Overview

URL sunnet-alert01-v4.duckdns.org/auth.php?oauth&login
IP185.238.2.67
ASNWEB_GroupInternet INC
Location Seychelles
Report completed2022-09-30 22:54:33 UTC
StatusLoading report..
urlquery Alerts DynDNS domain detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-30 17:00:01 UTC 143.204.55.36
mnemonic passive DNS cdn.cookielaw.org (8) 502 2013-12-28 13:20:36 UTC 2022-09-30 12:43:23 UTC 104.16.149.64
mnemonic passive DNS bam.nr-data.net (2) 630 2015-02-10 00:06:27 UTC 2022-09-30 17:57:00 UTC 162.247.241.14
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-30 04:56:26 UTC 34.117.237.239
mnemonic passive DNS datamarket.com (1) 0 2017-01-30 06:58:26 UTC 2022-09-14 22:16:49 UTC 193.14.90.203 Unknown ranking
mnemonic passive DNS www.qlik.com (20) 239241 2018-09-22 15:05:24 UTC 2022-09-30 16:29:09 UTC 104.18.15.193
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-30 04:55:45 UTC 142.250.74.72
mnemonic passive DNS geolocation.onetrust.com (1) 802 2018-02-07 11:23:41 UTC 2022-09-30 12:43:24 UTC 104.18.41.98
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-30 21:45:49 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-30 05:12:28 UTC 54.191.210.155
mnemonic passive DNS ocsp.pki.goog (1) 175 2017-06-14 07:23:31 UTC 2022-09-30 04:55:27 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-30 13:49:02 UTC 34.120.237.76
mnemonic passive DNS ocsp.starfieldtech.com (1) 6616 2012-06-22 18:08:50 UTC 2022-09-30 20:25:22 UTC 192.124.249.23
mnemonic passive DNS js-agent.newrelic.com (1) 378 2017-01-30 05:00:15 UTC 2022-09-30 05:51:47 UTC 151.101.86.137
mnemonic passive DNS sunnet-alert01-v4.duckdns.org (2) 0 2022-09-28 17:44:55 UTC 2022-09-28 17:44:55 UTC 185.238.2.67 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-30 04:55:29 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-30 05:34:07 UTC 143.204.55.49
mnemonic passive DNS dev.visualwebsiteoptimizer.com (3) 5085 2012-05-21 13:21:05 UTC 2022-09-30 08:33:53 UTC 34.96.102.137


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 185.238.2.67

Date UQ / IDS / BL URL IP
2022-09-30 23:08:51 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth= (...) 185.238.2.67
2022-09-30 23:08:38 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth= (...) 185.238.2.67
2022-09-30 22:54:33 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth&login 185.238.2.67

Last 5 reports on ASN: WEB_GroupInternet INC

Date UQ / IDS / BL URL IP
2022-12-07 13:03:17 +0000
33 - 0 - 79 rcu6.com/email-account.php 45.133.200.3
2022-12-07 13:02:34 +0000
34 - 0 - 79 rcu6.com/ 45.133.200.3
2022-12-07 03:42:24 +0000
31 - 0 - 77 rcu6.com/ 45.133.200.3
2022-12-07 00:39:35 +0000
28 - 0 - 77 rcu6.com/email-account.php 45.133.200.3
2022-12-06 20:16:38 +0000
32 - 0 - 35 rcu6.com/email-account.php 45.133.200.3

Last 3 reports on domain: sunnet-alert01-v4.duckdns.org

Date UQ / IDS / BL URL IP
2022-09-30 23:08:51 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth= (...) 185.238.2.67
2022-09-30 23:08:38 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth= (...) 185.238.2.67
2022-09-30 22:54:33 +0000
3 - 0 - 0 sunnet-alert01-v4.duckdns.org/auth.php?oauth&login 185.238.2.67

No other reports with similar screenshot



JavaScript

Executed Scripts (21)


Executed Evals (4)

#1 JavaScript::Eval (size: 133, repeated: 1) - SHA256: cb4796374e765897916b4fd6c15289cea1389208a2c57b2fa2876f42a3972dd3

                                        (function() {
    var b = "undefined";
    return b.replace(/\w\S*/g, function(a) {
        return a.charAt(0).toUpperCase() + a.substr(1).toLowerCase()
    })
})();
                                    

#2 JavaScript::Eval (size: 107, repeated: 1) - SHA256: ee5f41a700bcc0d782ee85a025ba282de849ed0f717e0c4263e2b9360033df35

                                        (function() {
    var b = {
            desktop: 980,
            tablet: 768,
            mobile: 0
        },
        a;
    for (a in b)
        if (window.screen.width >= b[a]) return a
})();
                                    

