firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 21:05:27 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D7lCdiGYAfVd_MLps4bvSnEurN6DYPNXaKSgqH2zyjMBKJVRh3RRAA==
Age: 940
links.gciadvisory.com/prod/ddd7b700-abeb-4a2a-88e7-683dbe5070db/146015fd-129f-473d-b94a-5d49451e1f6c
34.204.222.45302 Found 276 B URL HTTP/1.1 links.gciadvisory.com/prod/ddd7b700-abeb-4a2a-88e7-683dbe5070db/146015fd-129f-473d-b94a-5d49451e1f6c
IP 34.204.222.45:0
File type HTML document, ASCII text, with no line terminators
Hash d2eec28fa9246b0d75e4b1b911a0bd2d
c87635fdce4ab9148a821347b147f47714caf070
6aa10fd0902d100048204362bb44b3a41651ba19e198463a68ade1144cde1c9e
Analyzer Verdict Alert fortinet Phishing
GET /prod/ddd7b700-abeb-4a2a-88e7-683dbe5070db/146015fd-129f-473d-b94a-5d49451e1f6c HTTP/1.1
Host: links.gciadvisory.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 08 Sep 2022 21:21:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 276
Connection: keep-alive
X-Powered-By: Express
Location: https://docsend.com/view/dkdhrb46y5excf7x?email=ron.keating@evoqua.com&msID=146015fd-129f-473d-b94a-5d49451e1f6c
Vary: Accept
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8065
Expires: Thu, 08 Sep 2022 23:35:32 GMT
Date: Thu, 08 Sep 2022 21:21:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7yyw6rzcRc-P4h7xO4BToexKOk7F33bvbbi0ytZ2cP8UrPSGGpN6dw==
age: 63273
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 21:21:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 36f3d89c233bebb8d5e272ba15659e87
c178ceac22babd5a712e0284bb3c129529bd3d46
e424cc9519af31cfb63d202234f319628870ac46cf22ebeee84a58702bf365d2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 21:21:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 08:41:14 GMT
Expires: Tue, 13 Sep 2022 08:41:13 GMT
Etag: "c178ceac22babd5a712e0284bb3c129529bd3d46"
Cache-Control: max-age=385805,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747abb688c13b4f7-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 20:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 21:33:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P6BdUFEg_haB_qJer3dXj_HiDvITagavhfxCeweL5WWQCmTxdoivpQ==
Age: 2570
docsend.com/view/dkdhrb46y5excf7x?email=ron.keating@evoqua.com&msID=146015fd-129f-473d-b94a-5d49451e1f6c
3.220.57.224302 Found 122 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x?email=ron.keating@evoqua.com&msID=146015fd-129f-473d-b94a-5d49451e1f6c
IP 3.220.57.224:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 8f81d0e49f9fcf49691a83cef73d9e23
8287456e9fc0c631f18ee5afe0f9cef1750b5d00
2e4bbf525c4e1071db1003e98439e0423fb4d59d119d20207eeabbacdde2e4d7
GET /view/dkdhrb46y5excf7x?email=ron.keating@evoqua.com&msID=146015fd-129f-473d-b94a-5d49451e1f6c HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Location: https://docsend.com/view/dkdhrb46y5excf7x
Cache-Control: no-cache
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-f755ec09-4d6c-47c5-aa6f-3bc39f067c33'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=OzaStkEidfwp4OfL7pod38Q7YnqN1vkrED0DP%2FiouzB3ik7Iv56gZ1tjhuhOU0eFLNa3CSDihtYxYwx9bREZ0%2BoFe99MB2sqkbjO2g4%3D--5OOcj3EVGrpN5t9I--ozUdluXlRUWTT6Djyf5omQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:08 GMT; SameSite=None; secure
X-Request-Id: f755ec09-4d6c-47c5-aa6f-3bc39f067c33
X-Runtime: 0.030956
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4535
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:08 GMT
Last-Modified: Thu, 08 Sep 2022 20:05:33 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
docsend.com/view/dkdhrb46y5excf7x
3.220.57.224200 OK 9.9 kB URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x
IP 3.220.57.224:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5479)
Hash cdc2177e832d3273c83b9922121eded6
4807d274fbcd9c93283ebd07c1eafa91ef001987
d0d371d7f0630e6b6ea336220c63d4936736719fcd45fb83c817a658ad820d68
GET /view/dkdhrb46y5excf7x HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _v_=OzaStkEidfwp4OfL7pod38Q7YnqN1vkrED0DP%2FiouzB3ik7Iv56gZ1tjhuhOU0eFLNa3CSDihtYxYwx9bREZ0%2BoFe99MB2sqkbjO2g4%3D--5OOcj3EVGrpN5t9I--ozUdluXlRUWTT6Djyf5omQ%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:08 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"d883629776b4f4816d6d300206bd4e77"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-4cad09fe-d2b3-43cc-b9eb-f74c8dc8e711'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:08 GMT; SameSite=None; secure
_us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; domain=.docsend.com; path=/; expires=Mon, 08 Sep 2042 21:21:08 GMT; SameSite=None; secure
_dss_=5765142efe7cbff41a1d0bac96bc46bf; domain=.docsend.com; path=/; secure; HttpOnly; SameSite=None
X-Request-Id: 4cad09fe-d2b3-43cc-b9eb-f74c8dc8e711
X-Runtime: 0.102895
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
143.204.42.157200 OK 1.1 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/ie_specific_hacks_v2.css
IP 143.204.42.157:0
File type exported SGML document, ASCII text
Hash bbc69624a20b8d57a7458613a8110b16
6470f6a015cc44f124428068148414aa87ff46d8
1a81d283b47e65d2f74c42feade056f00bd66ede16b17e8767556066e650f6da
GET /assets/ie_specific_hacks_v2.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 06 Sep 2022 22:59:16 GMT
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
Date: Thu, 08 Sep 2022 01:22:42 GMT
Cache-Control: no-transform
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _eZNl4Pa231ja2r8dXdnQTZmJYLHC4nM2OjjTXs-UtWI4vyc3EvzeA==
Age: 72843
d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-07584490.css
143.204.42.157200 OK 70 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/stylesheets/presentation-07584490.css
IP 143.204.42.157:0
File type Unicode text, UTF-8 text, with very long lines (65517)
Hash c1a745b154035e6e2fd8351f4c82d381
c6c9bd117356bf7f15b22ff7e8ad5a1df8df2ebf
18d66368f36a5227f21017dc0404a9c5436cfacf07c7a253689f21f1b275a6a0
GET /packs/css/stylesheets/presentation-07584490.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 70524
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:03:02 GMT
Last-Modified: Thu, 08 Sep 2022 20:54:59 GMT
Cache-Control: public, max-age=86400
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: i2oQQSpMKGlxPqLA28yj8n3YgIxYGOiVvEVBk_sj-lIxiHXB1RYVZQ==
Age: 1085
d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-607cebb9.css
143.204.42.157200 OK 22 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/css/javascripts/presentation-607cebb9.css
IP 143.204.42.157:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d856e8342a7dea4296c5845534ecd832
f85c55004d6e614371ad3d63cbeaa97158615344
3bdbe832350830ea1fa6670946f9a162ec126f2d89d67966bb8cc08a535eff80
GET /packs/css/javascripts/presentation-607cebb9.css HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 22529
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:03:02 GMT
Last-Modified: Thu, 08 Sep 2022 20:54:59 GMT
Cache-Control: public, max-age=86400
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Km_WBZCAzk7euiZ-bq5xxjKcFrNYNBPZBOrXN1ECv8tga3tyAYprmw==
Age: 1086
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3b02c85662c2e01e282f.js
143.204.42.157200 OK 14 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/error_handling-3b02c85662c2e01e282f.js
IP 143.204.42.157:0
File type ASCII text, with very long lines (44539)
Hash 1c0eaeed3931f248e4bffa42f6c4e441
ea737e1b47fb440a053e6185b4c0cd034e000d5e
9cfdd14dcef2067a9df7e41bea1ca9a958caa0fb0185cabd66cdf085da3a5dbe
GET /packs/js/javascripts/error_handling-3b02c85662c2e01e282f.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 13585
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:03:02 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Thu, 08 Sep 2022 20:54:59 GMT
Cache-Control: public, max-age=86400
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PoeVGMG8mUjedyYSC2h5gWLFgkiLPqSgClIlGpMio9Qujhf5ZJH5ww==
Age: 1086
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-eb2b0cf25e03d3073f68.js
143.204.42.157200 OK 1.7 MB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/packs/js/javascripts/presentation-eb2b0cf25e03d3073f68.js
IP 143.204.42.157:0
File type ASCII text, with very long lines (65445)
Size 1.7 MB (1666759 bytes)
Hash 113286df8105d11e51b2a178c0f6a13a
9a2eb1964b6b3adab6e9a269f77c26063f2e15eb
61550abe517fec926e816da0a0b64bb9af287db0f52dac35dc92ce3ff0789432
