 GMT Server: ECS (amb/6BA5) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7c58acc8ab66874496f33940fa6288ba 9df520efafb7b58335785c3b28b733021d57d659 b4bcd40c5504c7f69649d1b0ee488ef49e4ff06c4ac7d25174b346dee6ff06a6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5940 Cache-Control: max-age=123967 Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:28 GMT Etag: "63c6a5cb-1d7" Expires: Thu, 19 Jan 2023 15:21:35 GMT Last-Modified: Tue, 17 Jan 2023 13:42:35 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2	143.204.42.157	200 OK	43 kB
URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2 IP 143.204.42.157:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 43308, version 1.66\012- data Size 43 kB (43308 bytes) Hash 93b6f18ec99bcb7c3fa7ea570a75e240 60b9e3062fe532cbc18b897fac542c56a03544c7 43693f7bdd6146e783fab3f75ba0a51aa3cf9530adbf790dbd686fc8a17aa3db HTTP Headers `GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1 Host: d2qvtfnm75xrxf.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://docsend.com Connection: keep-alive Referer: https://d2qvtfnm75xrxf.cloudfront.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/font-woff2 Content-Length: 43308 Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:28 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Access-Control-Expose-Headers: Access-Control-Max-Age: 604800 Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur, 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) Vary: Origin X-Cache: Miss from cloudfront X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: Y3kiBTHLzZjn3plr5CS5SDWbnGVGPWob6vGflplPILt8WDcGd-xgSg==

	docsend.com/metrics/events	3.220.57.224	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/events IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/events HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: multipart/form-data; boundary=---------------------------265986516823648819481447434295 Content-Length: 806 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/jezmrgr8v88enku5 Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f; _v_=vjGtwJuv6m%2BJ46brOZkI6H10%2F2P%2F7fDzFr%2FAsnefGkFu%2F8R1gGqxDSs63JmnNQ%2BJiAsVyK82X1FhnVZ53JphG2ikexBa3JRdf2TsK5E%3D--UaJ9YgEw%2BYHWaKvg--ZgrjPyEJ%2B7VrcS98VSUW4Q%3D%3D Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:29 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-DmInU2RdnYTVNRwM75Ahbg=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: 5058c9d4-431a-40fc-b5e7-fb0e866d9047 X-Runtime: 0.015486 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4028 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-BCqWCtc5Cu6tNHnJC5GX' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-BCqWCtc5Cu6tNHnJC5GX' 'nonce-JPuVBQLTzXiH3KleHSDq' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjI3NTk2MTY2OTg4MDQ0NjYxNzQ4MzgzNDM3ODkxNDk2OTY0MzUx; expires=Mon, 17 Jan 2028 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure t=6V8VBFGIyz5X4t5dfHDFin-L; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=6V8VBFGIyz5X4t5dfHDFin-L; expires=Sat, 17 Jan 2026 04:55:29 GMT; Path=/; SameSite=None; Secure __Host-ss=ZT-Z_c3I2c; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:55:29 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Wed, 18 Jan 2023 04:55:28 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 246baf95c617414aa2c99295eb3b8f36 X-Firefox-Spdy: h2

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 3995 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-ZxfypyNueTW2nuZmEiMc' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-ZxfypyNueTW2nuZmEiMc' 'nonce-au85wcz4aSsKBydpUidE' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=NTY0MTc2MDc2MTI4MTc0NTc0NTUxOTQ2MjUzMTA3NDM0NjU4Nzc%3D; expires=Mon, 17 Jan 2028 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure t=hAfftaLkRWO6UK5tcrSNPzNo; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=hAfftaLkRWO6UK5tcrSNPzNo; expires=Sat, 17 Jan 2026 04:55:29 GMT; Path=/; SameSite=None; Secure __Host-ss=dIozYIdZEA; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:55:29 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Wed, 18 Jan 2023 04:55:28 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 4b9edfb541b04c60b74e0dbb90dd96c6 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2" Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17681 Expires: Wed, 18 Jan 2023 09:50:10 