#3 JavaScript::Eval (size: 169, repeated: 1) - SHA256: 0116a2700b7ee1817d58f62e331e9e31146688817f91e2cd02cecc0426c4ad40

                                        (function() {
    var a = document.title.replace(/(\|\sQlik)/gi, "").trim(),
        b = document.getElementsByClassName("page-title__headline");
    0 < b.length && (a = b[0].innerText);
    return a
})();
                                    

#4 JavaScript::Eval (size: 84, repeated: 1) - SHA256: 8d4f195f6eec21300a8867fec2f32f5e3b93f4ac31816ae3c398be71c0963476

                                        (((((_vwo_s().f_e(_vwo_s().Co(), 'US')))) || (((_vwo_s().f_e(_vwo_s().Co(), 'GB'))))))
                                    

Executed Writes (0)



HTTP Transactions (61)


Request Response
                                        
                                            GET /auth.php?oauth&login HTTP/1.1 
Host: sunnet-alert01-v4.duckdns.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         185.238.2.67
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 30 Sep 2022 22:54:22 GMT
Server: Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k
Location: https://sunnet-alert01-v4.duckdns.org/auth.php?oauth&login
Content-Length: 270
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   270
Md5:    0b511a7e40b8d9217bb4589b49658c45
Sha1:   895af201c9d6c79c4bc35e22d435bd4dffccf97b
Sha256: b3f2bf8528aac1979915b4c11769f33c0317bff3064f2d15eaada78b6b8b095b

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 22:16:15 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0T4UPX22MkMKwevYqKQJuamXMRe_bzMgcgKp8HaeKouYXH8HYYSlxQ==
Age: 2287


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14599
Expires: Sat, 01 Oct 2022 02:57:41 GMT
Date: Fri, 30 Sep 2022 22:54:22 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 30 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DatLZosKXrqKRyfbEJZADp4YixPKFcZsBOkg08V9Mbzc25bpWP9gdw==
age: 62755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 30 Sep 2022 22:54:22 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39C5C0735B261F2DBF07DF0CC7F31074B349BD4D981034A39C4022866EFE1EF0"
Last-Modified: Thu, 29 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 01 Oct 2022 04:54:22 GMT
Date: Fri, 30 Sep 2022 22:54:22 GMT
Connection: keep-alive

                                        
                                            GET /auth.php?oauth&login HTTP/1.1 
Host: sunnet-alert01-v4.duckdns.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         185.238.2.67
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 22:54:22 GMT
Server: Apache/2.4.37 (AlmaLinux) OpenSSL/1.1.1k
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=4f51fr4v1urddmpls0jmcbclga; path=/
Location: https://datamarket.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 22:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 23:13:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _aLZgN-NEw4Pbl17ayYWLCd2gKhyA0Hn1UhAJy-Hj2RUR7BqLsJjQw==
Age: 1490


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "66299DD511D33A404DB24F4EB5A70811F2F76D2C9490C0A8F42B63DE934C8782"
Last-Modified: Fri, 30 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21582
Expires: Sat, 01 Oct 2022 04:54:05 GMT
Date: Fri, 30 Sep 2022 22:54:23 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: datamarket.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         193.14.90.203
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 22:48:38 GMT
Server: Apache
Location: https://www.qlik.com/us/products/qlik-data-market
Content-Length: 0
X-Varnish: 303963510 303166629
Age: 368
Via: 1.1 varnish (Varnish/6.1)
Expires: Fri, 30 Sep 2022 23:54:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 336
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 22:54:23 GMT
Last-Modified: Fri, 30 Sep 2022 22:48:47 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A9NPiFhCi8KNERb1nss3NA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.191.210.155
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wei0ck9rRMtP2hrW2xjyyF4sSLc=

                                        
                                            GET /assets/site/media/fonts/source-sans-pro/sourcesanspro-extralight-webfont.woff2 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 26016
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:06 GMT
etag: "0ddb49831c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 402519
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a1f850b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26016, version 2.1376\012- data
Size:   26016
Md5:    b525a6c5fa896a364c69214f27ae022b
Sha1:   01a8f04b33c9aeebaaba7850e63c86c9f8d226eb
Sha256: 973911bc7405207ac9075fa0da52d5c7e544493e08991ce88ff572714f8a3862
                                        
                                            GET /assets/site/media/fonts/source-sans-pro/sourcesanspro-bold-webfont.woff2 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 27636
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:18 GMT
etag: "0ebdb9f31c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 402519
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a0f830b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27636, version 2.1376\012- data
Size:   27636
Md5:    016aa62a5e896df654534ae29a0e84b0
Sha1:   311de8e1f125ad8124ba86b6036c02d40924720c
Sha256: 6a1e43e41fbfeb5a95917788fda0f11a4e141e32385b307ee27343c97a56c0f0
                                        