GET /packs/js/javascripts/presentation-eb2b0cf25e03d3073f68.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1666759
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:03:03 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Thu, 08 Sep 2022 20:54:59 GMT
Cache-Control: public, max-age=86400
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: px7Zb9c8bzj0koqfA7HSdXGntbr3AO0LbAlhVOkOlof-R02XSdrZ5Q==
Age: 1085
d2qvtfnm75xrxf.cloudfront.net/assets/presentation-c036b2e9e70a3ae6fa81dc172669564ae4b4227d3c077c5d70623bd4761518ee.js
143.204.42.157200 OK 377 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/presentation-c036b2e9e70a3ae6fa81dc172669564ae4b4227d3c077c5d70623bd4761518ee.js
IP 143.204.42.157:0
Hash a6ca41d7119ee2693bdea47f8ae38d8e
23743d084541aef31830647761b3d1e40e67cb9e
5641062fe2b7eb5573db961b472c8d288939560364ba82083593fc6989ccec6c
GET /assets/presentation-c036b2e9e70a3ae6fa81dc172669564ae4b4227d3c077c5d70623bd4761518ee.js HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 377
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Wed, 13 Jul 2022 22:14:27 GMT
Cache-Control: public, max-age=86400
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
Date: Thu, 08 Sep 2022 01:41:50 GMT
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vgflo8Fgclk3Cy5pxT6agnc_HzD7huUUgdNTVK1INc7J3Iv_EdUBCw==
Age: 70758
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
143.204.42.157200 OK 46 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Medium-Web.woff2
IP 143.204.42.157:0
File type Web Open Font Format (Version 2), TrueType, length 46188, version 1.66\012- data
Hash dfc5e24cbc1b134e0c00c61e84ec999a
d3b1a8ef1d0f6f9162986479252570525719f203
b5db3e633ec765fc01a19c06b0955d56c2503285e59d8d348d08ec34abbfeaf3
GET /assets/fonts/AtlasGrotesk-Medium-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 46188
Connection: keep-alive
Server: nginx
Date: Wed, 07 Sep 2022 22:06:16 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Tue, 06 Sep 2022 22:59:16 GMT
Cache-Control: public, max-age=86400, no-transform
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZOBChO7AHC-tiPk_9Lu3w5QFSyvWwibjGr8FkyP5T5mrZu2-yxIXKg==
Age: 83692
d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
143.204.42.157200 OK 2.4 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png
IP 143.204.42.157:0
File type PNG image data, 207 x 40, 8-bit colormap, non-interlaced\012- data
Hash 0b50c78d0f0f86275c8f61c4b205b457
868bea9e3911611556fa257c4f68be3cf9dc91ce
a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19
GET /assets/backgrounds/whitey-a183e5d0b46c9fa407c262ce44efe95546a2e8f07be415119d6641ec5fb19c19.png HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2430
Connection: keep-alive
Server: nginx
Last-Modified: Thu, 20 Aug 2020 00:06:17 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
Date: Thu, 08 Sep 2022 01:22:42 GMT
Cache-Control: no-transform
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ffIy1B4u_jQIp56DTaVJmSA4msx5xBMCaRKXXQIrBLyI2__2qsWymQ==
Age: 74488
d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
143.204.42.157200 OK 43 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/blank.gif
IP 143.204.42.157:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /public/blank.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Sat, 12 Apr 2014 01:42:38 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Sep 2022 02:52:31 GMT
ETag: "f837aa60b6fe83458f790db60d529fc9"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h2J0fPxUluN-RyTODY5V093WORxcTR7eIUpVhDm_3xgbNxaIPAgm-g==
Age: 66519
d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
143.204.42.157200 OK 49 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/public/loading_images/large-loader.gif
IP 143.204.42.157:0
File type GIF image data, version 89a, 144 x 144\012- data
Hash ceb150ad0df5017df3c4f3599cd61779
e61e9bbd8a97d9b544b131e0340e371b9f9bf2d8
216a694fc417dce27076f118e45ca73ead42a1be5004a8550eeca3e99af3ea02
GET /public/loading_images/large-loader.gif HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 48903
Connection: keep-alive
Last-Modified: Mon, 23 May 2016 23:39:27 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Sep 2022 06:03:03 GMT
ETag: "ceb150ad0df5017df3c4f3599cd61779"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EziYQchYRuTC7BuUgJ4QCbut8BI-HpUFYBh4oh9rZh9guiK54YUiRA==
Age: 55149
d2qvtfnm75xrxf.cloudfront.net/profile_pictures/d627149c-2861-4902-9e5e-cb70680ed847/nJTWFmQxS7OrjaBbbLMF_logo.jpg
143.204.42.157200 OK 18 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/profile_pictures/d627149c-2861-4902-9e5e-cb70680ed847/nJTWFmQxS7OrjaBbbLMF_logo.jpg
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 434x434, components 3\012- data
Hash f043534eac20da9efa8250d9b1ba7f1f
eae0a76ee0a38639dbaaa3556fd6c99fb7e33879
fbe4ab55469bbd7a5b819eab5fc9497ed854f40a9b5332a127236f024c10134c
GET /profile_pictures/d627149c-2861-4902-9e5e-cb70680ed847/nJTWFmQxS7OrjaBbbLMF_logo.jpg HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 17471
Connection: keep-alive
Last-Modified: Mon, 10 Jan 2022 14:59:17 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Sep 2022 14:46:15 GMT
ETag: "f043534eac20da9efa8250d9b1ba7f1f"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OBb2nFnJ3UfmCjv2WikvkTiRQD-qqpDN-0-pxbCQp3eJcmihBwb2hw==
Age: 23695
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e116e551e3ccc88a9b49d1ff11a6f426
17746be20c2827d74d37002973c6a62c3a215db0
bddb37bd2f7d1f9084b5c1487ec47ad901de32846f1f550f7192853cb77928b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Last-Modified: Thu, 08 Sep 2022 20:19:21 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ef4434f45ae8920c032c6f48df87e3aa
aeb8755f83bbf65f8e9896db64c46f84921922de
4724e072ace30b29e7fcfa1e2e8190a0f25a793ce423b9955cb6b89038f831c5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 21:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 21:46:52 GMT
Expires: Tue, 13 Sep 2022 21:46:51 GMT
Etag: "aeb8755f83bbf65f8e9896db64c46f84921922de"
Cache-Control: max-age=432941,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747abb71dfbeb4f7-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ef4434f45ae8920c032c6f48df87e3aa
aeb8755f83bbf65f8e9896db64c46f84921922de
4724e072ace30b29e7fcfa1e2e8190a0f25a793ce423b9955cb6b89038f831c5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 21:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 21:46:52 GMT
Expires: Tue, 13 Sep 2022 21:46:51 GMT
Etag: "aeb8755f83bbf65f8e9896db64c46f84921922de"
Cache-Control: max-age=432941,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747abb71d99fb4ee-OSL
docsend.com/favicon-196x196.png
3.220.57.224200 OK 4.1 kB URL HTTP/1.1 docsend.com/favicon-196x196.png
IP 3.220.57.224:0
File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data
Hash 6664c3890e329c7609151e0081f5e7cb
6216d5de79d8b245676a86f8b862880837345e2a
8a5ec44c12b172efd970c30a7414ccb37bbb09a2932816826111dfa36509e568
GET /favicon-196x196.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
Content-Type: image/png
Content-Length: 4131
Last-Modified: Thu, 08 Sep 2022 20:39:45 GMT
Cache-Control: public, max-age=86400, no-transform
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 652bdaaaca09a66fc9a260163eee7aeb
f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2
bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5VPH2V
142.250.74.72200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5VPH2V
IP 142.250.74.72:0
File type ASCII text, with very long lines (28370)
Hash 716d1f7aea1feb8c4d616d78f9c605c0
1efe73df0460c2b3d48bcb6b8ef19217b03b2799
1445553965ff0b17a2254f57c3ff0b8af0d3d7c568c4fc15975c25948b01576f
GET /gtm.js?id=GTM-5VPH2V HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Sep 2022 21:21:09 GMT
expires: Thu, 08 Sep 2022 21:21:09 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78392
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
docsend.com/favicon-16x16.png
3.220.57.224200 OK 393 B URL HTTP/1.1 docsend.com/favicon-16x16.png
IP 3.220.57.224:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a8c678babc40c4ac6d8c70fc560094d4
66002c0719ddbd75c837f5a939689ea6df13b6dc
a3a247c77537c4c4fd58b68212a30df836bd05efa48d280d9c20b187f7ef7fb1
GET /favicon-16x16.png HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
Content-Type: image/png
Content-Length: 393
Last-Modified: Thu, 08 Sep 2022 20:39:45 GMT
Cache-Control: public, max-age=86400, no-transform