GMT Date: Wed, 18 Jan 2023 04:55:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2" Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17681 Expires: Wed, 18 Jan 2023 09:50:10 GMT Date: Wed, 18 Jan 2023 04:55:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc 61a4de77803ce4ad730c21dd88b5b55a196f26d6 b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2" Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17681 Expires: Wed, 18 Jan 2023 09:50:10 GMT Date: Wed, 18 Jan 2023 04:55:29 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7361 bytes) Hash 26fa7bd40b5c3a3b5a6f95e7fca843b9 d8064f74f1e40bf6be4ea8ab4e319db22026c462 3e7744acf3e7ace6931c28cb5a5d3d7a77d9b97855b864c5c774368f2d0719c1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd03bc60-bcfc-42c6-a1a0-0631c979fdd4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7361 x-amzn-requestid: 54e3621a-ec24-4d56-85bf-84239fa7811e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e23ZvGtnIAMFivg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c5d2a4-7ce0e7924c03aeaa3ea684c3;Sampled=0 x-amzn-remapped-date: Mon, 16 Jan 2023 22:41:40 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: hamm4_4ud3QWXK2EeTcYUSN7ot6m-d-1z_NN29tSFYP25Itmz25jaA== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Tue, 17 Jan 2023 22:18:31 GMT age: 23818 etag: "d8064f74f1e40bf6be4ea8ab4e319db22026c462" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (13848 bytes) Hash 8656702f08344d3a4658bc43a9074a1f fba424e1d09cbdc839ca320458b51715dafbbccc 0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13848 x-amzn-requestid: 160148de-85b1-4456-a580-e079f391f979 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e6A0gErTIAMF_eQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c714e9-52efcd642bd209373b16cf72;Sampled=0 x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: ARZobaKhEsHSEJdma3SXwCn_IKwRJaDbgjHfq_p_0HypKFWoqJIOJw== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Tue, 17 Jan 2023 21:52:59 GMT age: 25350 etag: "fba424e1d09cbdc839ca320458b51715dafbbccc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg	34.120.237.76	200 OK	7.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.9 kB (7871 bytes) Hash 8069887e5e81584380ef3f819bcfab6e 3794126935a3e08de469ea37d29cba7be412d408 934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7871 x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e6A1UGmeoAMFzpA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0 x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Xwxzja4wdr7AfJC7BU10NpD4zbhg8MLdQ35gmo9LP75IFy9WDaDInw== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Tue, 17 Jan 2023 21:53:53 GMT age: 25296 etag: "3794126935a3e08de469ea37d29cba7be412d408" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13111 bytes) Hash d134f7ac9a5ca8ab7a9461bd20706bb7 aa47af3e7517390d10e89f0f18237cfdcc63cbed 3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13111 x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e0MStGBBIAMFXag= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0 x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg== via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Wed, 18 Jan 2023 03:29:16 GMT age: 5173 etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8889 bytes) Hash 816accd72419764cabc1d038af58446c ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08 d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8889 x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e6A1eHMCoAMF4kA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0 x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Wed, 18 Jan 2023 00:41:55 GMT etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08" content-type: image/jpeg age: 15214 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5663 bytes) Hash 4ec6c49f056e786896d54fe22c242391 cc6b64ff3f09853843b62e555456a1ad9f0909fb 42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5663 x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e6A0gF5goAMFveA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0 x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Tue, 17 Jan 2023 22:10:07 GMT age: 24322 etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	172.217.21.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 172.217.21.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e7d3349e6da76cd19f99fe1c04096482 808decdfe73ff4f6a6fecca63f35fafc9d774f03 6cda8ccb829aca73ca5a2ebb589e69ace81033776ffb502b9def93bcff04fb4d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	docsend.com/favicon-196x196.png	3.220.57.224	200 OK	4.1 kB