                                            GET /assets/site/media/fonts/source-sans-pro/sourcesanspro-light-webfont.woff2 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 27248
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:46 GMT
etag: "0618cb031c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 143081
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a1f880b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27248, version 2.1376\012- data
Size:   27248
Md5:    9618cb448fc446211feb2dcf50f5d0ff
Sha1:   b0fccd19d190526895c7e2956e6886ca0f0c4c65
Sha256: 29538c66e2a74d0a9ee7b7281ad4717d47fc64412c645dece33bd08e941f034d
                                        
                                            GET /assets/site/media/fonts/source-sans-pro/sourcesanspro-semibold-webfont.woff2 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 27936
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:30 GMT
etag: "0f92a731c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 143080
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a1f8f0b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27936, version 2.1376\012- data
Size:   27936
Md5:    95f0dbda36e8b7a79e394a5df1d58df1
Sha1:   86a81480d15d7eab2de879228dcdac9575351c52
Sha256: cf0eff2c43b818589507459c3fbbb418d22747bdf5a33b37a7f5a6fc4a2395b4
                                        
                                            GET /assets/site/media/fonts/source-sans-pro/sourcesanspro-regular-webfont.woff2 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/font-woff2
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 28160
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:14 GMT
etag: "091799d31c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 402519
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a1f8d0b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 28160, version 2.1376\012- data
Size:   28160
Md5:    744fce6b2e59051fbf5905b6b3ea374e
Sha1:   38aa6c9115148fd80e311b59a05b549774a2fb50
Sha256: ad6ed08198372e730d69e379b685b1c277dbf1a22b24aaec71c716db1507e127
                                        
                                            GET /us/-/media/images/qlik/global/qlik-logo-2x.png?rev=1167e952ae934867bc9ee7f3d4952e1f HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 3242
cache-control: public, max-age=7200
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=9684
content-disposition: inline; filename="qlik-logo-2x.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: 47dcaf46e7a440ae9bf505c78021a528
last-modified: Wed, 19 Aug 2020 16:59:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Sat, 01 Oct 2022 00:54:24 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4a2f9e0b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3242
Md5:    aa608e24be8dbd32a972dcdc98ad1db6
Sha1:   0e104075ac6324f168b181baf1f78e1fa6a96c0b
Sha256: 846e1a9e4617755b1bffbdcaa416a4b6711bd9304822938124c0c4dd87478ec1
                                        
                                            GET /us/-/media/images/global-us/promos/navigation/qlik-insider-web-series-600x350.png?rev=d752e9e6a45a4a1ea259be8dbf734b23&h=350&w=600&la=en&hash=2DFC7B1B33E3DC7605E0B83ABB0C85CB HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 144902
cache-control: public, max-age=7200
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=189093
content-disposition: inline; filename="qlik-insider-web-series-600x350.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: 2265abb1a6f74f1ea61c98fe2f3a17ab
last-modified: Tue, 10 Aug 2021 02:37:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Sat, 01 Oct 2022 00:54:24 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4a2fa00b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   144902
Md5:    cc3d80b6ebb72ae0ec91cc64be656589
Sha1:   2579abd749e67fea267ab4d3cf0506d0a22e3f3e
Sha256: 71a2d990b0f54970133491428cf6c1f6766a93abb222bd4ddefeed96ad25df6b
                                        
                                            GET /us/-/media/images/global-us/promos/navigation/qw2022_qlik-com_navigationpromo-600x350.jpg?rev=e52725d5a333426cb58b1f8347a90ea1&h=350&w=600&la=en&hash=BE36D7B70B3AE05F8B6D679D8F874205 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 18199
cache-control: public, max-age=7200
cf-bgj: imgq:100,h2pri
cf-polished: origSize=21674, status=webp_bigger
content-disposition: inline; filename="qw2022_qlik-com_navigationpromo-600x350.jpg"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: 35eb3da42b23486eb35616d9900a6ccd
last-modified: Tue, 15 Mar 2022 02:35:03 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
expires: Sat, 01 Oct 2022 00:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a2f9f0b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, progressive, precision 8, 600x350, components 3\012- data
Size:   18199
Md5:    a36b6cd9da26b8afce621c67dcb46ef3
Sha1:   3195cff7fb5abeab8e544e0fc430028de83f8f79
Sha256: c2971c286b5926ba4a38bb0bf15168225572b2ac81a0bdcbbfd8e5fcca3553c4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 30 Sep 2022 22:54:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-P7VJSX HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 30 Sep 2022 22:54:24 GMT
expires: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: private, max-age=900
last-modified: Fri, 30 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 108197
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39225)
Size:   108197
Md5:    a9030d02d0b7189f186cb0175ddd18c3
Sha1:   0eaff37546bd1bdc1eacc1d0a73c0245944cd499
Sha256: 05f5cb0fa950535068a43d04d8e627bf1a01ac139d572cb63a6a435d8dcab2e8
                                        