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
www.dropbox.com/csp_log?policy_name=docsend
162.125.71.18204 No Content 0 B URL HTTP/2 www.dropbox.com/csp_log?policy_name=docsend
IP 162.125.71.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csp_log?policy_name=docsend HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 3944
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-cache,no-cache, no-store
content-disposition: attachment
content-security-policy: base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src 'none' ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ https://accounts.google.com/gsi/client 'nonce-q8B4efkKVYx8nJ5TX6Tc' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:, report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-dynamic ; script-src 'unsafe-eval' 'strict-dynamic' 'nonce-q8B4efkKVYx8nJ5TX6Tc' 'nonce-imQr22K19wmSTM0ag15i'
referrer-policy: strict-origin-when-cross-origin
set-cookie: gvc=MjYxODU4Njk0MzY0MjQzNTA3NjM0NTYxNzM2MTYwODk5NjI2ODU2; expires=Tue, 07 Sep 2027 21:21:09 GMT; HttpOnly; Path=/; SameSite=None; Secure
t=MqQO-awQTcI99ZsC4zuRJ2IO; Domain=dropbox.com; expires=Sun, 07 Sep 2025 21:21:09 GMT; HttpOnly; Path=/; SameSite=None; Secure
__Host-js_csrf=MqQO-awQTcI99ZsC4zuRJ2IO; expires=Sun, 07 Sep 2025 21:21:09 GMT; Path=/; SameSite=None; Secure
__Host-ss=7xX9F5F8yw; expires=Sun, 07 Sep 2025 21:21:09 GMT; HttpOnly; Path=/; SameSite=Strict; Secure
locale=en; Domain=dropbox.com; expires=Tue, 07 Sep 2027 21:21:09 GMT; Path=/; SameSite=None; Secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
date: Thu, 08 Sep 2022 21:21:09 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: far_remote
x-dropbox-request-id: 6b985990feed4d05959f7c5aaffddeb5
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7200 OK 0 B IP 35.190.88.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: bugsnag-api-key,bugsnag-payload-version,bugsnag-sent-at,content-type
Referer: https://docsend.com/
Origin: https://docsend.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, User-Agent, Referer, X-Forwarded-For, Bugsnag-Api-Key, Bugsnag-Payload-Version, Bugsnag-Sent-At
access-control-allow-methods: POST
access-control-allow-origin: *
date: Thu, 08 Sep 2022 21:21:09 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 6aa12650f62fb7a85ea9113fe6c78357
65cadf9b6da64e6c4dfa709499865fa50376b4d4
0cf761014f8531a6fb259072cd7c47c13a710c2e85c9120406dedcc30aebd89b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2460
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Last-Modified: Thu, 08 Sep 2022 20:40:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 08 Sep 2022 20:41:12 GMT
expires: Thu, 08 Sep 2022 22:41:12 GMT
cache-control: public, max-age=7200
age: 2397
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19583
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:21:09 GMT
Connection: keep-alive
js-na1.hs-scripts.com/6191183.js
104.17.211.204200 OK 1.2 kB URL HTTP/2 js-na1.hs-scripts.com/6191183.js
IP 104.17.211.204:0
File type ASCII text, with very long lines (524)
Hash 73fa6cf17c753fd55e135ed93ae17e88
4339871d0adc7a1196c8c30c1682c9c9e7fc802d
7f196e59f57ff0bac1a5d2ebf944fc4ed4a2c930c503322c438e4535e61e463c
GET /6191183.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:09 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B7559A26D353D37BB209AF3DB144142768BF89B8F000000000000000000
cache-control: public, max-age=30
vary: Accept-Encoding
x-hubspot-correlation-id: a2c78c15-ce09-4ce1-a3b9-d4dd3d5ba43d
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://docsend.com
last-modified: Thu, 08 Sep 2022 21:18:19 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 747abb7239d00afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19583
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:21:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19583
Expires: Fri, 09 Sep 2022 02:47:32 GMT
Date: Thu, 08 Sep 2022 21:21:09 GMT
Connection: keep-alive
www.google-analytics.com/j/collect?v=1&_v=j96&a=1794175732&t=pageview&_s=1&dl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&ul=en-us&de=UTF-8&dt=DocSend&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAAC~&jid=1076140929&gjid=1502928668&cid=159397019.1662672062&tid=UA-40340055-1&_gid=1742389023.1662672062&_r=1>m=2wg9705VPH2V&z=1824212585
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1794175732&t=pageview&_s=1&dl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&ul=en-us&de=UTF-8&dt=DocSend&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAAC~&jid=1076140929&gjid=1502928668&cid=159397019.1662672062&tid=UA-40340055-1&_gid=1742389023.1662672062&_r=1>m=2wg9705VPH2V&z=1824212585
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j96&a=1794175732&t=pageview&_s=1&dl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&ul=en-us&de=UTF-8&dt=DocSend&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAAC~&jid=1076140929&gjid=1502928668&cid=159397019.1662672062&tid=UA-40340055-1&_gid=1742389023.1662672062&_r=1>m=2wg9705VPH2V&z=1824212585 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://docsend.com
date: Thu, 08 Sep 2022 21:21:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.232.204200 OK 98 kB URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.232.204:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e6911a9f3e58cdf76ea835c468c3adf8
c4ea79e09fa48d714af2f3054d9c341081f1a03d
45f428bf8e4f98757005c47e2c8f287f43f11e7d4d67e641390ada8692957912
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:09 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Sep 2022 03:53:55 UTC
etag: W/"6ec4f161716a8da5c8c95cda1e89dc05"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ur8e8LShl3Q9Sr_qgQx0CQrFz7yEnpM5
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9bfafde51fc331b971140cbd2b98172e.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD55-P3
x-amz-cf-id: 7har2pktRuj42Ug3u-7xAq4_fFKHXJOV8VHBtPOKhmoMqSsr1yQEIA==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1110/bundle/main/lead-flows-release.js&cfRay=746861f29dd09918-IAD
x-hs-target-asset: lead-flows-js/static-1.1110/bundle/main/lead-flows-release.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 18934
server: cloudflare
cf-ray: 747abb733a42b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 57085
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1662672000000/6191183.js
104.17.71.176200 OK 27 kB URL HTTP/2 js.hs-analytics.net/analytics/1662672000000/6191183.js
IP 104.17.71.176:0
File type ASCII text, with very long lines (63804)
Hash fe33e2765032a6b26c43f2a342ee069b
1dbbf8cf7c74059d653621fd201f2d856d04baa0
318db6ffa46977b21d75017ed4b127a747e8cb0b96f0d99c3520698514607959
GET /analytics/1662672000000/6191183.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:09 GMT
content-type: text/javascript
x-amz-id-2: JjvCvAYOemPriH7gZ5Jk8OwQZxmqMz2ne5iUec+iK9X8FIM2dDgSqTNJxYMygnbq3ivEO117dAY=
x-amz-request-id: A06NX865ZGDWHPF2
last-modified: Thu, 08 Sep 2022 21:13:47 GMT
etag: W/"45795f333db893aa0085ea033e57bc21"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Thu, 08 Sep 2022 21:22:40 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 747abb737c16b50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
sessions.bugsnag.com/
35.190.88.7202 Accepted 21 B IP 35.190.88.7:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1807ffa1d44e667592a0f91c668ba65b
4d48849fa0f6917c9c57ed958680e9a1e722382b
0ba7c0356149946bf0642fab4ef85b95e7090f6f785d0fb84323d0c442e5190a
POST / HTTP/1.1
Host: sessions.bugsnag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Bugsnag-Api-Key: 21f24c2371049273299521b66ca18bb8
Bugsnag-Payload-Version: 1
Bugsnag-Sent-At: 2022-09-08T21:21:00.627Z
Content-Length: 453
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
access-control-allow-origin: *
content-type: application/json
date: Thu, 08 Sep 2022 21:21:09 GMT
content-length: 21
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qhobt81rs5gqg8hcr1Su3J3MNFt4_gR2hLHkIl5xDDS1HF9g_3ecCg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:40:35 GMT
age: 81634
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 82570
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.hs-banner.com/6191183.js
172.64.154.85200 OK 24 kB URL HTTP/2 js.hs-banner.com/6191183.js
IP 172.64.154.85:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (56089)
Hash 689a868788863e4940b2ed9cc601fca4