URL HTTP/1.1 docsend.com/favicon-196x196.png IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data Size 4.1 kB (4131 bytes) Hash 6664c3890e329c7609151e0081f5e7cb 6216d5de79d8b245676a86f8b862880837345e2a 8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568 HTTP Headers GET /favicon-196x196.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/jezmrgr8v88enku5 Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f; _v_=vjGtwJuv6m%2BJ46brOZkI6H10%2F2P%2F7fDzFr%2FAsnefGkFu%2F8R1gGqxDSs63JmnNQ%2BJiAsVyK82X1FhnVZ53JphG2ikexBa3JRdf2TsK5E%3D--UaJ9YgEw%2BYHWaKvg--ZgrjPyEJ%2B7VrcS98VSUW4Q%3D%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:29 GMT Content-Type: image/png Content-Length: 4131 Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false	143.204.55.62	200 OK	854 B
URL HTTP/2 consent.dropbox.com/?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false IP 143.204.55.62:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 854 B (854 bytes) Hash dc63fb23d6563676b3090bae3f02ccde dd6c4202705f760dd5744caee7ccb31f703fc880 c8bce4b4bc1b212ffc445ae939680990a6f4b23eed318c8b9a7f1e21facd1ab1 HTTP Headers GET /?hide_gdpr=false&is_ccpa_enabled=true&gpc_signal=undefined&origin=https%253A%252F%252Fdocsend.com&sandbox_redirect=false HTTP/1.1 Host: consent.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: t=C-QObvO6QB7Yza7Fs9UsxdWi; locale=en Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/html content-length: 854 last-modified: Tue, 06 Sep 2022 19:00:36 GMT x-amz-version-id: jF1fSWiqtJx.5E0VeuXfyr4mbqFqvdbZ server: AmazonS3 date: Wed, 18 Jan 2023 02:47:42 GMT etag: "dc63fb23d6563676b3090bae3f02ccde" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: wQPES-WD4GNKHusaWlDs8ymJZoiOiQl_Adr7aLufmBdc2yWPqgdWhA== age: 7668 X-Firefox-Spdy: h2`

	cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflI8ZUCf.js	104.16.99.29	200 OK	66 kB
URL HTTP/2 cfl.dropboxstatic.com/static/metaserver/static/pithos/privacy_consent.bundle-vflI8ZUCf.js IP 104.16.99.29:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (43532), with LF, NEL line terminators Size 66 kB (66050 bytes) Hash 01415c98e294dc3e7db15e819cef8b6b 4d3686a406faa26ca5fbaf75fd1bc01974614fe6 82c09b9b6b7abb767d1f9ecaf253ed6460626094aedb02f24614a04a16cfdbcb HTTP Headers `GET /static/metaserver/static/pithos/privacy_consent.bundle-vflI8ZUCf.js HTTP/1.1 Host: cfl.dropboxstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 18 Jan 2023 04:55:28 GMT content-type: text/javascript; charset=utf-8 vary: Accept-Encoding last-modified: Tue, 20 Dec 2022 08:52:44 GMT x-dropbox-request-id: 2bb78e657fc90cefd800677024a2b164 x-content-type-options: nosniff x-cached: HIT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * timing-allow-origin: https://www.dropbox.com cf-cache-status: HIT age: 2461239 server: cloudflare cf-ray: 78b4bd12ed90b4ed-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	lh3.googleusercontent.com/a/AATXAJzylG4p7Km3P_EINxzIx61QreAcCQSOCQV9ukFl=s96-c	142.250.74.97	200 OK	820 B
URL HTTP/2 lh3.googleusercontent.com/a/AATXAJzylG4p7Km3P_EINxzIx61QreAcCQSOCQV9ukFl=s96-c IP 142.250.74.97:0 ASN #15169 GOOGLE File type PNG image data, 96 x 96, 8-bit/color RGB, non-interlaced\012- data Size 820 B (820 bytes) Hash a574eb148aa567a10a34835118a2b33f 9c4826c553fec42ab14f7e8fd3d29d10e4dff6d8 0647c0c872deb55b46dfa4a171453b565a5e3df109bf86cf4ecf0a5b240e8db4 HTTP Headers `GET /a/AATXAJzylG4p7Km3P_EINxzIx61QreAcCQSOCQV9ukFl=s96-c HTTP/1.1 Host: lh3.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-expose-headers: Content-Length expires: Thu, 19 Jan 2023 04:55:29 GMT cache-control: public, max-age=86400, no-transform content-disposition: inline;filename="unnamed.png" content-type: image/png vary: Origin access-control-allow-origin: * timing-allow-origin: * x-content-type-options: nosniff date: Wed, 18 Jan 2023 04:55:29 GMT server: fife content-length: 820 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	172.217.21.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 172.217.21.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e7d3349e6da76cd19f99fe1c04096482 808decdfe73ff4f6a6fecca63f35fafc9d774f03 6cda8ccb829aca73ca5a2ebb589e69ace81033776ffb502b9def93bcff04fb4d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 18 Jan 2023 04:55:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	docsend.com/favicon-16x16.png	3.220.57.224	200 OK	393 B