                                            GET /assets/site/media/svgs/icons/basic.svg HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=7948800
last-modified: Tue, 02 Aug 2022 18:14:46 GMT
etag: W/"02fe1be9ba6d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 4293497
expires: Sat, 31 Dec 2022 22:54:24 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a98230b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2454)
Size:   5434
Md5:    af76e39d9ca52a99ec85e59f280313e5
Sha1:   395f5f8c235ca45a09d9b6b57a12f08a22a31f9d
Sha256: 573bb532b4318048249195463e4172479c08c92197d47687837f0c0132b09358
                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Fri, 30 Sep 2022 15:54:02 GMT
etag: 0x8DAA2FBFF307DCE
x-ms-request-id: 0f456457-501e-0163-1a00-d5d896000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 4277
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4c58c31c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    cef0e6a73f52f72e73d57867726399ff
Sha1:   2611e0920611a653446508e5f3de017900cc49f2
Sha256: 97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6
                                        
                                            GET /consent/1e639160-1776-49cb-99e9-654e871e8580/1e639160-1776-49cb-99e9-654e871e8580.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qlik.com
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 1969
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: QbwVPqzd//hMxjfHJOMbfg==
last-modified: Fri, 16 Sep 2022 18:18:10 GMT
etag: 0x8DA980FCFDD52C9
x-ms-request-id: 8e8fbcde-f01e-0043-2407-caf20f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5302
expires: Sat, 01 Oct 2022 02:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4c987bb4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (6532), with no line terminators
Size:   1969
Md5:    41bc153eacddfff84cc637c724e31b7e
Sha1:   4095a73f00246afd8055b7b80acc9ce702d7f0e2
Sha256: f9e3bbbf4472cac5e33b8050513969e89e2b2db5a3060d0502827dc980a75e22
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Sat, 01 Oct 2022 04:14:38 GMT
Date: Fri, 30 Sep 2022 22:54:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Sat, 01 Oct 2022 04:14:38 GMT
Date: Fri, 30 Sep 2022 22:54:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Sat, 01 Oct 2022 04:14:38 GMT
Date: Fri, 30 Sep 2022 22:54:24 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d8201d9-93ae-492b-8ea9-d245fa2e4073.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3640
x-amzn-requestid: b5f5c567-8aa9-414b-8310-cf3006711ee9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo1vFIwoAMF2mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb57-0f1cbcbb29287f5367a14b67;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HiU5q54X8yU3PXfTqYyCa9c3NbGAmjVLQRYn3P47trBJhtCP4juxRQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 11:34:12 GMT
age: 40812
etag: "303c6bb672425443a15bbe22394bd1149f887904"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3640
Md5:    a9e7ba045a723120501994dea21709db
Sha1:   303c6bb672425443a15bbe22394bd1149f887904
Sha256: b1bea7212e55ec8eaf62434214a86fed7d6a990d105984d79a7fa0e793395d59
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F979b163e-e6cb-49a1-a2a2-de55e3c86685.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6655
x-amzn-requestid: ade9e38b-a622-4ec5-b8be-29d4ba80d883
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZP6jHGNioAMFVbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63363e13-02fb28271686b4c97d95bde3;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 00:53:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wwTf6va45g9yXUUnmddByF22fmAQCX6ZVK6PwpElVK41tesFsq0mlA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 13:43:10 GMT
age: 33074
etag: "bb9a3611d2eb51e0eef79106f1497e3f460a03cb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6655
Md5:    72a92d7de4dd5ccce4cdf54dd132b948
Sha1:   bb9a3611d2eb51e0eef79106f1497e3f460a03cb
Sha256: 7654b1824c07d1c121e288c19ea587eff25579333a783978bc73dc37cc9b35a4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3178d2f-9a52-4d0e-a26b-5a90ef8578f2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3430
x-amzn-requestid: 22a0e400-1567-4c9c-aca9-782f3f81a8ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLCrEn4IAMFZWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f210-11fa888c78719c44160accf8;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: k0M-mNnb-ymglXTepD_fMhh89biJV-Zo8nZUjyR94PRd7SnpdEMSfg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 22:47:12 GMT