9fec7106f94e13540346f623f7bc114d8d538dc6
289fbab3da29216e4e5bb66e8fd69dcf6223963ab84d837ae69382df94dc8c1c
GET /6191183.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:09 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: U0udp6ZkjRl4dO34MyWi5wzySYWTQHXVa+R4/8SCI2s78AdqlbbQ+PvhFnubXXzOQ94EIvmvYjw=
x-amz-request-id: BFZFZJAHD8NSWM1C
last-modified: Mon, 05 Sep 2022 17:25:57 GMT
etag: W/"f74db6cf9a98a669a707aeee0d4ef4a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: Vp1Ck75RaNI6LZRAMGDGIKhyJ.f0LxnM
access-control-allow-origin: https://docsend.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Thu, 08 Sep 2022 21:22:39 GMT
cf-cache-status: HIT
age: 169
vary: Accept-Encoding
server: cloudflare
cf-ray: 747abb734a58b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget.intercom.io/widget/lv6lji7h
54.230.111.53302 Found 0 B URL HTTP/2 widget.intercom.io/widget/lv6lji7h
IP 54.230.111.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/lv6lji7h HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://js.intercomcdn.com/shim.latest.js
date: Thu, 08 Sep 2022 14:48:12 GMT
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dMT3ijoh_qmHHJlw7W_VFwV5WN-OjTWPeNyd273zATUUsonMMX43Tg==
age: 23578
X-Firefox-Spdy: h2
js.intercomcdn.com/shim.latest.js
54.230.111.118200 OK 6.2 kB URL HTTP/2 js.intercomcdn.com/shim.latest.js
IP 54.230.111.118:0
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 9064982aa7fa6e4296affd2690e62e8b
35622827e3064715e58e44d13c174a58dfde7789
d1a60129296b67992e221c87ac0d304c61cb7d756a52e61cd5453b78b90a58da
GET /shim.latest.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docsend.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6174
last-modified: Thu, 08 Sep 2022 17:16:40 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: Hs5P5S6o93zS8sxpJQedNqzMk0dSWgk5
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 21:16:56 GMT
cache-control: max-age=300, s-maxage=300, public
etag: "9064982aa7fa6e4296affd2690e62e8b"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qrunvkgj12GiFanD3kuX0WZq2YLilmhLAMEdXps3ymdPWxD8yF4Nvg==
age: 254
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ef4434f45ae8920c032c6f48df87e3aa
aeb8755f83bbf65f8e9896db64c46f84921922de
4724e072ace30b29e7fcfa1e2e8190a0f25a793ce423b9955cb6b89038f831c5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 21:21:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Sep 2022 21:46:52 GMT
Expires: Tue, 13 Sep 2022 21:46:51 GMT
Etag: "aeb8755f83bbf65f8e9896db64c46f84921922de"
Cache-Control: max-age=432941,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747abb7359aab4f7-OSL
js.intercomcdn.com/frame.a6d4847e.js
54.230.111.118200 OK 126 kB URL HTTP/2 js.intercomcdn.com/frame.a6d4847e.js
IP 54.230.111.118:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (126266 bytes)
Hash 7f2332d34c04cfdc7b1d28ee95257c23
8e6f48fe17c74bee9cd371a62e4e56ce6ca1fc61
336cce69ffa60a9750bb95c5198a87e5bf0d2792154b9c0c3593b99c236b4e6b
GET /frame.a6d4847e.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 126266
last-modified: Thu, 08 Sep 2022 17:15:16 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 89vVFVEH72G3bm3KxXOHH5Vz4KF0Gbrt
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 21:16:49 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "7f2332d34c04cfdc7b1d28ee95257c23"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -tLWXj0yy6Efgf9rJqAM2EZCs9d2XW65GfPPuQxAvFsdnuxxoqT-0w==
age: 261
X-Firefox-Spdy: h2
docsend.com/metrics/properties
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/properties
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/properties HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
X-Frame-Options: DENY
Cache-Control: no-cache, no-transform
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://cdn.segment.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://www.googletagmanager.com https://www.youtube.com https://www.dropbox.com/pithos/privacy_consent 'nonce-b07cb796-74d9-4487-ba4f-559e186af130'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: b07cb796-74d9-4487-ba4f-559e186af130
X-Runtime: 0.007092
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
docsend.com/metrics/events
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 114
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
X-Frame-Options: DENY
Cache-Control: no-cache, no-transform
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://cdn.segment.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://www.googletagmanager.com https://www.youtube.com https://www.dropbox.com/pithos/privacy_consent 'nonce-32539b32-448c-4a34-b663-8eaa915176e1'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: 32539b32-448c-4a34-b663-8eaa915176e1
X-Runtime: 0.014769
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
docsend.com/metrics/events
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 218
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
X-Frame-Options: DENY
Cache-Control: no-cache, no-transform
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://cdn.segment.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://www.googletagmanager.com https://www.youtube.com https://www.dropbox.com/pithos/privacy_consent 'nonce-e47bbcb7-b18b-45bb-aabc-9701f4675022'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: e47bbcb7-b18b-45bb-aabc-9701f4675022
X-Runtime: 0.012588
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&gjid=1502928668&_gid=1742389023.1662672062&_u=YEBAAEAAAAAAAC~&z=608117052
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&gjid=1502928668&_gid=1742389023.1662672062&_u=YEBAAEAAAAAAAC~&z=608117052
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&gjid=1502928668&_gid=1742389023.1662672062&_u=YEBAAEAAAAAAAC~&z=608117052 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://docsend.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Sep 2022 21:21:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
docsend.com/metrics/events
3.220.57.224204 No Content 0 B URL HTTP/1.1 docsend.com/metrics/events
IP 3.220.57.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /metrics/events HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 134
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Of7iw8IR3A042BthmSut17NzuIVR6fKVz2YBga2Mj44zLnZGHFcmxQReTiVM9FwxWqMUr3j7%2BhZ1S%2BouChPav%2B5j5q%2FfGB2KA%2BrQDVU%3D--bRGZEh%2BuP0ptnrJZ--plj%2Fk%2F9y9N7PSv5Ujfwt7A%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Content-Length: 0
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:09 GMT
X-Frame-Options: DENY
Cache-Control: no-cache, no-transform
Content-Security-Policy-Report-Only: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://checkout.stripe.com https://js.stripe.com https://cdn.segment.com https://edge.fullstory.com https://rs.fullstory.com https://js-na1.hs-scripts.com https://js.hs-analytics.net https://js.hs-banner.com https://js.hsleadflows.net https://scripts.kissmetrics.com https://static.filestackapi.com https://cdn.zapier.com https://zapier.com/zapbook/embed/widget.jsa https://js.intercomcdn.com https://widget.intercom.io https://maps.googleapis.com https://www.google-analytics.com https://www.googleadservices.com https://www.googletagmanager.com https://www.youtube.com https://www.dropbox.com/pithos/privacy_consent 'nonce-cc315d81-7930-484e-a806-12cf2b4200f1'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend
X-Request-Id: cc315d81-7930-484e-a806-12cf2b4200f1
X-Runtime: 0.013083
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 91582918d8dcf5c2fff1a8d7b567a4f4
617976a32c924a9f3b6bdab89280b9d77d61f1e1
b81be5d3307f47aca593fb3b557428f6d4e04bb497b8f448dc8f1a7662b2be79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4243
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:09 GMT
Last-Modified: Thu, 08 Sep 2022 20:10:26 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=6191183&pu=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&t=DocSend&cts=1662672061729&vi=c712c6067b306930f1b194b8b585ed23&nc=true&u=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&b=19306791.1.1662672061727&cc=15
104.19.154.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=6191183&pu=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&t=DocSend&cts=1662672061729&vi=c712c6067b306930f1b194b8b585ed23&nc=true&u=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&b=19306791.1.1662672061727&cc=15