URL HTTP/1.1 docsend.com/favicon-16x16.png IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 393 B (393 bytes) Hash a8c678babc40c4ac6d8c70fc560094d4 66002c0719ddbd75c837f5a939689ea6df13b6dc a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/view/jezmrgr8v88enku5 Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f; _v_=vjGtwJuv6m%2BJ46brOZkI6H10%2F2P%2F7fDzFr%2FAsnefGkFu%2F8R1gGqxDSs63JmnNQ%2BJiAsVyK82X1FhnVZ53JphG2ikexBa3JRdf2TsK5E%3D--UaJ9YgEw%2BYHWaKvg--ZgrjPyEJ%2B7VrcS98VSUW4Q%3D%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:29 GMT Content-Type: image/png Content-Length: 393 Last-Modified: Tue, 17 Jan 2023 21:58:17 GMT Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur`

	docsend.com/metrics/properties	3.220.57.224	204 No Content	0 B
URL HTTP/1.1 docsend.com/metrics/properties IP 3.220.57.224:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /metrics/properties HTTP/1.1 Host: docsend.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-CSRF-Token: RkXDdE6Mg35RzDDGDPlArLs+wpZRdEH1+3TvRSfEp7u7uXB3sQQ7j1oIt11rZI5/YBDo0ZRrTlCAlB4O63+RtQ== X-Requested-With: XMLHttpRequest Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/view/jezmrgr8v88enku5 Cookie: _dss_=81dd8ca5a556c4f5fa640d9c9677f93f; _v_=vjGtwJuv6m%2BJ46brOZkI6H10%2F2P%2F7fDzFr%2FAsnefGkFu%2F8R1gGqxDSs63JmnNQ%2BJiAsVyK82X1FhnVZ53JphG2ikexBa3JRdf2TsK5E%3D--UaJ9YgEw%2BYHWaKvg--ZgrjPyEJ%2B7VrcS98VSUW4Q%3D%3D Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 HTTP/1.1 204 No Content Content-Length: 0 Connection: keep-alive Server: nginx Date: Wed, 18 Jan 2023 04:55:29 GMT X-Frame-Options: DENY Cache-Control: no-cache Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com https://bat.bing.com https://www.clarity.ms https://connect.facebook.net https://www.facebook.com https://ct.capterra.com https://cdn.madkudu.com https://dc.ads.linkedin.com https://api.mutinyhq.io https://a.quora.com https://www.youtube.com https://www.dropbox.com https://cfl.dropboxstatic.com 'nonce-0oA9PfiT21e9pH4De1TP0Q=='; report-uri https://www.dropbox.com/csp_log?policy_name=docsend X-Request-Id: f296a07d-0de2-4299-af54-2075272f80fe X-Runtime: 0.007590 Strict-Transport-Security: max-age=31556952; includeSubDomains; preload Via: 1.1 vegur

	www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service	162.125.71.18	200 OK	9.4 kB
URL HTTP/2 www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type ASCII text, with very long lines (53608) Size 9.4 kB (9412 bytes) Hash 530f49198bc4c8343ccd05e1f5224670 34c4c245a10ba4085b36ae84a2e80c008233be22 8fa81949dec16b09e5b91ffaa4a830434ed7db96a7cd49772699a7db244e47f6 HTTP Headers GET /pithos/host%3Aconsent.dropbox.com/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MTM3MTA5MzI1NTc2NjgwODAxNjg2MDk1NDIzMDQ0NjE4NTk3Mjcw; t=C-QObvO6QB7Yza7Fs9UsxdWi; __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; locale=en; __Host-logged-out-session=ChDTMNQiCueJSPniePCLzf4VEMD3nZ4GGi5BRmloVFZXdFNjSkNKNTdvYnZYNFBYYzE4NlRobkZBQ3FrUnFQbUNkVXBjS2tn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK cache-control: no-cache,no-cache, no-store content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-bUpfW1CfFzL8R4/cMkhy' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-bUpfW1CfFzL8R4/cMkhy' 'nonce-tLLW+jsjIZ6RR7VAwrF9' referrer-policy: strict-origin-when-cross-origin set-cookie: t=C-QObvO6QB7Yza7Fs9UsxdWi; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; expires=Sat, 17 Jan 2026 04:55:29 GMT; Path=/; SameSite=None; Secure __Host-ss=Bb7TYEL_Fs; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 14 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Wed, 18 Jan 2023 04:55:29 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: a17a0dbd7ebe43a8ab7eb815dbed7b12 X-Firefox-Spdy: h2

	www.dropbox.com/pithos/privacy_consent_service	162.125.71.18	307 Temporary Redirect	20 kB