age: 432
etag: "42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3430
Md5:    488ec5b4267ccb1cdc4e6e08556f7f3b
Sha1:   42dd7ec0c606dbd3ccc0074f61d3b4b12f2e3c88
Sha256: d9b05fe92962a58b9a8e8dbd4757969aa361be12018107ae649ffcdb8a0f8d84
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3837333-445d-4cb3-9734-b6d600909325.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8586
x-amzn-requestid: 7b1086bb-d953-4248-989b-3bca5cc70cc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZM83cG8soAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63350e95-193af5f92dff316d146e693f;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 03:18:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hf0Pj9q9HdufvMZ-pjVvlflJ0z9R7Y45tvukrcVaZTAABBushRT8AA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 16:26:32 GMT
age: 23272
etag: "fe6ca607e220c55494e3b2d0aae5022959c4a5af"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8586
Md5:    9fb275e930996f302ab80412269d258a
Sha1:   fe6ca607e220c55494e3b2d0aae5022959c4a5af
Sha256: 6b03622b60a4ad077f1e0ac62d3b322d93ec0c332a65f84b8e1caab61ca2edae
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4016c3a3-ed7e-49cf-acd4-11c1b189820c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7059
x-amzn-requestid: e49c2591-9865-4492-9606-91a31b209b96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQxTuESAIAMF4rw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633695b1-74af94b622f421880fcf9938;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 07:07:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: yQb5GSZT1NABosGTV3uz_K8wDyOy5ELejEIY2VzR3slfz_jFvTHICg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 07:18:47 GMT
age: 56137
etag: "1e6d597d8bb40709da013b8438e2f4b0f9af2672"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7059
Md5:    c5506beef1fefd03247b133abe705df0
Sha1:   1e6d597d8bb40709da013b8438e2f4b0f9af2672
Sha256: 11ca041965f95a6f83eff3cec5c7d070a3f6be6c9b3210abe7c94c9270c9dc1b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7431248d-1154-4162-8551-6080a3be5e21.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9716
x-amzn-requestid: 0b0313c3-739d-473e-a103-876770cb34d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo02ElyoAMF4wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb52-48ec21e8776bd6cb1d2b0f2f;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PxYLSY-_PG8AgeAv1-LNj5d_7fIOEBSLA6HledS_RLR-j4IRkJC8Ew==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 06:47:05 GMT
age: 58039
etag: "1de4a8e80053d98677350d7f01c9231d2d50e073"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9716
Md5:    fa789a3f6f7737f79d81cf0272d0e029
Sha1:   1de4a8e80053d98677350d7f01c9231d2d50e073
Sha256: f5205ab8f8306a7822ed3d336649fb09738628fea1a92626e4e557f2d8c6d8e5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2881
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 22:54:24 GMT
Last-Modified: Fri, 30 Sep 2022 22:06:23 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /scripttemplates/6.38.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 89624
content-encoding: gzip
content-md5: jz950M8ZW7RakPP2zlLHZQ==
last-modified: Thu, 21 Jul 2022 06:31:17 GMT
etag: 0x8DA6AE29E465D1D
x-ms-request-id: 7e08b95c-701e-0174-68d7-9c18f5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 4239
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4d793d1c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65455)
Size:   89624
Md5:    8f3f79d0cf195bb45a90f3f6ce52c765
Sha1:   0dbd651547da8916062b874fd671a005d4d4c876
Sha256: 5df755e7d1f1fad81564342c72ea8226bf3ce12aa5892556f37cab01998ce045
                                        
                                            GET /us/-/media/images/global-us/site-content/products/qlik-sense-data-sources/databases.png HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 1718
cache-control: public, max-age=5615
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3617
content-disposition: inline; filename="databases.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: ab4c1b38b23a4f6796597164b084f1df
last-modified: Thu, 18 Jun 2020 14:43:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
expires: Sat, 01 Oct 2022 00:27:59 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4ac8450b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1718
Md5:    e8653fcdb8ca8406d9bc7972fa20cd25
Sha1:   0fdfea96d65fddeec947ff44b59c22a1a503d82b
Sha256: 7e8da5c4fa760b6afdc878ab95209c3e10bbb65ec5a77f63e8dca9bf27df7e1e
                                        
                                            GET /us/-/media/images/global-us/site-content/products/qlik-sense-data-sources/web-services.png HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 696
cache-control: public, max-age=2470
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1831
content-disposition: inline; filename="web-services.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: 06b181141ac243e6882e8572afd8e1f2
last-modified: Thu, 18 Jun 2020 14:43:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
expires: Fri, 30 Sep 2022 23:35:34 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4ac8460b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   696
Md5:    18f0b332184b85f4c327f6d9345facf5
Sha1:   c0ad80efe8e9ce9fd8a57a51585c64d1883954da
Sha256: 63e4f38ad587e55c19c4e853b80f0246c0e1b1a2dc72b9697f20ca149ec493b7
                                        
                                            GET /us/-/media/images/global-us/site-content/products/qlik-sense-data-sources/applications.png HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 564
cache-control: public, max-age=7200
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1454
content-disposition: inline; filename="applications.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: 8a96a1f0b20e4d4681e7002b37854e3c
last-modified: Thu, 18 Jun 2020 14:43:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
expires: Sat, 01 Oct 2022 00:54:24 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4ac8480b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   564
Md5:    d7b52c9769c5749384bced5559f172d2
Sha1:   feb1158f8e6ec86ca6d806dd46cd99f93eb31ee8
Sha256: 2a2d3e4679db3ec4a0d1fcf438b2851eb1dff1218cf4b09c15611b2c3d253086
                                        
                                            GET /sitecore%20modules/Web/ExperienceForms/scripts/jquery-3.5.1-m.min.js HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=604800
last-modified: Thu, 15 Sep 2022 18:33:14 GMT
etag: W/"091799d31c9d81:0"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: HIT
age: 53393
expires: Fri, 07 Oct 2022 22:54:24 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a2f990b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   72887
Md5:    94e60047a5d9d2eff63c1e4ff513a38d
Sha1:   dbb6f6fb60ae122af765ef703b53b86445ceaa5a
Sha256: 1581e2a194653b3ad675256d62778cb70f9ff29f64723db5741ac2074e6bb872
                                        
                                            GET /assets/site/media/fav/apple-touch-icon.png?v=0.0.49 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 3034
cache-control: public, max-age=604800
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=7303
content-disposition: inline; filename="apple-touch-icon.webp"
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: "06748831c9d81:0"
last-modified: Thu, 15 Sep 2022 18:32:38 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 34652
expires: Fri, 07 Oct 2022 22:54:24 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75308a4dea910b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3034
Md5:    2fc0c5585861bc6a3136861d73359a7a
Sha1:   127b5419851cca2c26cc16d63bc198fc0e705e31
Sha256: b088d625f20e6e78c0da9efddd8f87e67b96800d54e001ce861465c9d7d55ea4
                                        
                                            GET /consent/1e639160-1776-49cb-99e9-654e871e8580/db985d75-db48-44f1-a732-34bebddbc4f6/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.qlik.com/
Origin: https://www.qlik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
content-length: 13656
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: IQ0PJ9Hk6t86MtwYs4TIoQ==
last-modified: Fri, 16 Sep 2022 18:18:27 GMT
etag: 0x8DA980FDA0B03B1
x-ms-request-id: 6e1b14ae-f01e-0108-57fe-c985c0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 5302
expires: Sat, 01 Oct 2022 02:54:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4df963b4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Size:   13656
Md5:    210d0f27d1e4eadf3a32dc18b384c8a1
Sha1:   216ea6e72c6bdb923ae59c8acfffb1502ee6bb21
Sha256: 3229ff7e0cb90049a5548b6e6342516ccc97387714dfa42dd2fdf93142411db8
                                        
                                            GET /scripttemplates/6.38.0/assets/otFlat.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.qlik.com/
Origin: https://www.qlik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
content-length: 3007
content-encoding: gzip
content-md5: l8TaFfqEBdbGRIscoE5PLQ==
last-modified: Thu, 21 Jul 2022 06:31:09 GMT
etag: 0x8DA6AE29925C8FF
x-ms-request-id: c9563b72-301e-0137-1684-a6321c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5303
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4e3993b4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (11118)
Size:   3007
Md5:    97c4da15fa8405d6c6448b1ca04e4f2d
Sha1:   88e70aa9e86a4cac72efb899cc13f4b259b6c55c
Sha256: 79020e0f443e773974f1fdfdd30eed8a006d75c14c57afe620053cd427e48740
                                        
                                            GET /scripttemplates/6.38.0/assets/v2/otPcCenter.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.qlik.com/
Origin: https://www.qlik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
content-length: 13258
content-encoding: gzip
content-md5: JtD7zjxzBe/apQLaCwCdaw==
last-modified: Thu, 21 Jul 2022 06:31:11 GMT
etag: 0x8DA6AE29A87E4A6
x-ms-request-id: e4390e54-401e-0138-1684-a6dfea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5303
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4e3995b4f7-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (51305)
Size:   13258
Md5:    26d0fbce3c7305efdaa502da0b009d6b
Sha1:   1188784d9c337fe95a863c8c7a872c791c32d83d
Sha256: ecc34d7d6ed2ad2bf2f3d51f8653cf548f933d94d5cfa876f3376532009fcf07
                                        
                                            POST / HTTP/1.1 
Host: ocsp.starfieldtech.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Fri, 30 Sep 2022 22:54:25 GMT
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 30 Sep 2022 22:39:58 GMT
Expires: Sat, 01 Oct 2022 22:39:58 GMT
ETag: "96415fcc49873ce11e7a3a84929020dc477662e1"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1845
Md5:    ca06a825ec2fb129026d5911b8c5bdb1
Sha1:   96415fcc49873ce11e7a3a84929020dc477662e1
Sha256: 860d7fcf5d6ef2f8c1ba9a950e508b30698651d68572306e0ad5c3b57d8c1a55
                                        
                                            GET /web/djIkdGU6Ny4wOmFzeW5jJWdxdWVyeQ==/tag-90d1c59b328d9c90a45785e87c70a86f.js HTTP/1.1 
Host: dev.visualwebsiteoptimizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qlik.com
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.96.102.137
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
content-length: 49255
last-modified: Thu, 29 Sep 2022 12:13:20 GMT
content-encoding: br
etag: "63358be0-c067"
server: gams1
vary: Accept-Encoding
cache-control: public, max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47951)
Size:   49255
Md5:    8a3c2f31ac2ab8f73e6904f121e377c7
Sha1:   7b131427ab3ce9e6c4168a0788e1ff79437694c4
Sha256: 220e4c176ee75db48f4f16c9e5afba1e4a44c312faaf8d7e0167f4265927c57a
                                        
                                            GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Fri, 30 Sep 2022 15:54:11 GMT
x-ms-request-id: 3fa06d1f-601e-0124-2701-d507fd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 4277
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4eb9ef1c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3384
Md5:    c395b918efddcf28a0b0eb03a665e313
Sha1:   16b3f74972305269399abf506f59cf03a6c5814e
Sha256: 3bc5386da063c71b434c858fcf6534105ea4e4a52d289e406b7a444e51ee5494
                                        
                                            GET /v.gif?cd=0&a=538716&d=qlik.com&u=D50E0A07E50D9A30183B5AA9EAD4CD415&h=d38f39a2381c68908109923608764349&t=false&r=0.669020808959377 HTTP/1.1 
Host: dev.visualwebsiteoptimizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.96.102.137
HTTP/2 200 OK
content-type: image/gif
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
expires: Mon, 10 Jan 2005 00:00:01 GMT
pragma: no-cache
x-content-type-options: nosniff
content-length: 35
server: gnv1c
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /nr-spa-1216.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 30 Sep 2022 22:54:25 GMT
via: 1.1 varnish
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 151
x-timer: S1664578465.295514,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32010)
Size:   18216
Md5:    6561a2403142205f966207d61576f1a6
Sha1:   1310e72f494e12ab63a4280fc1600a2c89dc9bb8
Sha256: 0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3719
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 22:54:25 GMT
Last-Modified: Fri, 30 Sep 2022 21:52:26 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /1/NRJS-34cf5b28bd1272b250e?a=1813136521&v=1216.487a282&to=NVUBNRMFV0FQUk0IXAwfMAgVAVpdQ1QZM1YTRQYSFUt7U0JUaQBUBw%3D%3D&rst=3019&ck=1&ref=https://www.qlik.com/us/products/qlik-sense/data-sources&qt=1&ap=222&be=2015&fe=2930&dc=2187&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1664578458970,%22n%22:0,%22f%22:1432,%22dn%22:1432,%22dne%22:1432,%22c%22:1432,%22s%22:1432,%22ce%22:1432,%22rq%22:1433,%22rp%22:1903,%22rpe%22:1903,%22dl%22:1911,%22di%22:2186,%22ds%22:2186,%22de%22:2189,%22dc%22:2930,%22l%22:2930,%22le%22:2932%7D,%22navigation%22:%7B%7D%7D&fcp=2825&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 30 Sep 2022 22:54:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75308a508b07b509-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=4054ca0bf3c5aba9; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   72
Md5:    107d93e382e2c9b00fbf9fb0edc65d86
Sha1:   77e750e3ebf9706f4f6dd253785602d70be17c6c
Sha256: a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
                                        
                                            POST /events/1/NRJS-34cf5b28bd1272b250e?a=1813136521&v=1216.487a282&to=NVUBNRMFV0FQUk0IXAwfMAgVAVpdQ1QZM1YTRQYSFUt7U0JUaQBUBw%3D%3D&rst=4295&ck=1&ref=https://www.qlik.com/us/products/qlik-sense/data-sources HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 799
Origin: https://www.qlik.com
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 30 Sep 2022 22:54:27 GMT
Content-Length: 24
Connection: keep-alive
CF-Ray: 75308a5838cdb509-OSL
Access-Control-Allow-Origin: https://www.qlik.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   24
Md5:    bc32ed98d624acb4008f986349a20d26
Sha1:   2d3df8c11d2168ce2c27e0937421d11d85016361
Sha256: 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
                                        
                                            GET /us/products/qlik-sense/data-sources HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; path=/; HttpOnly; SameSite=Lax SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False; expires=Mon, 27-Sep-2032 22:54:23 GMT; path=/; HttpOnly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75308a465c7b0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /scripttemplates/6.38.0/assets/otCommonStyles.css HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.qlik.com/
Origin: https://www.qlik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 30 Sep 2022 22:54:25 GMT
content-md5: TLLtdkuMahUQRVIfmZNHNw==
last-modified: Thu, 21 Jul 2022 06:31:23 GMT
x-ms-request-id: bd042185-a01e-0132-2f84-a6c663000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5303
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75308a4e4996b4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cookieconsentpub/v1/geo/location HTTP/1.1 
Host: geolocation.onetrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.qlik.com
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.41.98
HTTP/2 200 OK
content-type: application/json
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75308a4d5be7b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bundles/scripts/GlobalJavaScriptBundle?v=I8w15aXnVdZCFrLuepMOqMubUuem1lzi917KGaonM0E1 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=31437894
cf-bgj: minify
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
expires: Fri, 29 Sep 2023 19:39:18 GMT
last-modified: Thu, 29 Sep 2022 19:39:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 69550
server: cloudflare
cf-ray: 75308a4ac84e0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /j.php?a=538716&u=https%3A%2F%2Fwww.qlik.com%2Fus%2Fproducts%2Fqlik-sense%2Fdata-sources&f=1&r=0.759641557857558 HTTP/1.1 
Host: dev.visualwebsiteoptimizer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.96.102.137
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
etag: W/"1664543752"
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /us/products/qlik-data-market HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.18.15.193
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
date: Fri, 30 Sep 2022 22:54:23 GMT
location: http://www.qlik.com/us/products/qlik-sense/data-sources
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75308a435a860b59-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /assets/site/vendor/polyfills/polyfills.js?v=0.0.49 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=604800
cf-bgj: minify
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: W/"0ebdb9f31c9d81:0"
last-modified: Thu, 15 Sep 2022 18:33:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 59212
expires: Fri, 07 Oct 2022 22:54:24 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a1f930b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /layouts/system/VisitorIdentification.js HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=604800
cf-bgj: minify
cf-polished: origSize=2203
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
etag: W/"0c4bce71b9ad51:0"
last-modified: Wed, 13 Nov 2019 12:14:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 477610
expires: Fri, 07 Oct 2022 22:54:24 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75308a4a2f9c0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /bundles/css/GlobalCSSBundle?v=6URN7skXe3NhD1_WGSAGuy19Utui-9_pwmA8Si8CJnM1 HTTP/1.1 
Host: www.qlik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.qlik.com/us/products/qlik-sense/data-sources
Cookie: ASP.NET_SessionId=wn0ouc1vkowjvc4ud2ee3ceb; SC_ANALYTICS_GLOBAL_COOKIE=8f8de2e364f643beba008c78dc4d1244|False
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.18.15.193
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 30 Sep 2022 22:54:24 GMT
cache-control: public, max-age=31430142
cf-bgj: minify
cf-polished: origSize=330121
content-security-policy: default-src 'self' data: https:; script-src 'self' https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com 'unsafe-inline' 'unsafe-eval' https:; child-src 'self' blob:; worker-src 'self' blob:;object-src 'self'; style-src 'self' data: 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' data: https:; frame-src 'self' https: mailto: tel:; font-src 'self' data: https:; connect-src 'self' https://*.logrocket.io https://*.lr-ingest.io https://*.logrocket.com https://*.lr-in.com https: wss://*.hotjar.com; frame-ancestors 'self' https://vshow.on24.com https://login-staging.qlik.com/ https://login.qlik.com/; base-uri 'none'; form-action 'self' https:; upgrade-insecure-requests;
expires: Fri, 29 Sep 2023 17:30:06 GMT
last-modified: Thu, 29 Sep 2022 17:30:06 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 53393
server: cloudflare
cf-ray: 75308a4a2f9b0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---