IP 104.19.154.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=6191183&pu=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x&t=DocSend&cts=1662672061729&vi=c712c6067b306930f1b194b8b585ed23&nc=true&u=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&b=19306791.1.1662672061727&cc=15 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:09 GMT
content-type: image/gif
content-length: 45
cf-ray: 747abb74a829b527-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: df40abe1-6823-47b9-8caa-7993be1ffee8
x-robots-tag: none
set-cookie: __cf_bm=7xXb2aGP5ZuF8lTstFk.f7m0Jii88tdT1_gAvOLIPfI-1662672069-0-ASMnWYHFhcH33YukZaXHQdeW8HLjSZ/Vl/tjNvT059sIA6e4BxTHS8OvC0lYa8waoqxs8xwrdnkUtD3IFmKtaz0=; path=/; expires=Thu, 08-Sep-22 21:51:09 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Shlh99Kv79GFa9ObL5UPSvh2C6RgBTKPyJ4XVWqUfE8XXHJpfCHG2ZoQorCMD%2FsSW8tk98ui57zP1Gs71e6ZIvhswElmkOkhUERCYDwzdeE8PesaG5l9uh7nuNQULSI1NyiS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 426dfe3ec82e0a77cbdfe9ff46ac9d89
486658615b3daeccb0e1f0431ef6583078d89785
653a398fdd1c3b7860432ff4d6e6828e034a70a4da82e9d8d27dbd90f0b88273
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 21:21:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-40340055-1&cid=159397019.1662672062&jid=1076140929&_u=YEBAAEAAAAAAAC~&z=2082738902 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 21:21:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 21:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=6191183&utk=c712c6067b306930f1b194b8b585ed23&__hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&__hssc=19306791.1.1662672061727¤tUrl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x
104.19.155.83200 OK 656 B URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=6191183&utk=c712c6067b306930f1b194b8b585ed23&__hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&__hssc=19306791.1.1662672061727¤tUrl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f62dd7cf11b1650e00698d4a8e4ad173
84140d0e65d2c5fe492306d4b3700a483a08c3d0
bdf3be88790f85285de558393ee18e33cde6377bc462e78c078edf17d291c220
GET /lead-flows-config/v1/config/json?portalId=6191183&utk=c712c6067b306930f1b194b8b585ed23&__hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1&__hssc=19306791.1.1662672061727¤tUrl=https%3A%2F%2Fdocsend.com%2Fview%2Fdkdhrb46y5excf7x HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:10 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
x-hubspot-correlation-id: c005b43d-50bc-44d6-856a-f47a072aea66
access-control-allow-credentials: false
access-control-allow-origin: https://docsend.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=eHRUi3Aeq.D2.fcmOF9MfGYARm0HwRL97JBNQy.qo5k-1662672070-0-Ae3q9gQ71Fhxle9ufYawn7Xpq5rHl+hnWdc9J/mKxucFzOWdcVhmUT3XE8NaWRzCv65Y1c8jv4wPb1319MbOkRc=; path=/; expires=Thu, 08-Sep-22 21:51:10 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06g3l7iWaxFOBfWVDQmVfP45zxK5M%2FYxa7gqfXpN7QtcA%2FKSTbM7%2BxSgw2mmA80BMHbVB6lQ%2BF%2FdD8imW%2Fh3I%2F2zhf8zzlU5nmK6Ucwkd8DQJC0Y3K4%2Fl9sSN2N50yFm8zw3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 747abb74b960b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=ea2434c8-2d5f-47b9-965c-150f454d9b1f&batch_time=1662672061713
3.233.153.125202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=ea2434c8-2d5f-47b9-965c-150f454d9b1f&batch_time=1662672061713
IP 3.233.153.125:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b447c8565e058b566c0a5e9dc4b571bd
372a8662bf17be82febe9583a13cf836825cfe38
74ed895cf0966a41ee2f85170edb67434da8d6d271b3a12ae7c46c37f3cbc18d
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=ea2434c8-2d5f-47b9-965c-150f454d9b1f&batch_time=1662672061713 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 15835
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Thu, 08 Sep 2022 21:21:10 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F1?Expires=1662672129&Signature=Z3U402qLndUqZog9tkfdkQoxA-G0wOeWarbPZvBegZrkgJM0IAM-yK3sU7lyrjllOy26urCh1jkybUF-Qjdu9fLhLfMVpS4ZKGtDNHO3mQxTxUIFBWQ6kZfVKdoRuflOHMRGXUIxmRVwS5LExgSn0hIj1SsRkhimpDZ3zA-MsdFCowDNDpRmZG4vDzBqBs~bqMUyXTZ1EUyGh2mNIDsYpF~dmGArjeCRjt93RpL0kThepxMEvxs~YV0hV1aTEgnuJ2msOTh4Ev7aLrbHWYWA-gziLYr9ribtV~PeVLtdVOn0oJRAt0fgMAvt5pLOYUdIgdvCoQivkjAwVNVBr8bS3g__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 530 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F1?Expires=1662672129&Signature=Z3U402qLndUqZog9tkfdkQoxA-G0wOeWarbPZvBegZrkgJM0IAM-yK3sU7lyrjllOy26urCh1jkybUF-Qjdu9fLhLfMVpS4ZKGtDNHO3mQxTxUIFBWQ6kZfVKdoRuflOHMRGXUIxmRVwS5LExgSn0hIj1SsRkhimpDZ3zA-MsdFCowDNDpRmZG4vDzBqBs~bqMUyXTZ1EUyGh2mNIDsYpF~dmGArjeCRjt93RpL0kThepxMEvxs~YV0hV1aTEgnuJ2msOTh4Ev7aLrbHWYWA-gziLYr9ribtV~PeVLtdVOn0oJRAt0fgMAvt5pLOYUdIgdvCoQivkjAwVNVBr8bS3g__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type PNG image data, 2956 x 1663, 8-bit/color RGBA, non-interlaced\012- data
Size 530 kB (529757 bytes)
Hash be0908b8ee3a2bb78505d78792c40eac
7ae90b9e5e6dbb8f8833f657edd4ad74a8877670
e71122b381c2d4aa19122134637f2994af13aa506750133d27281ee54521d8cf
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F1?Expires=1662672129&Signature=Z3U402qLndUqZog9tkfdkQoxA-G0wOeWarbPZvBegZrkgJM0IAM-yK3sU7lyrjllOy26urCh1jkybUF-Qjdu9fLhLfMVpS4ZKGtDNHO3mQxTxUIFBWQ6kZfVKdoRuflOHMRGXUIxmRVwS5LExgSn0hIj1SsRkhimpDZ3zA-MsdFCowDNDpRmZG4vDzBqBs~bqMUyXTZ1EUyGh2mNIDsYpF~dmGArjeCRjt93RpL0kThepxMEvxs~YV0hV1aTEgnuJ2msOTh4Ev7aLrbHWYWA-gziLYr9ribtV~PeVLtdVOn0oJRAt0fgMAvt5pLOYUdIgdvCoQivkjAwVNVBr8bS3g__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 529757
Connection: keep-alive
Date: Thu, 08 Sep 2022 21:21:11 GMT
Last-Modified: Mon, 29 Aug 2022 16:57:50 GMT
ETag: "be0908b8ee3a2bb78505d78792c40eac"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 35sg5jl7-PrGf608A1nMrkcQ7eXJB-_uYSiOrWxtHJAXVUkoguSHRQ==
docsend.com/view/dkdhrb46y5excf7x/page_data/2?viewLoadTime=1662672068&timezoneOffset=0
3.220.57.224200 OK 713 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x/page_data/2?viewLoadTime=1662672068&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash e79e2731f53e20f56a6fbd4153eee484
7361736cca54cb9187355b9e60334313b22bebbf
57ac8272b6ec582fe12fd9796c122d59ee4b37ca4fce61213d73204a4cb6cc41
GET /view/dkdhrb46y5excf7x/page_data/2?viewLoadTime=1662672068&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=z3wdcADmvqkQh51JT5pa7WrBwYwY2kx%2F2PUqklbG4XD%2FYY4blg0exzXz22os7a5XHpHI4Vt0tMkY5UgHUe0FHf%2BRAA%2Be82wSzkNru3o%3D--29ExKsdZem%2F%2BtxMo--Iy7WM6%2FWYM0YNGC7%2FUS06Q%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317; _gcl_au=1.1.265429852.1662672062; _ga=GA1.2.159397019.1662672062; _gid=GA1.2.1742389023.1662672062; _gat_UA-40340055-1=1; __hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1; hubspotutk=c712c6067b306930f1b194b8b585ed23; __hssrc=1; __hssc=19306791.1.1662672061727; intercom-id-lv6lji7h=0b520bb1-5bb1-4301-a652-670495a91fb5; intercom-session-lv6lji7h=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:11 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"9b2a140f77d6b834e32d089a33744cc1"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-c96c7f3b-d080-4438-81c5-0cda3925c043'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=lRi2UzIHH3%2BpaU2myADqtHs9PYQsUK0O5zcCI0fK49mpsBnDQJZleg0J1MfD%2BDD2KclnyjqRA40tE%2B7Ymf%2BAC0hLLvam6dMGVDcE8ds%3D--7C%2FXjL9LveYII3Mt--xMaNcgIH2ThfYKKe1GzUYw%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:11 GMT; SameSite=None; secure
X-Request-Id: c96c7f3b-d080-4438-81c5-0cda3925c043
X-Runtime: 0.062276
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
nexus-websocket-a.intercom.io/pubsub/5-__Xgcx2HqWPIwJPX1J1yUKREoBsEUpuZExITkwCY_tPf5_l5disTn9XlcDoFEQowpy8hHFtH7KBY30yYax2UqexxwaJimJHydwEZ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
35.174.127.31101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-__Xgcx2HqWPIwJPX1J1yUKREoBsEUpuZExITkwCY_tPf5_l5disTn9XlcDoFEQowpy8hHFtH7KBY30yYax2UqexxwaJimJHydwEZ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP 35.174.127.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-__Xgcx2HqWPIwJPX1J1yUKREoBsEUpuZExITkwCY_tPf5_l5disTn9XlcDoFEQowpy8hHFtH7KBY30yYax2UqexxwaJimJHydwEZ?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://docsend.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ndj3KsmDR7Xa3HfvfB6buA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 08 Sep 2022 21:21:11 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XfwYJyw1RfOgo3ouDdjysaEa1zs=