URL HTTP/2 www.dropbox.com/pithos/privacy_consent_service IP 162.125.71.18:0 ASN #19679 DROPBOX File type ASCII text, with very long lines (65352), with CRLF line terminators Size 20 kB (19764 bytes) Hash 0cb0c1e30ff132c1e3113f34e7804436 2ec0b436d3b8174b2bf54ff4d4cf40f8d07fe8ae d979d1bc065ac75a0a2a8117b5938addf07a7505a0f7e890417369cf4f5c77c2 HTTP Headers GET /pithos/privacy_consent_service HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Cookie: gvc=MTM3MTA5MzI1NTc2NjgwODAxNjg2MDk1NDIzMDQ0NjE4NTk3Mjcw; t=C-QObvO6QB7Yza7Fs9UsxdWi; __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; locale=en; __Host-logged-out-session=ChDTMNQiCueJSPniePCLzf4VEMD3nZ4GGi5BRmloVFZXdFNjSkNKNTdvYnZYNFBYYzE4NlRobkZBQ3FrUnFQbUNkVXBjS2tn Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 307 Temporary Redirect cache-control: no-cache,no-cache, no-store content-security-policy: sandbox location: https://www.dropbox.com/pithos/host%3Aconsent.dropbox.com/privacy_consent_service referrer-policy: strict-origin-when-cross-origin set-cookie: t=C-QObvO6QB7Yza7Fs9UsxdWi; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; expires=Sat, 17 Jan 2026 04:55:29 GMT; Path=/; SameSite=None; Secure __Host-ss=Bb7TYEL_Fs; expires=Sat, 17 Jan 2026 04:55:29 GMT; HttpOnly; Path=/; SameSite=Strict; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/html; charset=utf-8 date: Wed, 18 Jan 2023 04:55:29 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: b9dccbc6eb6e47bea5d6cc3897741868 X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/translations/en.js	104.88.23.136	200 OK	6.4 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/translations/en.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (41349), with no line terminators Size 6.4 kB (6406 bytes) Hash 7cdb0408336768c3c8697de7fe062fed 455d1237f3256aba83c5102b10212f8bc767bf22 f5c051f3693f6e0a92a0576bbdc74de8c243ec02c5232e49c919999fe1c79ece HTTP Headers `GET /sitenotice/3401/translations/en.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "92ddb3e3355b422d8513e225548bbf64:1664899591.798772" last-modified: Tue, 04 Oct 2022 16:06:31 GMT server: AkamaiNetStorage content-encoding: gzip expires: Fri, 20 Jan 2023 04:55:29 GMT date: Wed, 18 Jan 2023 04:55:29 GMT content-length: 6406 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/3401/dropbox/settings.js	104.88.23.136	301 Moved Permanently	0 B
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settings.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sitenotice/3401/dropbox/settings.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently server: AkamaiGHost content-length: 0 location: https://c.evidon.com/sitenotice/3401/dropbox/settingsV2.js date: Wed, 18 Jan 2023 04:55:29 GMT vary: Origin cache-control: max-age=432000, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2`

	c.evidon.com/sitenotice/3401/dropbox/settingsV2.js	104.88.23.136	200 OK	1.7 kB
URL HTTP/2 c.evidon.com/sitenotice/3401/dropbox/settingsV2.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (5082), with no line terminators Size 1.7 kB (1691 bytes) Hash 181b62cb4ca1877b5952d8864d1ddb04 ebae59485369852733c2648e907227b2a7666bc5 425ce9a30e4efd92bce6af1d1c99a07a276691e091e66dccb9c50746a1830e0f HTTP Headers `GET /sitenotice/3401/dropbox/settingsV2.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://consent.dropbox.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "7119db14253f426ac1ed52da3fd5d054:1662485692.434043" last-modified: Tue, 06 Sep 2022 17:34:52 GMT server: AkamaiNetStorage content-encoding: gzip expires: Fri, 20 Jan 2023 04:55:29 GMT date: Wed, 18 Jan 2023 04:55:29 GMT content-length: 1691 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	c.evidon.com/sitenotice/evidon-banner.js	104.88.23.136	200 OK	3.5 kB
URL HTTP/2 c.evidon.com/sitenotice/evidon-banner.js IP 104.88.23.136:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (12607), with no line terminators Size 3.5 kB (3535 bytes) Hash 304674456118422bd448366f7bb05879 c6549199a4fb419c05a3513238a89002307034b9 29f57f0aeee0a530b881df6908e653f58c6d570b05174b2e1a6bba2a75c4e068 HTTP Headers `GET /sitenotice/evidon-banner.js HTTP/1.1 Host: c.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "953f08dcce4b8af3f743056f673c8514:1671558610.744236" last-modified: Tue, 20 Dec 2022 17:50:10 GMT server: AkamaiNetStorage content-encoding: gzip expires: Fri, 20 Jan 2023 04:55:29 GMT date: Wed, 18 Jan 2023 04:55:29 GMT content-length: 3535 vary: Accept-Encoding, Origin cache-control: max-age=172800, private;max-age=86400 access-control-max-age: 108000 access-control-allow-origin: access-control-allow-headers: * access-control-allow-methods: GET,OPTIONS,POST X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	200 OK	0 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type Referer: https://docsend.com/ Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At access-control-allow-methods: POST access-control-allow-origin: * content-length: 0 date: Wed, 18 Jan 2023 04:55:29 GMT server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: a4f5870cd7974a0f9712fddd506cd9f8 X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 48d02ac5cccbaece8636b20ac03136aa dac54ca36f2ae43dd4770dfa2f37dbe94b2f26f4 f827633149251fa94f54653100a41f50499916ffd3b431d6fc3b6e8476a6c5c8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=126270 Date: Wed, 18 Jan 2023 04:55:30 GMT Etag: "63c6b6ca-1d7" Expires: Thu, 19 Jan 2023 16:00:00 GMT Last-Modified: Tue, 17 Jan 2023 14:55:06 GMT Server: ECS (bsa/EB1E) X-Cache: Miss from cloudfront Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: lxUJ7YuQh0ArmFUVRN7YCl23VxFJfpe9rJ0HbE-2MH4GkUpL-fdtpA== Age: 3894

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 48d02ac5cccbaece8636b20ac03136aa dac54ca36f2ae43dd4770dfa2f37dbe94b2f26f4 f827633149251fa94f54653100a41f50499916ffd3b431d6fc3b6e8476a6c5c8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=128271 Date: Wed, 18 Jan 2023 04:55:30 GMT Etag: "63c6b6ca-1d7" Expires: Thu, 19 Jan 2023 16:33:21 GMT Last-Modified: Tue, 17 Jan 2023 14:55:06 GMT Server: ECS (nyb/1D0C) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Q2X_zWUtLKK_OI7pHFDEIvyGEYBHXpBU8P3E1EDRzRYQASOlSA79UQ== Age: 5895

	www.dropbox.com/csp_log?policy_name=docsend	162.125.71.18	204 No Content	0 B
URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /csp_log?policy_name=docsend HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/csp-report Content-Length: 4028 Origin: https://docsend.com Connection: keep-alive Sec-Fetch-Dest: report Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 204 No Content cache-control: no-cache,no-cache, no-store content-disposition: attachment content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-ZnAK7Yl1oYJH3Tp3NiDF' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-ZnAK7Yl1oYJH3Tp3NiDF' 'nonce-+dJBDaIqrhSeuoLUzX7J' referrer-policy: strict-origin-when-cross-origin set-cookie: gvc=MjE2NDU3NTMwNTkyOTAzMzkxNTY5MzQ1Nzg5NDExNjcwOTM0MDI0; expires=Mon, 17 Jan 2028 04:55:30 GMT; HttpOnly; Path=/; SameSite=None; Secure t=pJW9lquQdprtsudAG8zpH5vw; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:30 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=pJW9lquQdprtsudAG8zpH5vw; expires=Sat, 17 Jan 2026 04:55:30 GMT; Path=/; SameSite=None; Secure __Host-ss=5pCjEb1jss; expires=Sat, 17 Jan 2026 04:55:30 GMT; HttpOnly; Path=/; SameSite=Strict; Secure locale=en; Domain=dropbox.com; expires=Mon, 17 Jan 2028 04:55:30 GMT; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block content-type: text/plain; charset=utf-8 date: Wed, 18 Jan 2023 04:55:30 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: cdae4337fb9b4188b1c0d0d680c559ba X-Firefox-Spdy: h2

	d.dropbox.com/crashdash/proxy/sessions	162.125.7.20	202 Accepted	21 B
URL HTTP/2 d.dropbox.com/crashdash/proxy/sessions IP 162.125.7.20:0 ASN #19679 DROPBOX File type JSON data\012- , ASCII text, with no line terminators Size 21 B (21 bytes) Hash 1807ffa1d44e667592a0f91c668ba65b 4d48849fa0f6917c9c57ed958680e9a1e722382b 0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a HTTP Headers POST /crashdash/proxy/sessions HTTP/1.1 Host: d.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Bugsnag-Api-Key: 0bca6a0a-c303-4b27-84cb-60ebe421858a Bugsnag-Payload-Version: 1 Bugsnag-Sent-At: 2023-01-18T04:55:28.243Z Content-Length: 465 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 202 Accepted access-control-allow-origin: * alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 bugsnag-session-uuid: 14e6b009-b284-414a-8bd7-9936c7770d3c content-security-policy: sandbox; default-src 'none'; frame-ancestors 'none' content-type: application/json date: Wed, 18 Jan 2023 04:55:30 GMT referrer-policy: strict-origin-when-cross-origin via: 1.1 google x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 21 server: envoy x-dropbox-response-origin: far_remote x-dropbox-request-id: 6fb031709abd4bdaa6ac32a51baea7e8 X-Firefox-Spdy: h2