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F2?Expires=1662672131&Signature=spEL~FYDd6qq6xCII-rzekwH9OLfHrXi0miroM1R8YncJE3UVZstFpmZuWUIZX4hQNf1RK70i7j2q1GsG4h4hBJjnI9uS5N2kkBMuHPA4peeHiK4ZRGKXwPlX7amNvCOgRVtAfwBCPsimXEPzIjLDrdg~dBTXI8FUyr2-FSaCaz8RuHudfjdu8oyFjuR9-xWgbQlgsuckaGPyXNQBgVnUGUnHjZDGqAlpVLmcukgOKUg9P6rWRSdGnYk8z~ZiZggLUXUumbT61OdgzDDD9iIeI~-wrLMNe~j2ixZuZqaE~ETAC3mUIZtne0dnommMLqqYrjbvy8ty7OxwPQfDxduGQ__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 800 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F2?Expires=1662672131&Signature=spEL~FYDd6qq6xCII-rzekwH9OLfHrXi0miroM1R8YncJE3UVZstFpmZuWUIZX4hQNf1RK70i7j2q1GsG4h4hBJjnI9uS5N2kkBMuHPA4peeHiK4ZRGKXwPlX7amNvCOgRVtAfwBCPsimXEPzIjLDrdg~dBTXI8FUyr2-FSaCaz8RuHudfjdu8oyFjuR9-xWgbQlgsuckaGPyXNQBgVnUGUnHjZDGqAlpVLmcukgOKUg9P6rWRSdGnYk8z~ZiZggLUXUumbT61OdgzDDD9iIeI~-wrLMNe~j2ixZuZqaE~ETAC3mUIZtne0dnommMLqqYrjbvy8ty7OxwPQfDxduGQ__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 800 kB (799465 bytes)
Hash 6966366cf1f135be33e5123d528a2b50
5d79ed678ae94357e9e89b26e225c9d3c3456e1f
4771d256a4476df1f679f52540b15607ca1e02842cd1a2f8b56545866b89d0a2
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F2?Expires=1662672131&Signature=spEL~FYDd6qq6xCII-rzekwH9OLfHrXi0miroM1R8YncJE3UVZstFpmZuWUIZX4hQNf1RK70i7j2q1GsG4h4hBJjnI9uS5N2kkBMuHPA4peeHiK4ZRGKXwPlX7amNvCOgRVtAfwBCPsimXEPzIjLDrdg~dBTXI8FUyr2-FSaCaz8RuHudfjdu8oyFjuR9-xWgbQlgsuckaGPyXNQBgVnUGUnHjZDGqAlpVLmcukgOKUg9P6rWRSdGnYk8z~ZiZggLUXUumbT61OdgzDDD9iIeI~-wrLMNe~j2ixZuZqaE~ETAC3mUIZtne0dnommMLqqYrjbvy8ty7OxwPQfDxduGQ__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 799465
Connection: keep-alive
Date: Thu, 08 Sep 2022 21:21:12 GMT
Last-Modified: Mon, 29 Aug 2022 16:57:51 GMT
ETag: "6966366cf1f135be33e5123d528a2b50"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: chhSCcB01KlFhetFGhqxJcZLUzKYQuFnSwsq30APgFcKeHinU_OsPw==
docsend.com/view/dkdhrb46y5excf7x/page_data/3?viewLoadTime=1662672068&timezoneOffset=0
3.220.57.224200 OK 706 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x/page_data/3?viewLoadTime=1662672068&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 30a98ae62c442132df575b58b041e736
3646196d1872642dd5c754c238cd4587c9cac2bc
2a25943cd91f8ef4798684df946e41461325c7dd7284666369476a15f33edff2
GET /view/dkdhrb46y5excf7x/page_data/3?viewLoadTime=1662672068&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=lRi2UzIHH3%2BpaU2myADqtHs9PYQsUK0O5zcCI0fK49mpsBnDQJZleg0J1MfD%2BDD2KclnyjqRA40tE%2B7Ymf%2BAC0hLLvam6dMGVDcE8ds%3D--7C%2FXjL9LveYII3Mt--xMaNcgIH2ThfYKKe1GzUYw%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317; _gcl_au=1.1.265429852.1662672062; _ga=GA1.2.159397019.1662672062; _gid=GA1.2.1742389023.1662672062; _gat_UA-40340055-1=1; __hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1; hubspotutk=c712c6067b306930f1b194b8b585ed23; __hssrc=1; __hssc=19306791.1.1662672061727; intercom-id-lv6lji7h=0b520bb1-5bb1-4301-a652-670495a91fb5; intercom-session-lv6lji7h=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:12 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"52ece7f53d5360bab95ed2285ae16f65"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-e8cbce96-a450-449b-9d95-2eb30db0fc79'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=SyOD5mweQiUvdN68iU%2FDqLSzA5h5mwv6TLDYtWf1AhbFJhRpCvt5zWNjlhK2UpSA87oSz2Its8oLNPzLOCUcP1KptqAI01vq8amBm2s%3D--iWOSejArEm4k5kd1--rxqa9DBck68U3Y5gk2nhfQ%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:12 GMT; SameSite=None; secure
X-Request-Id: e8cbce96-a450-449b-9d95-2eb30db0fc79
X-Runtime: 0.039489
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F3?Expires=1662672132&Signature=a~x0QraVQfGJHq8G6LdODUAQJEslmgyyrAWQ-VTUoTSTY6M3LPO73SSG8g3YQv3BQoKDSd8E-5F0c4p17f0anPCtLoopMPsSIDcC9aT~6xQf9KTDjKssn-8CK~slNg1vvHwVKUB4vkKk7CpfcGXDYQ0tDkKnQjsTG8gffT9OMmbVyaZlrjsd7g8G1HjrrP1GuY~d7BSa5Typ12SuB5ARBqvnDYt58Sqfy6O2ReQqeJn4Sv7mvvpKtwwXyaNtqbF0cXlipKjzxbPqyqF1RezsaJc36jeNAtiOzYaN6idKj0aTZNQPT9LNU0T60zbyWqYXUpbToKVBKb-1i3BuhEy4Ow__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 613 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F3?Expires=1662672132&Signature=a~x0QraVQfGJHq8G6LdODUAQJEslmgyyrAWQ-VTUoTSTY6M3LPO73SSG8g3YQv3BQoKDSd8E-5F0c4p17f0anPCtLoopMPsSIDcC9aT~6xQf9KTDjKssn-8CK~slNg1vvHwVKUB4vkKk7CpfcGXDYQ0tDkKnQjsTG8gffT9OMmbVyaZlrjsd7g8G1HjrrP1GuY~d7BSa5Typ12SuB5ARBqvnDYt58Sqfy6O2ReQqeJn4Sv7mvvpKtwwXyaNtqbF0cXlipKjzxbPqyqF1RezsaJc36jeNAtiOzYaN6idKj0aTZNQPT9LNU0T60zbyWqYXUpbToKVBKb-1i3BuhEy4Ow__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 613 kB (612636 bytes)
Hash 141d8f7d678e4b2cf4b8eb8564513de0
178042ba88157daf476d76d57521628dbbf655df
7619adbca11a1be800290f9ca1edd877295e9ef72f87c46a610e9c481bc8532a
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F3?Expires=1662672132&Signature=a~x0QraVQfGJHq8G6LdODUAQJEslmgyyrAWQ-VTUoTSTY6M3LPO73SSG8g3YQv3BQoKDSd8E-5F0c4p17f0anPCtLoopMPsSIDcC9aT~6xQf9KTDjKssn-8CK~slNg1vvHwVKUB4vkKk7CpfcGXDYQ0tDkKnQjsTG8gffT9OMmbVyaZlrjsd7g8G1HjrrP1GuY~d7BSa5Typ12SuB5ARBqvnDYt58Sqfy6O2ReQqeJn4Sv7mvvpKtwwXyaNtqbF0cXlipKjzxbPqyqF1RezsaJc36jeNAtiOzYaN6idKj0aTZNQPT9LNU0T60zbyWqYXUpbToKVBKb-1i3BuhEy4Ow__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 612636
Connection: keep-alive
Date: Thu, 08 Sep 2022 21:21:14 GMT
Last-Modified: Mon, 29 Aug 2022 16:57:51 GMT
ETag: "141d8f7d678e4b2cf4b8eb8564513de0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: imzKqQBykEgqqySbUq_ldHMUfmGG9QLD0pgrvvY1hXOJ10-20axtHw==
docsend.com/view/dkdhrb46y5excf7x/page_data/4?viewLoadTime=1662672068&timezoneOffset=0
3.220.57.224200 OK 707 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x/page_data/4?viewLoadTime=1662672068&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 1a0f59a9cc41aae9ed2995fdb4dffedb
b34e34cd7e3cbdd87aa668da98f4ac2aea5cb741
2bc2b2898b8307942abab175189101c117e40dcda1e27051dd953c32afb86e77
GET /view/dkdhrb46y5excf7x/page_data/4?viewLoadTime=1662672068&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=SyOD5mweQiUvdN68iU%2FDqLSzA5h5mwv6TLDYtWf1AhbFJhRpCvt5zWNjlhK2UpSA87oSz2Its8oLNPzLOCUcP1KptqAI01vq8amBm2s%3D--iWOSejArEm4k5kd1--rxqa9DBck68U3Y5gk2nhfQ%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317; _gcl_au=1.1.265429852.1662672062; _ga=GA1.2.159397019.1662672062; _gid=GA1.2.1742389023.1662672062; _gat_UA-40340055-1=1; __hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1; hubspotutk=c712c6067b306930f1b194b8b585ed23; __hssrc=1; __hssc=19306791.1.1662672061727; intercom-id-lv6lji7h=0b520bb1-5bb1-4301-a652-670495a91fb5; intercom-session-lv6lji7h=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"1578b5fb6c997ba182076026479ef215"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-f8b76de5-ddcd-43a7-8523-3c3f35b23a06'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=Lj0oIwWsM8PHl5Ygt1A1nizw14KRIFzZeLDWbIRW%2BadmzqtefwMykHqNCDwu6A1BYPl%2BeXc5x6JCqb5wTiDE2I2IFPWwPDsGQyiX6sI%3D--M1XGZJfBsmfGfWIp--%2BPk%2Bh8JIJCpwiRdM9mqlEA%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:14 GMT; SameSite=None; secure
X-Request-Id: f8b76de5-ddcd-43a7-8523-3c3f35b23a06
X-Runtime: 0.061137
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F4?Expires=1662672134&Signature=kAsV6wSDDKz2yXTMsnNjJ2yxwiuLv62cvxLtWRsPwhgavdljSwPYM9yNfNbmR7-NasD7bNb2Rnm-zr~MSIHssGTjaRAoYf~yBDsPr3a6Fau~mqztrY40nt-~ljxsEj~OsoanlvxufZIbE5OSIoCCt6QzDj0uqG6dpwf-QK5jBcT2pXvxfd7zcMsbki~53AjppXtRvKzCOWX7cNn0tcQf5wW16GA7L7a6TlDVzQMrugDtpjm5PGJKxzaHLdnNd1r4l2tmeOHv7Dg6ceF8nNKMK~bhtpJGrGPrd70ImbiRF8H1ZtrjWyV0HtYx-MhWvG9zpggD2hhKstwVEXYs-YHlMA__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 567 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F4?Expires=1662672134&Signature=kAsV6wSDDKz2yXTMsnNjJ2yxwiuLv62cvxLtWRsPwhgavdljSwPYM9yNfNbmR7-NasD7bNb2Rnm-zr~MSIHssGTjaRAoYf~yBDsPr3a6Fau~mqztrY40nt-~ljxsEj~OsoanlvxufZIbE5OSIoCCt6QzDj0uqG6dpwf-QK5jBcT2pXvxfd7zcMsbki~53AjppXtRvKzCOWX7cNn0tcQf5wW16GA7L7a6TlDVzQMrugDtpjm5PGJKxzaHLdnNd1r4l2tmeOHv7Dg6ceF8nNKMK~bhtpJGrGPrd70ImbiRF8H1ZtrjWyV0HtYx-MhWvG9zpggD2hhKstwVEXYs-YHlMA__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 567 kB (566650 bytes)
Hash 3bbc30dbca72ccc7ebfada8e73e0dce8
8c9fce7abb324f484743c921cc22843b2dc322b7
816cfa33e7e142568ea30aa8396cab64d3b737a6d69f9d3f119cbe75370919e3
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F4?Expires=1662672134&Signature=kAsV6wSDDKz2yXTMsnNjJ2yxwiuLv62cvxLtWRsPwhgavdljSwPYM9yNfNbmR7-NasD7bNb2Rnm-zr~MSIHssGTjaRAoYf~yBDsPr3a6Fau~mqztrY40nt-~ljxsEj~OsoanlvxufZIbE5OSIoCCt6QzDj0uqG6dpwf-QK5jBcT2pXvxfd7zcMsbki~53AjppXtRvKzCOWX7cNn0tcQf5wW16GA7L7a6TlDVzQMrugDtpjm5PGJKxzaHLdnNd1r4l2tmeOHv7Dg6ceF8nNKMK~bhtpJGrGPrd70ImbiRF8H1ZtrjWyV0HtYx-MhWvG9zpggD2hhKstwVEXYs-YHlMA__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 566650
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 16:57:51 GMT
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Sep 2022 11:37:30 GMT
ETag: "3bbc30dbca72ccc7ebfada8e73e0dce8"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4UIwyO3sU_H6pnpLcT0J-E-Pu4vytWWD5QbzZ0h--nJz4coU0nHkQQ==
Age: 35025
rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=2244a1c3-be9f-42ec-8965-452476a08a14&batch_time=1662672066273
3.233.153.125202 Accepted 53 B URL HTTP/2 rum.browser-intake-datadoghq.com/api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=2244a1c3-be9f-42ec-8965-452476a08a14&batch_time=1662672066273
IP 3.233.153.125:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a79d48e6bf62362a095aaf6169703335
b5232deef33efbb97b646057702c1fd754982bc8
a3c7d154bd61f74f19dcf2bc3a258120bb4d0253fe07097e56061cbcd391b56f
POST /api/v2/rum?ddsource=browser&ddtags=sdk_version%3A4.15.0%2Cenv%3Aproduction%2Cservice%3Adocsend%2Cversion%3Av1668&dd-api-key=pub95ed5dcb3a3ed72e885157d75d7e627a&dd-evp-origin-version=4.15.0&dd-evp-origin=browser&dd-request-id=2244a1c3-be9f-42ec-8965-452476a08a14&batch_time=1662672066273 HTTP/1.1
Host: rum.browser-intake-datadoghq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 16113
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 08 Sep 2022 21:21:14 GMT
content-type: application/json
content-length: 53
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
X-Firefox-Spdy: h2
docsend.com/view/dkdhrb46y5excf7x/page_data/5?viewLoadTime=1662672068&timezoneOffset=0
3.220.57.224200 OK 706 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x/page_data/5?viewLoadTime=1662672068&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 8eb8915f40c3406cdb33081d452d1b42
2d528bde360c93df4f1d94dfc00094b0952c30b5
d6b302d0ab578f1f8350f355e8a64ab95a077f4ea4bb832b42d7227c7edd3180
GET /view/dkdhrb46y5excf7x/page_data/5?viewLoadTime=1662672068&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=Lj0oIwWsM8PHl5Ygt1A1nizw14KRIFzZeLDWbIRW%2BadmzqtefwMykHqNCDwu6A1BYPl%2BeXc5x6JCqb5wTiDE2I2IFPWwPDsGQyiX6sI%3D--M1XGZJfBsmfGfWIp--%2BPk%2Bh8JIJCpwiRdM9mqlEA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317; _gcl_au=1.1.265429852.1662672062; _ga=GA1.2.159397019.1662672062; _gid=GA1.2.1742389023.1662672062; _gat_UA-40340055-1=1; __hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1; hubspotutk=c712c6067b306930f1b194b8b585ed23; __hssrc=1; __hssc=19306791.1.1662672061727; intercom-id-lv6lji7h=0b520bb1-5bb1-4301-a652-670495a91fb5; intercom-session-lv6lji7h=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:14 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"e860bf256a37eae3ce8c1335013f3838"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-408809d1-6eb6-4aa0-a21d-3c5845b31169'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=zngdygmGPXcUgChDG9D0jwBrWuH%2ByfBqFX6C%2BNdjmE%2FOlnmFaz%2F4BQ4ZSvz4bFvwvN2euZleVa3n%2FyQIxofm4Sij7F77u3tyfWr4BfQ%3D--F6gCgKrkdLYnWOT8--WV8WPTmm14NUfwRzki3dJA%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:14 GMT; SameSite=None; secure
X-Request-Id: 408809d1-6eb6-4aa0-a21d-3c5845b31169
X-Runtime: 0.031363
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F5?Expires=1662672134&Signature=ngtsWVMxp9h~TnqZFdtOY-PI9NSCUO9--bXxCEQxsJagNMhOH8oT-CqQIYgKrk9M60AzFQLm504TusYlvXng-X15Rmoya4A6mohOQ2sROzot2eY7X-x~djkmwMaiQGbf1VQtByrL9kWKtqX6m6~pYTnhFzW1kE195aCqkK07hLlVq26gKxxy4SnEM02UbecwuIpuvqjQIIJYrLimQTrT26acQV6yE1aEUAajB7jv3eQ4vIsJQOX~BgSJt2DIxpbzdgAJ9oMxFiY4O0I88Oi2-Km6I25nL9SW8Rq-c1SyAf02Y3nFksjA1ra5gFKEaLMMNaf1Y4DLPIfvhAADXMXYqw__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 624 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F5?Expires=1662672134&Signature=ngtsWVMxp9h~TnqZFdtOY-PI9NSCUO9--bXxCEQxsJagNMhOH8oT-CqQIYgKrk9M60AzFQLm504TusYlvXng-X15Rmoya4A6mohOQ2sROzot2eY7X-x~djkmwMaiQGbf1VQtByrL9kWKtqX6m6~pYTnhFzW1kE195aCqkK07hLlVq26gKxxy4SnEM02UbecwuIpuvqjQIIJYrLimQTrT26acQV6yE1aEUAajB7jv3eQ4vIsJQOX~BgSJt2DIxpbzdgAJ9oMxFiY4O0I88Oi2-Km6I25nL9SW8Rq-c1SyAf02Y3nFksjA1ra5gFKEaLMMNaf1Y4DLPIfvhAADXMXYqw__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 2956x1663, components 3\012- data
Size 624 kB (624290 bytes)
Hash ceab89ad4a95277467ff728b6028caab
0abc70764d36b4b93201e4a5351033552cf0c6d5
dd31d371f3b3fe441b75589037d603a4afdd8af0b1a25695f5124c903e8eb245
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F5?Expires=1662672134&Signature=ngtsWVMxp9h~TnqZFdtOY-PI9NSCUO9--bXxCEQxsJagNMhOH8oT-CqQIYgKrk9M60AzFQLm504TusYlvXng-X15Rmoya4A6mohOQ2sROzot2eY7X-x~djkmwMaiQGbf1VQtByrL9kWKtqX6m6~pYTnhFzW1kE195aCqkK07hLlVq26gKxxy4SnEM02UbecwuIpuvqjQIIJYrLimQTrT26acQV6yE1aEUAajB7jv3eQ4vIsJQOX~BgSJt2DIxpbzdgAJ9oMxFiY4O0I88Oi2-Km6I25nL9SW8Rq-c1SyAf02Y3nFksjA1ra5gFKEaLMMNaf1Y4DLPIfvhAADXMXYqw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 624290
Connection: keep-alive
Date: Thu, 08 Sep 2022 21:21:16 GMT
Last-Modified: Mon, 29 Aug 2022 16:57:51 GMT
ETag: "ceab89ad4a95277467ff728b6028caab"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q-xNNfik7lEZQYqCZYYtaJLuPkysPq2xkC6l_F_VRTKpvSmFw0EyJQ==
docsend.com/view/dkdhrb46y5excf7x/page_data/6?viewLoadTime=1662672068&timezoneOffset=0
3.220.57.224200 OK 711 B URL HTTP/1.1 docsend.com/view/dkdhrb46y5excf7x/page_data/6?viewLoadTime=1662672068&timezoneOffset=0
IP 3.220.57.224:0
File type JSON data\012- , ASCII text, with very long lines (971), with no line terminators
Hash 98504abdf366aa568db9a03a9856d412
16d2fb4261e91d00dc957b1005fbd4fb563143c7
3ce502c7e093149e0f142b11fe3b124a35ec9bf201fe1867ee25d5d86bcc8bf1
GET /view/dkdhrb46y5excf7x/page_data/6?viewLoadTime=1662672068&timezoneOffset=0 HTTP/1.1
Host: docsend.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: +jQTb82F6sfnBWOLXp8PSlvPye5w9lac9MX5UdxxngFBINASsIvUxepZdE80Igep2Z9HM0Mr4WrB0749AyC7EA==
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://docsend.com/view/dkdhrb46y5excf7x
Cookie: _v_=zngdygmGPXcUgChDG9D0jwBrWuH%2ByfBqFX6C%2BNdjmE%2FOlnmFaz%2F4BQ4ZSvz4bFvwvN2euZleVa3n%2FyQIxofm4Sij7F77u3tyfWr4BfQ%3D--F6gCgKrkdLYnWOT8--WV8WPTmm14NUfwRzki3dJA%3D%3D; _us_=BAhJIg92aWV3ZWQgZG9jBjoGRVQ%3D--86064670cbcb81a84182616ff39e8415292b30d1; _dss_=5765142efe7cbff41a1d0bac96bc46bf; _dd_s=rum=1&id=ba30059e-ee5d-4f87-8bd5-aca94c77551d&created=1662672061317&expire=1662672961317; _gcl_au=1.1.265429852.1662672062; _ga=GA1.2.159397019.1662672062; _gid=GA1.2.1742389023.1662672062; _gat_UA-40340055-1=1; __hstc=19306791.c712c6067b306930f1b194b8b585ed23.1662672061727.1662672061727.1662672061727.1; hubspotutk=c712c6067b306930f1b194b8b585ed23; __hssrc=1; __hssc=19306791.1.1662672061727; intercom-id-lv6lji7h=0b520bb1-5bb1-4301-a652-670495a91fb5; intercom-session-lv6lji7h=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Date: Thu, 08 Sep 2022 21:21:16 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
X-Frame-Options: DENY
Etag: W/"22f1921e2fe57ced15c37f58c8065b3c"
Cache-Control: max-age=0, private, must-revalidate
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' 'strict-dynamic' https://d2qvtfnm75xrxf.cloudfront.net https://app.intercom.io https://widget.intercom.io https://js.intercomcdn.com https://*.google-analytics.com https://cdn.segment.com https://scripts.kissmetrics.com https://*.id.opendns.com https://js-agent.newrelic.com https://*.nr-data.net https://www.youtube.com https://*.ytimg.com https://vimeo.com https://www.vimeo.com https://www.googletagmanager.com https://www.googleadservices.com https://tagmanager.google.com https://connect.facebook.net https://*.quora.com https://*.bing.com https://api.autopilothq.com https://*.capterra.com https://*.g.doubleclick.net https://js.hs-analytics.net https://js.hs-scripts.com https://js-na1.hs-scripts.com https://js.hscollectedforms.net https://js.hsleadflows.net https://js.stripe.com https://checkout.stripe.com https://ajax.aspnetcdn.com https://appsforoffice.microsoft.com https://maps.googleapis.com https://static.filestackapi.com https://zapier.com https://d2wy8f7a9ursnm.cloudfront.net https://polyfill.io/v3/polyfill.min.js 'nonce-f2d2ef17-3116-4825-aa0b-c00149020286'; report-uri https://www.dropbox.com/csp_log?policy_name=docsend; default-src 'self'; base-uri 'self'; child-src 'self' blob:; connect-src 'self' blob: https://d2qvtfnm75xrxf.cloudfront.net https://*.previews.dropboxusercontent.com/*/p.m3u8 https://*.dropboxusercontent.com https://api.intercom.io https://api-iam.intercom.io https://api-ping.intercom.io https://nexus-websocket-a.intercom.io https://nexus-websocket-b.intercom.io https://nexus-long-poller-a.intercom.io https://nexus-long-poller-b.intercom.io wss://nexus-websocket-a.intercom.io wss://nexus-websocket-b.intercom.io https://*.intercomcdn.com https://uploads.intercomusercontent.com https://sessions.bugsnag.com https://notify.bugsnag.com https://*.browser-intake-datadoghq.com https://*.kissmetrics.com https://*.kissmetrics.io https://api.segment.io https://cdn.segment.com https://*.id.opendns.com https://www.google-analytics.com https://*.g.doubleclick.net https://www.facebook.com https://api.autopilothq.com https://*.filestackapi.com https://cdn.filestackcontent.com https://s3.amazonaws.com https://*.nr-data.net https://*.dropbox.com https://*.dropboxstatic.com https://browser.pipe.aria.microsoft.com https://checkout.stripe.com https://forms.hubspot.com https://*.pubnub.com; font-src 'self' https: data: chrome-extension:; form-action 'self' https://docsend.com https://*.docsend.com https://intercom.help https://api-iam.intercom.io https://accounts.google.com https://www.linkedin.com https://*.salesforce.com https://www.dropbox.com https://accounts.logme.in https://secure.join.me https://*.okta.com https://*.oktapreview.com https://*.jumpcloud.com https://*.onelogin.com https://zapier.com https://ifttt.com https://www.facebook.com; frame-src 'self' https://d2qvtfnm75xrxf.cloudfront.net https://js.stripe.com https://checkout.stripe.com https://www.youtube.com https://player.vimeo.com https://*.g.doubleclick.net https://tpc.googlesyndication.com https://www.facebook.com https://telemetryservice.firstpartyapps.oaspapps.com https://consent.dropbox.com https://ifttt.com; img-src 'self' https: data: blob: chrome-extension:; media-src 'self' blob: data: https://d2qvtfnm75xrxf.cloudfront.net https://js.intercomcdn.com https://*.dropboxusercontent.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://d2qvtfnm75xrxf.cloudfront.net https://fonts.googleapis.com https://tagmanager.google.com https://static.filestackapi.com https://use.fontawesome.com https://vjs.zencdn.net; worker-src 'self' blob:
Set-Cookie: _v_=vBhxGPg3lp7jfOegiItUFKp5ynajQRTiOf2fSE8YG5OMvdYzZuAjuConWgC9ch7R7uzPovolcaD8lmiN%2B7gZ6UK1f2KWUfO2O40V%2BCU%3D--yXZhJu5kWYzRumEX--vKPz6YGhcQKNJZjdaSzQZA%3D%3D; domain=.docsend.com; path=/; expires=Fri, 08 Sep 2023 21:21:16 GMT; SameSite=None; secure
X-Request-Id: f2d2ef17-3116-4825-aa0b-c00149020286
X-Runtime: 0.036194
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur
d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F6?Expires=1662672136&Signature=UIQYlpgkxqEr82UHr5iMPV-dgZ2Rgi1EZvsWcE8HRnXHYct~mgrwQC~Uk5~vcsyHIAon2q11SFk-5SdcCO-pK-qGUO1g40qU4gBWRJKP7T106j1WBmTdQ-88YzENQMG5KTDmaEQP9cQz1PLBnBGIodsmdsmBEUACUsKVCAopVXIU0FoHMGW21Z~XBpybk6IiXYxu5QsZc7Oykv0ll5HeJwbmgnXnsWwPSiqo~qLNliVT~GFLdkGeLp~3OwYBLJ4ejQ8r~NpVXu4yM~ndFYOpl0P848niPaXnSOHstMV57bSZDC042l~oyYPi0ZWBI34~BWEgaoR7oXdtiuxIqNLAnw__&Key-Pair-Id=K3IVFO0KFGPSF4
143.204.42.157200 OK 349 kB URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F6?Expires=1662672136&Signature=UIQYlpgkxqEr82UHr5iMPV-dgZ2Rgi1EZvsWcE8HRnXHYct~mgrwQC~Uk5~vcsyHIAon2q11SFk-5SdcCO-pK-qGUO1g40qU4gBWRJKP7T106j1WBmTdQ-88YzENQMG5KTDmaEQP9cQz1PLBnBGIodsmdsmBEUACUsKVCAopVXIU0FoHMGW21Z~XBpybk6IiXYxu5QsZc7Oykv0ll5HeJwbmgnXnsWwPSiqo~qLNliVT~GFLdkGeLp~3OwYBLJ4ejQ8r~NpVXu4yM~ndFYOpl0P848niPaXnSOHstMV57bSZDC042l~oyYPi0ZWBI34~BWEgaoR7oXdtiuxIqNLAnw__&Key-Pair-Id=K3IVFO0KFGPSF4
IP 143.204.42.157:0
File type PNG image data, 2956 x 1663, 8-bit/color RGBA, non-interlaced\012- data
Size 349 kB (348887 bytes)
Hash e0a1b8125371ac5b967fc3bc7e485631
a11aa31ba65d0c886148fcbd6f781ef914be82d2
eb0fbf4af922544a3b7d3ad033156316f1af8270484d3cf457539d85aa1f1e21
GET /docs%2F55eba6f5-5602-4648-944f-77773ed0c662%2Fv2_images%2F6?Expires=1662672136&Signature=UIQYlpgkxqEr82UHr5iMPV-dgZ2Rgi1EZvsWcE8HRnXHYct~mgrwQC~Uk5~vcsyHIAon2q11SFk-5SdcCO-pK-qGUO1g40qU4gBWRJKP7T106j1WBmTdQ-88YzENQMG5KTDmaEQP9cQz1PLBnBGIodsmdsmBEUACUsKVCAopVXIU0FoHMGW21Z~XBpybk6IiXYxu5QsZc7Oykv0ll5HeJwbmgnXnsWwPSiqo~qLNliVT~GFLdkGeLp~3OwYBLJ4ejQ8r~NpVXu4yM~ndFYOpl0P848niPaXnSOHstMV57bSZDC042l~oyYPi0ZWBI34~BWEgaoR7oXdtiuxIqNLAnw__&Key-Pair-Id=K3IVFO0KFGPSF4 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 348887
Connection: keep-alive
Date: Thu, 08 Sep 2022 11:37:36 GMT
Last-Modified: Mon, 29 Aug 2022 16:57:50 GMT
ETag: "e0a1b8125371ac5b967fc3bc7e485631"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JxN119Q3vjRipdm1e5cN34UrDZWJn252iPzAJgjyL4JYWSQy3Xa8NA==
Age: 35021
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 675756a44be6f9bbe341fa4c866c941b
6502050805e53baeb44d82e55d4b15b82e34d2eb
cd1d16b5feefddfd89ac4bfcff21e80c49f07b0428aa57e8de365974f813e755
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8820
x-amzn-requestid: e2c909d0-f781-48e6-805e-a43940e67c4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG_LpG1OIAMF_8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319124a-37f3458a2905bd947cf01f93;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:51:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BEn2J8F8SsnyrLeWv5W6QDPn21ZjNXH3I0B2kUJYpgdMVp-88pb5rw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:17:34 GMT
age: 83022
etag: "6502050805e53baeb44d82e55d4b15b82e34d2eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:700,600,400,400italic,300,300italic
IP 142.250.74.10:0
GET /css?family=Open+Sans:700,600,400,400italic,300,300italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 21:21:08 GMT
date: Thu, 08 Sep 2022 21:21:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.db1f5016.js
54.230.111.118200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.db1f5016.js
IP 54.230.111.118:0
GET /vendor.db1f5016.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 103230
last-modified: Thu, 08 Sep 2022 16:19:52 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: CNo1uRhDSh4dT1NQhrW_GtXzTq3WlLQx
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 20:21:23 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "419225bddbaa8f495860fdd6b21c2a5c"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eLWrTjheqx2Q3w2BIJ8LQm4W1J8wyz2z0qJvZ-s0KCXjmE_RktElQg==
age: 3587
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
75.2.88.188200 OK 0 B URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP 75.2.88.188:0
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 323
Origin: https://docsend.com
Connection: keep-alive
Referer: https://docsend.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 21:21:10 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1662672080
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13326
access-control-allow-origin: https://docsend.com
vary: Accept,Accept-Encoding
x-intercom-version: 05d9cad82336b8f9259b87b30e14811c7a641d03
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0004vr74hhbk3oo9d4pg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"58fe6b0313d071dbfd2966e639dcb6b1"
x-runtime: 0.531245
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0359a879b27fffa05
X-Firefox-Spdy: h2
d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
143.204.42.157200 OK 0 B URL HTTP/1.1 d2qvtfnm75xrxf.cloudfront.net/assets/fonts/AtlasGrotesk-Regular-Web.woff2
IP 143.204.42.157:0
GET /assets/fonts/AtlasGrotesk-Regular-Web.woff2 HTTP/1.1
Host: d2qvtfnm75xrxf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docsend.com
Connection: keep-alive
Referer: https://d2qvtfnm75xrxf.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/font-woff2
Content-Length: 43308
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Expose-Headers:
Access-Control-Max-Age: 604800
Last-Modified: Tue, 06 Sep 2022 22:59:16 GMT
Strict-Transport-Security: max-age=31556952; includeSubDomains; preload
Via: 1.1 vegur, 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
Date: Thu, 08 Sep 2022 03:46:27 GMT
Cache-Control: no-transform
Vary: Origin
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9cCOkoL8l3RRRWL09wVcqpu5CWsF1RpcBqZEMQH_58VuUYSA3eiw6Q==
Age: 63281