	l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	54.84.70.3	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 54.84.70.3:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/4/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Wed, 18 Jan 2023 04:55:30 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F	54.84.70.3	204 No Content	0 B
URL HTTP/2 l.evidon.com/site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F IP 54.84.70.3:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /site/v3/3401/59514/1/1/2/2/104138?consent=0&regulationid=0&regulationconsenttypeid=1&d=https%3A%2F%2Fdocsend.com%2F HTTP/1.1 Host: l.evidon.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://consent.dropbox.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 204 No Content date: Wed, 18 Jan 2023 04:55:30 GMT x-powered-by: Express etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2`

	widget.intercom.io/widget/lv6lji7h	54.230.111.53	200 OK	6.2 kB
URL HTTP/2 widget.intercom.io/widget/lv6lji7h IP 54.230.111.53:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators Size 6.2 kB (6172 bytes) Hash 7cea0ae85c44d1eba596f54bc9237044 5776d7f17ebf0c79c0e3caec5fd233f0168f7718 1e2fcea3450e6980628ee39214dc63109030725a6d9549dce329fa6ec532fc8a HTTP Headers `GET /widget/lv6lji7h HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 6172 last-modified: Tue, 17 Jan 2023 16:19:37 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: It1kzSlwuBxt8YfPWH7YUXzb44X60J9e accept-ranges: bytes server: AmazonS3 date: Wed, 18 Jan 2023 04:41:33 GMT cache-control: max-age=900, s-maxage=900, public etag: "7cea0ae85c44d1eba596f54bc9237044" x-cache: Error from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: mCTbaqFZnm6CYuywbIf6EQ78joImCZ8l9vyoEFpEmj12G1hF7oEPrQ== age: 839 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	js.intercomcdn.com/frame.fa6b8de5.js	54.230.111.118	200 OK	139 kB
URL HTTP/2 js.intercomcdn.com/frame.fa6b8de5.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 139 kB (139150 bytes) Hash 244b6c420a9aa582bf878e60f1cdb2f2 ebc9b83485e9fa1c3fef1d0ce1d3c7a1e4b1eea0 6ea2000b3918a5db65674b6b0cd25904395a6e459d8ad9e3f259d11cb41704fc HTTP Headers `GET /frame.fa6b8de5.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 139150 last-modified: Tue, 17 Jan 2023 16:18:07 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: V0mkPrPa1yXkQW9MCkW0JrOLEYfIisOJ accept-ranges: bytes server: AmazonS3 date: Wed, 18 Jan 2023 03:28:45 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "244b6c420a9aa582bf878e60f1cdb2f2" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: FMNKtewk-7PwdkRlGgBHNBpx1W0cCLyt1Iot4egVnCOsbvB2ZsRgDw== age: 5205 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 0c853c7098dbba4fb67b3355b2f31c7f 8aff517def043bc74d20d1a4de44428b49666dce 2286a744386ec84c215dd583d8a45f2210d22fb1096bfefa275adc4c240885e0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Wed, 18 Jan 2023 04:55:30 GMT Last-Modified: Wed, 18 Jan 2023 03:14:04 GMT Server: ECS (bsa/EB23) X-Cache: Miss from cloudfront Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: TqIxYuTgZG5nwdPPxzvZUxsY3MiZURS_ln75rNZp6onxmE_fMRgS-w== Age: 6086`

	nexus-websocket-a.intercom.io/pubsub/5-BDwPm8AsJCphMtCYwHL6zEG7qzSpwgTYddg-N_Vz63G_NqgXQAiGq01yepdPfJ-AZTcq8RdkCuw0Oj84RoVIx_g2FBDwre2CWBKV?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	35.174.127.31	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-BDwPm8AsJCphMtCYwHL6zEG7qzSpwgTYddg-N_Vz63G_NqgXQAiGq01yepdPfJ-AZTcq8RdkCuw0Oj84RoVIx_g2FBDwre2CWBKV?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 35.174.127.31:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-BDwPm8AsJCphMtCYwHL6zEG7qzSpwgTYddg-N_Vz63G_NqgXQAiGq01yepdPfJ-AZTcq8RdkCuw0Oj84RoVIx_g2FBDwre2CWBKV?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://docsend.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Tircd1/8GF+xi7bgSqr8OQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Wed, 18 Jan 2023 04:55:32 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: 1QIyc6uL8nbKcxapv0ufbSP981s= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	api-iam.intercom.io/messenger/web/ping	34.230.202.181	200 OK	1.4 kB
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 34.230.202.181:0 ASN #14618 AMAZON-AES File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (3067), with no line terminators Size 1.4 kB (1420 bytes) Hash 65cd96544bae0898a75064116714007a 32de3709b6a002bbcfe4a6a6b6034e66a2e27f60 dbc7ad4951f0dc50cd75302194b6bedfb916cc9f6c6e3f8e40f043d685d242b4 HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 467 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Wed, 18 Jan 2023 04:55:32 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1674017740 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13324 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 67c61f1008408fd5c55324ccba9cd151d4da6fea x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0036odfo0iqobseaiee0 access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"645192a4281eb7896b45122327bfa517" x-runtime: 0.273969 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0705273452fc644ba X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	34.230.202.181	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 34.230.202.181:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 354 Origin: https://docsend.com Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 18 Jan 2023 04:55:31 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1674017740 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13328 access-control-allow-origin: https://docsend.com vary: Accept,Accept-Encoding x-intercom-version: 67c61f1008408fd5c55324ccba9cd151d4da6fea x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 00052pqoss8g5onkhcrg access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"399099ae8e2b5f1a5fcd439264799ae8" x-runtime: 0.346010 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0705273452fc644ba X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 18 Jan 2023 04:55:27 GMT date: Wed, 18 Jan 2023 04:55:27 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent	162.125.71.18	200 OK	0 B
URL HTTP/2 www.dropbox.com/pithos/host%3Adocsend.com/privacy_consent IP 162.125.71.18:0 ASN #19679 DROPBOX File type Size 0 B (0 bytes) Hash HTTP Headers GET /pithos/host%3Adocsend.com/privacy_consent HTTP/1.1 Host: www.dropbox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://docsend.com/ Connection: keep-alive Cookie: gvc=MTM3MTA5MzI1NTc2NjgwODAxNjg2MDk1NDIzMDQ0NjE4NTk3Mjcw; t=C-QObvO6QB7Yza7Fs9UsxdWi; __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; locale=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK cache-control: no-cache,no-cache, no-store content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:/ws ; default-src 'none' ; font-src https:// data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://a.sprig.com/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client https://canny.io/sdk.js 'nonce-bUpfW1CfFzL8R4/cMkhy' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-bUpfW1CfFzL8R4/cMkhy' 'nonce-tLLW+jsjIZ6RR7VAwrF9' referrer-policy: strict-origin-when-cross-origin set-cookie: t=C-QObvO6QB7Yza7Fs9UsxdWi; Domain=dropbox.com; expires=Sat, 17 Jan 2026 04:55:28 GMT; HttpOnly; Path=/; SameSite=None; Secure __Host-js_csrf=C-QObvO6QB7Yza7Fs9UsxdWi; expires=Sat, 17 Jan 2026 04:55:28 GMT; Path=/; SameSite=None; Secure __Host-ss=Bb7TYEL_Fs; expires=Sat, 17 Jan 2026 04:55:28 GMT; HttpOnly; Path=/; SameSite=Strict; Secure __Host-logged-out-session=ChDTMNQiCueJSPniePCLzf4VEMD3nZ4GGi5BRmloVFZXdFNjSkNKNTdvYnZYNFBYYzE4NlRobkZBQ3FrUnFQbUNkVXBjS2tn; HttpOnly; Path=/; SameSite=None; Secure x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-server-response-time: 20 x-xss-protection: 1; mode=block content-type: text/javascript; charset=UTF-8 date: Wed, 18 Jan 2023 04:55:28 GMT server: envoy strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip vary: Accept-Encoding x-dropbox-response-origin: far_remote x-dropbox-request-id: 785482221e45470c82ddc98313ec85b0 X-Firefox-Spdy: h2

	js.intercomcdn.com/vendor.1e18dfa4.js	54.230.111.118	200 OK	0 B
URL HTTP/2 js.intercomcdn.com/vendor.1e18dfa4.js IP 54.230.111.118:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /vendor.1e18dfa4.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://docsend.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 108267 last-modified: Tue, 17 Jan 2023 16:18:07 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: QczBrcXcTl7MhGG7iblh5Uwoli9s8sQn accept-ranges: bytes server: AmazonS3 date: Wed, 18 Jan 2023 03:25:52 GMT cache-control: max-age=31536000, s-maxage=7200, public etag: "0150ec6d79e062df337a1b4861633e7a" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 7ykuZ8YeGbv2h-3qePNv8dUDBMXqn9aMph7KIBuAznEL0ZLyJ1fjkQ== age: 5378 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL