Overview

URL wrist-vacatures.com/
IP104.16.13.194
ASNCLOUDFLARENET
Location
Report completed2022-09-27 10:08:23 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed
2022-09-27 2 wrist-vacatures.com Sinkholed


Files

No files detected



Passive DNS (24)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS rudderstack.cdp.prod.data.typeform.com (5) 78304 2022-02-16 08:13:15 UTC 2022-09-27 07:19:21 UTC 107.21.23.98
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-27 04:54:22 UTC 162.247.241.14
mnemonic passive DNS api.keen.io (1) 16589 2013-07-27 19:58:01 UTC 2022-09-26 20:52:57 UTC 52.25.177.58
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.77.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.27
mnemonic passive DNS app.clickfunnels.com (3) 34727 2015-03-12 08:40:23 UTC 2022-09-27 05:41:58 UTC 104.16.13.194
mnemonic passive DNS rudderstack-control-plane.cdp.prod.data.typeform.com (2) 84166 2022-02-15 17:37:23 UTC 2022-09-27 07:19:21 UTC 18.209.217.52
mnemonic passive DNS images.typeform.com (1) 54983 2019-10-20 22:30:35 UTC 2022-09-27 07:19:20 UTC 143.204.55.49
mnemonic passive DNS klee.studio.s3.amazonaws.com (1) 859833 2018-11-08 16:57:02 UTC 2022-09-24 21:24:15 UTC 54.231.165.145
mnemonic passive DNS use.fontawesome.com (2) 942 2017-01-30 04:43:25 UTC 2022-09-27 04:53:21 UTC 172.64.132.15
mnemonic passive DNS wrist-vacatures.com (10) 0 2022-04-17 20:49:53 UTC 2022-09-01 17:55:17 UTC 104.16.16.194 Unknown ranking
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS ocsp.sca1b.amazontrust.com (3) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.165
mnemonic passive DNS embed.typeform.com (1) 30985 2019-06-21 14:28:23 UTC 2022-09-27 08:05:54 UTC 54.230.111.5
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-27 04:38:43 UTC 157.240.200.35
mnemonic passive DNS renderer-assets.typeform.com (3) 46243 2020-10-28 09:45:33 UTC 2022-09-27 07:19:19 UTC 143.204.55.76
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-27 04:35:02 UTC 104.18.47.230
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-27 07:18:49 UTC 142.250.74.10
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (3) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.3
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 54.187.71.185
mnemonic passive DNS form.typeform.com (1) 72651 2020-06-16 11:44:05 UTC 2022-09-27 01:58:44 UTC 172.64.146.93


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.16.13.194

Date UQ / IDS / BL URL IP
2022-11-25 08:47:03 +0000
0 - 0 - 1 ybo.biz/ 104.16.13.194
2022-11-24 21:17:50 +0000
0 - 0 - 4 incomealert.email/spm-conf1?ocxf_reportspamln (...) 104.16.13.194
2022-11-09 14:49:04 +0000
0 - 0 - 0 bakerlisalee.clickfunnels.com/optingmj9hif 104.16.13.194
2022-11-04 11:09:20 +0000
0 - 0 - 39 beliv-usa.com/beliv-tsl 104.16.13.194
2022-11-03 21:20:23 +0000
0 - 0 - 1 thewilltofindtheway.com/ 104.16.13.194

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-28 12:34:12 +0000
0 - 0 - 2 safeclk.fun/cash/mg/ 104.21.91.67
2022-11-28 12:34:01 +0000
0 - 0 - 15 www-imagefap-com.pornproxy.art/ 104.21.21.250
2022-11-28 12:32:27 +0000
0 - 0 - 2 vk-id54353432.ru/ 104.21.7.130
2022-11-28 12:31:54 +0000
0 - 0 - 2 shorturl.at/bglq1 172.67.171.25
2022-11-28 12:23:47 +0000
8 - 0 - 24 natflixuserapp.com/ecf9902e0f61677c8de25ae60b (...) 172.67.169.24

Last 1 reports on domain: wrist-vacatures.com

Date UQ / IDS / BL URL IP
2022-09-27 10:08:23 +0000
0 - 0 - 10 wrist-vacatures.com/ 104.16.13.194

No other reports with similar screenshot



JavaScript

Executed Scripts (38)


Executed Evals (2)

#1 JavaScript::Eval (size: 20304, repeated: 1) - SHA256: 9c1ea695852f01d2fc6027d572b126b740a9c4634540fb0d39ea3656377eef77

                                        function $d(d) {
    return document.getElementById(d)
}
var proc = location.protocol;
if (proc != 'https:') {
    proc = 'http:'
}
var _image_path = proc + '//addthisevent.com/gfx/icon-calendar-t1.png';
var _ate_license = '';
var _ate_mouse = false;
var _ate_css = 'true';
var _ate_callback = '';
var _ate_dropdown = '';
var _ate_lbl_outlook = 'Outlook Calendar';
var _ate_lbl_google = 'Google Calendar';
var _ate_lbl_yahoo = 'Yahoo Calendar';
var _ate_lbl_hotmail = 'Hotmail Calendar';
var _ate_lbl_ical = 'iCal Calendar';
var _ate_lbl_fb_event = 'Facebook Event';
var _ate_show_outlook = true;
var _ate_show_google = true;
var _ate_show_yahoo = true;
var _ate_show_hotmail = true;
var _ate_show_ical = true;
var _ate_show_facebook = true;
var _d_rd = false;
var _ate_btn_found = false;
var _ate_btn_expo = false;
var addthisevent = function() {
    var D = false,
        dropzcx = 1,
        olddrop = '',
        dropmousetim, css1 = false,
        css2 = false;
    return {
        generate: function() {
            try {
                _image_path = _image_path
            } catch (e) {
                _image_path = proc + '//addthisevent.com/gfx/icon-calendar-t1.png'
            }
            try {
                _ate_license = _license
            } catch (e) {}
            try {
                _ate_mouse = _mouse
            } catch (e) {}
            try {
                _ate_css = _css
            } catch (e) {}
            var b = addthisevent.glicense(_ate_license);
            var c = document.getElementsByTagName('*');
            for (var d = 0; d < c.length; d += 1) {
                var f = '',
                    fbevent = false,
                    str = c[d].className,
                    htmx = '';
                if (addthisevent.hasclass(c[d], 'addthisevent')) {
                    var g = c[d].getElementsByTagName('span');
                    for (var m = 0; m < g.length; m += 1) {
                        if (addthisevent.hasclass(g[m], '_url')) {
                            g[m].style.display = 'none'
                        }
                        if (addthisevent.hasclass(g[m], '_start')) {
                            g[m].style.display = 'none';
                            f += '&dstart=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_end')) {
                            g[m].style.display = 'none';
                            f += '&dend=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_zonecode')) {
                            g[m].style.display = 'none';
                            f += '&dzone=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_summary')) {
                            g[m].style.display = 'none';
                            f += '&dsum=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_description')) {
                            g[m].style.display = 'none';
                            f += '&ddesc=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_location')) {
                            g[m].style.display = 'none';
                            f += '&dloca=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_organizer')) {
                            g[m].style.display = 'none';
                            f += '&dorga=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_organizer_email')) {
                            g[m].style.display = 'none';
                            f += '&dorgaem=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_attendees')) {
                            g[m].style.display = 'none';
                            f += '&datte=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_all_day_event')) {
                            g[m].style.display = 'none';
                            f += '&dallday=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_date_format')) {
                            g[m].style.display = 'none';
                            f += '&dateformat=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_alarm_reminder')) {
                            g[m].style.display = 'none';
                            f += '&alarm=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_recurring')) {
                            g[m].style.display = 'none';
                            f += '&drule=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_uid')) {
                            g[m].style.display = 'none';
                            f += '&uid=' + encodeURIComponent(addthisevent.htmlencode(g[m].innerHTML))
                        }
                        if (addthisevent.hasclass(g[m], '_facebook_event')) {
                            if (g[m].innerHTML != '') {
                                g[m].style.display = 'none';
                                var h = g[m].innerHTML.replace(/ /gi, "");
                                f += '&fbevent=' + encodeURIComponent(h);
                                fbevent = true
                            }
                        }
                    }
                    if (b) {
                        f += '&credits=false'
                    }
                    f = f.replace(/'/gi, "�");
                    if (_ate_dropdown != '') {
                        _ate_dropdown = _ate_dropdown + ',';
                        _ate_dropdown = _ate_dropdown.replace(/ /gi, '');
                        var i = _ate_dropdown.split(',');
                        for (var a = 0; a < i.length; a += 1) {
                            if (_ate_show_outlook && i[a] == 'outlook') {
                                htmx += '<span class="ateoutlook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'outlook\',\'' + f + '\');">' + _ate_lbl_outlook + '</span>'
                            }
                            if (_ate_show_google && i[a] == 'google') {
                                htmx += '<span class="ategoogle" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'google\',\'' + f + '\');">' + _ate_lbl_google + '</span>'
                            }
                            if (_ate_show_yahoo && i[a] == 'yahoo') {
                                htmx += '<span class="ateyahoo" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'yahoo\',\'' + f + '\');">' + _ate_lbl_yahoo + '</span>'
                            }
                            if (_ate_show_hotmail && i[a] == 'hotmail') {
                                htmx += '<span class="atehotmail" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'hotmail\',\'' + f + '\');">' + _ate_lbl_hotmail + '</span>'
                            }
                            if (_ate_show_ical && i[a] == 'ical') {
                                htmx += '<span class="ateical" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'ical\',\'' + f + '\');">' + _ate_lbl_ical + '</span>'
                            }
                            if (fbevent && i[a] == 'facebook') {
                                if (_ate_show_facebook && i[a] == 'facebook') {
                                    htmx += '<span class="atefacebook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'facebook\',\'' + f + '\');">' + _ate_lbl_fb_event + '</span>'
                                }
                            }
                        }
                    } else {
                        if (_ate_show_outlook) {
                            htmx += '<span class="ateoutlook" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'outlook\',\'' + f + '\');">' + _ate_lbl_outlook + '</span>'
                        }
                        if (_ate_show_google) {
                            htmx += '<span class="ategoogle" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'google\',\'' + f + '\');">' + _ate_lbl_google + '</span>'
                        }
                        if (_ate_show_yahoo) {
                            htmx += '<span class="ateyahoo" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'yahoo\',\'' + f + '\');">' + _ate_lbl_yahoo + '</span>'
                        }
                        if (_ate_show_hotmail) {
                            htmx += '<span class="atehotmail" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'hotmail\',\'' + f + '\');">' + _ate_lbl_hotmail + '</span>'
                        }
                        if (_ate_show_ical) {
                            htmx += '<span class="ateical" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'ical\',\'' + f + '\');">' + _ate_lbl_ical + '</span>'
                        }
                        if (fbevent) {
                            if (_ate_show_facebook) {
                                htmx += '<span data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'facebook\',\'' + f + '\');">' + _ate_lbl_fb_event + '</span>'
                            }
                        }
                    }
                    if (!b) {
                        htmx += '<em class="copyx"><em class="brx"></em><em class="frs" data-ref="' + dropzcx + '" onclick="addthisevent.cli(this,\'home\');">AddThisEvent</em></em>'
                    }
                    c[d].id = 'atedrop' + dropzcx;
                    c[d].className = c[d].className.replace(/addthisevent/gi, '');
                    c[d].className = c[d].className + ' addthisevent-drop';
                    c[d].title = '';
                    var j = c[d].getAttribute('data-direct');
                    if (j) {
                        c[d].setAttribute('data-url', f);
                        c[d].setAttribute('data-ref', dropzcx);
                        c[d].onclick = function() {
                            addthisevent.direct(this);
                            return false
                        }
                    } else {
                        if (_ate_mouse) {
                            c[d].onmouseover = function() {
                                clearTimeout(dropmousetim);
                                addthisevent.show(this, 'auto', 'auto', true)
                            };
                            c[d].onmouseout = function() {
                                dropmousetim = setTimeout("addthisevent.out();", 200)
                            };
                            c[d].onclick = function() {
                                return false
                            }
                        } else {
                            c[d].onclick = function() {
                                addthisevent.show(this, 'auto', 'auto');
                                return false
                            }
                        }
                    }
                    var k = c[d];
                    var l = document.createElement('span');
                    l.id = 'atedrop' + dropzcx + '-drop';
                    l.className = 'addthisevent_dropdown';
                    l.innerHTML = htmx;
                    k.appendChild(l);
                    dropzcx++;
                    _ate_btn_found = true
                }
            }
            if (_ate_css == 'false') {
                addthisevent.trycss()
            } else {
                addthisevent.applycss(b)
            }
            if (_ate_btn_found && !_ate_btn_expo) {
                _ate_btn_expo = true;
                addthisevent.track({
                    typ: 'exposure',
                    cal: ''
                })
            }
        },
        direct: function(f) {
            var a = f.getAttribute('data-url');
            var b = f.getAttribute('data-direct');
            addthisevent.cli(f, b, a)
        },
        cli: function(f, a, b) {
            var c = '',
                ref = location.href,
                nw = true,
                now = new Date();
            if (a == 'outlook') {
                c = proc + '//addthisevent.com/create/?service=OUTLOOK' + b + '&reference=' + ref;
                nw = false
            }
            if (a == 'google') {
                c = proc + '//addthisevent.com/create/?service=GOOGLE' + b + '&reference=' + ref
            }
            if (a == 'yahoo') {
                c = proc + '//addthisevent.com/create/?service=YAHOO' + b + '&reference=' + ref
            }
            if (a == 'hotmail') {
                c = proc + '//addthisevent.com/create/?service=HOTMAIL' + b + '&reference=' + ref
            }
            if (a == 'ical') {
                c = proc + '//addthisevent.com/create/?service=ICAL' + b + '&reference=' + ref;
                nw = false
            }
            if (a == 'facebook') {
                c = proc + '//addthisevent.com/create/?service=FACEBOOK' + b + '&reference=' + ref
            }
            if (a == 'home') {
                c = proc + '//addthisevent.com/'
            }
            if (c != '') {
                if (a != 'home') {
                    var d = f.getAttribute('data-ref');
                    var g = $d('atedrop' + d);
                    if (g) {
                        var h = g.getAttribute('data-track');
                        if (h != null) {
                            h = h.replace(/ate-calendar/gi, a);
                            try {
                                eval(h)
                            } catch (e) {}
                        }
                    }
                }
                if (!$d('atecllink')) {
                    var j = document.createElement("a");
                    j.id = 'atecllink';
                    j.rel = 'external';
                    j.innerHTML = '{addthisevent-ghost-link}';
                    j.style.display = 'none';
                    document.body.appendChild(j)
                }
                var k = $d('atecllink');
                if (nw) {
                    k.target = '_blank'
                } else {
                    k.target = '_self'
                }
                k.href = c;
                addthisevent.eclick('atecllink')
            }
            addthisevent.track({
                typ: 'click',
                cal: a
            });
            if (_ate_callback) {
                for (var i = 0; i < _ate_callback.length; i++) {
                    try {
                        eval(_ate_callback[i])
                    } catch (e) {
                        alert(e.description)
                    }
                }
            }
        },
        applycss: function(a) {
            if (!css2) {
                var b;
                b = '.addthisevent-drop {display:inline-block;position:relative;font-family:arial;color:#333!important;background:#f4f4f4 url(' + _image_path + ') no-repeat 9px 50%;text-decoration:none!important;border:1px solid #d9d9d9;color:#555;font-weight:bold;font-size:14px;text-decoration:none;padding:9px 12px 8px 35px;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-touch-callout:none;-webkit-user-select:none;-khtml-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;}';
                b += '.addthisevent-drop:hover {border:1px solid #aab9d4;color:#555;font-weight:bold;font-size:14px;text-decoration:none!important;}';
                b += '.addthisevent-drop:active {top:1px;}';
                b += '.addthisevent-selected {background-color:#f7f7f7;}';
                if (a) {
                    b += '.addthisevent_dropdown {width:200px;position:absolute;z-index:99999;padding:0px 0px 0px 0px;background:#fff;text-align:left;display:none;margin-top:-2px;margin-left:-1px;border-top:1px solid #c8c8c8;border-right:1px solid #bebebe;border-bottom:1px solid #a8a8a8;border-left:1px solid #bebebe;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-box-shadow:1px 3px 6px rgba(0,0,0,0.15);-moz-box-shadow:1px 3px 6px rgba(0,0,0,0.15);box-shadow:1px 3px 6px rgba(0,0,0,0.15);}'
                } else {
                    b += '.addthisevent_dropdown {width:200px;position:absolute;z-index:99999;padding:6px 0px 0px 0px;background:#fff;text-align:left;display:none;margin-top:-2px;margin-left:-1px;border-top:1px solid #c8c8c8;border-right:1px solid #bebebe;border-bottom:1px solid #a8a8a8;border-left:1px solid #bebebe;-moz-border-radius:2px;-webkit-border-radius:2px;-webkit-box-shadow:1px 3px 6px rgba(0,0,0,0.15);-moz-box-shadow:1px 3px 6px rgba(0,0,0,0.15);box-shadow:1px 3px 6px rgba(0,0,0,0.15);}'
                }
                b += '.addthisevent_dropdown span {display:block;cursor:pointer;line-height:110%;background:#fff;text-decoration:none;font-size:12px;color:#6d84b4;padding:8px 10px 9px 15px;}';
                b += '.addthisevent_dropdown span:hover {background:#f4f4f4;color:#6d84b4;text-decoration:none;font-size:12px;}';
                b += '.addthisevent span {display:none!important;}';
                b += '.addthisevent-drop ._url,.addthisevent-drop ._start,.addthisevent-drop ._end,.addthisevent-drop ._zonecode,.addthisevent-drop ._summary,.addthisevent-drop ._description,.addthisevent-drop ._location,.addthisevent-drop ._organizer,.addthisevent-drop ._organizer_email,.addthisevent-drop ._facebook_event,.addthisevent-drop ._all_day_event {display:none!important;}';
                b += '.addthisevent_dropdown .copyx {width:200px;height:21px;display:block;position:relative;cursor:default;}';
                b += '.addthisevent_dropdown .brx {width:180px;height:1px;overflow:hidden;background:#e0e0e0;position:absolute;z-index:100;left:10px;top:9px;}';
                b += '.addthisevent_dropdown .frs {position:absolute;top:5px;cursor:pointer;right:10px;padding-left:10px;font-style:normal;font-weight:normal;text-align:right;z-index:101;line-height:110%;background:#fff;text-decoration:none;font-size:9px;color:#cacaca;}';
                b += '.addthisevent_dropdown .frs:hover {color:#999!important;}';
                var c = document.createElement("style");
                c.type = "text/css";
                c.id = "ate_css";
                if (c.styleSheet) {
                    c.styleSheet.cssText = b
                } else {
                    c.appendChild(document.createTextNode(b))
                }
                document.getElementsByTagName("head")[0].appendChild(c);
                css2 = true
            }
        },
        trycss: function() {
            if (!css1) {
                try {
                    var a = '.addthisevent {visibility:hidden;}';
                    a += '.addthisevent-drop ._url,.addthisevent-drop ._start,.addthisevent-drop ._end,.addthisevent-drop ._zonecode,.addthisevent-drop ._summary,.addthisevent-drop ._description,.addthisevent-drop ._location,.addthisevent-drop ._organizer,.addthisevent-drop ._organizer_email,.addthisevent-drop ._attendees,.addthisevent-drop ._facebook_event,.addthisevent-drop ._all_day_event {display:none!important;}';
                    var b = document.createElement("style");
                    b.type = "text/css";
                    if (b.styleSheet) {
                        b.styleSheet.cssText = a
                    } else {
                        b.appendChild(document.createTextNode(a))
                    }
                    document.getElementsByTagName("head")[0].appendChild(b)
                } catch (e) {}
                css1 = true;
                addthisevent.track({
                    typ: 'jsinit',
                    cal: ''
                })
            }
        },
        removecss: function() {
            try {
                return (hdx = $d('ate_css')) ? hdx.parentNode.removeChild(hdx) : false
            } catch (e) {}
        },
        show: function(f, o, a, b) {
            var c = f.id;
            var d = $d(c);
            var g = $d(c + '-drop');
            if (d && g) {
                if (olddrop != c) {
                    addthisevent.hide(olddrop)
                }
                var h = addthisevent.getstyle(g, 'display');
                try {
                    f.blur()
                } catch (e) {};
                if (h == 'block') {
                    if (b) {} else {
                        addthisevent.hide(c)
                    }
                } else {
                    olddrop = c;
                    d.className = d.className + ' addthisevent-selected';
                    d.style.zIndex = addthisevent.topzindex();
                    g.style.left = '0px';
                    g.style.top = '0px';
                    g.style.display = 'block';
                    setTimeout("addthisevent.tim();", 350);
                    D = false;
                    var i = parseInt(d.offsetHeight);
                    var j = parseInt(d.offsetWidth);
                    var k = parseInt(g.offsetHeight);
                    var l = parseInt(g.offsetWidth);
                    var m = addthisevent.viewport();
                    var n = m.split('/');
                    var p = parseInt(n[0]);
                    var q = parseInt(n[1]);
                    var r = parseInt(n[2]);
                    var s = parseInt(n[3]);
                    var t = addthisevent.elementposition(g);
                    var u = t.split('/');
                    var v = parseInt(u[0]);
                    var w = parseInt(u[1]);
                    var x = w + k;
                    var y = q + s;
                    var z = v + l;
                    var A = p + r;
                    var B = 0,
                        dropy = 0;
                    if (o == 'down' && a == 'left') {
                        B = '0px';
                        dropy = i + 'px'
                    } else if (o == 'up' && a == 'left') {
                        B = '0px';
                        dropy = -k + 'px'
                    } else if (o == 'down' && a == 'right') {
                        B = -(l - j) + 'px';
                        dropy = i + 'px'
                    } else if (o == 'up' && a == 'right') {
                        B = -(l - j) + 'px';
                        dropy = -k + 'px'
                    } else if (o == 'auto' && a == 'left') {
                        B = '0px';
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                    } else if (o == 'auto' && a == 'right') {
                        B = -(l - j) + 'px';
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                    } else {
                        if (x > y) {
                            dropy = -k + 'px'
                        } else {
                            dropy = i + 'px'
                        }
                        if (z > A) {
                            B = -(l - j) + 'px'
                        } else {
                            B = '0px'
                        }
                    }
                    g.style.left = B;
                    g.style.top = dropy;
                    var C = 'ontouchstart' in document.documentElement ? 'touchstart' : 'click';
                    if (document.addEventListener) {
                        document.addEventListener(C, function() {
                            if (D) {
                                setTimeout(function() {
                                    addthisevent.force(c)
                                }, 300)
                            }
                        }, false)
                    } else if (document.attachEvent) {
                        document.attachEvent("on" + C, function() {
                            if (D) {
                                setTimeout(function() {
                                    addthisevent.force(c)
                                }, 300)
                            }
                        })
                    } else {
                        document.onclick = function() {
                            addthisevent.force(c)
                        }
                    }
                }
            }
        },
        force: function(f) {
            var a = $d(f);
            var b = $d(f + '-drop');
            if (a && b) {
                if (D && b.style.display == 'block') {
                    setTimeout("addthisevent.hide('" + f + "');", 350)
                }
            }
        },
        out: function() {
            addthisevent.force(olddrop)
        },
        hide: function(f) {
            var a = $d(f);
            var b = $d(f + '-drop');
            if (a && b) {
                a.className = a.className.replace(/addthisevent-selected/gi, '');
                b.style.display = 'none';
                b.style.zIndex = ''
            }
        },
        tim: function() {
            D = true
        },
        topzindex: function() {
            var a = 99999;
            var b = document.getElementsByTagName('*');
            for (var d = 0; d < b.length; d += 1) {
                if (addthisevent.hasclass(b[d], 'addthisevent-drop') || addthisevent.hasclass(b[d], 'addeventstc-drop')) {
                    var c = addthisevent.getstyle(b[d], 'z-index');
                    if (!isNaN(parseFloat(c)) && isFinite(c)) {
                        c = parseInt(c);
                        if (c > a) {
                            a = c
                        }
                    }
                }
            }
            a++;
            return a
        },
        viewport: function() {
            var w = 0,
                h = 0,
                y = 0,
                x = 0;
            if (typeof(window.innerWidth) == 'number') {
                w = window.innerWidth;
                h = window.innerHeight
            } else if (document.documentElement && (document.documentElement.clientWidth || document.documentElement.clientHeight)) {
                w = document.documentElement.clientWidth;
                h = document.documentElement.clientHeight
            } else if (document.body && (document.body.clientWidth || document.body.clientHeight)) {
                w = document.body.clientWidth;
                h = document.body.clientHeight
            }
            if (document.all) {
                x = (document.documentElement.scrollLeft) ? document.documentElement.scrollLeft : document.body.scrollLeft;
                y = (document.documentElement.scrollTop) ? document.documentElement.scrollTop : document.body.scrollTop
            } else {
                x = window.pageXOffset;
                y = window.pageYOffset
            }
            return w + '/' + h + '/' + x + '/' + y
        },
        elementposition: function(a) {
            var x = 0,
                y = 0;
            if (a.offsetParent) {
                x = a.offsetLeft;
                y = a.offsetTop;
                while (a = a.offsetParent) {
                    x += a.offsetLeft;
                    y += a.offsetTop
                }
            }
            return x + '/' + y
        },
        getstyle: function(a, b) {
            var x = a;
            var y;
            if (x.currentStyle) {
                y = x.currentStyle[b]
            } else if (window.getComputedStyle) {
                y = document.defaultView.getComputedStyle(x, null).getPropertyValue(b)
            }
            return y
        },
        glicense: function(f) {
            var b = location.href;
            var c = true;
            var d = f;
            var e = d.length;
            if (e == 20) {
                var a = d.substring(0, 1);
                var z = d.substring(9, 10);
                var m = d.substring(17, 18);
                if (a != 'a') {
                    c = false
                }
                if (z != 'z') {
                    c = false
                }
                if (m != 'm') {
                    c = false
                }
            } else {
                c = false
            }
            if (b.indexOf('addthisevent.com') == -1 && d == 'aao8iuet5zp9iqw5sm9z') {
                c = false
            }
            return c
        },
        refresh: function() {
            var a = document.getElementsByTagName('*');
            for (var d = 0; d < a.length; d += 1) {
                if (addthisevent.hasclass(a[d], 'addthisevent-drop')) {
                    a[d].className = a[d].className.replace(/addthisevent-drop/gi, '');
                    a[d].className = a[d].className.replace(/addthisevent/gi, '');
                    a[d].className = a[d].className + ' addthisevent'
                }
            }
            _ate_btn_expo = false;
            addthisevent.generate()
        },
        callcack: function(f) {
            _ate_callback = f
        },
        setlabel: function(l, t) {
            var x = l.toLowerCase();
            if (x == 'outlook') {
                _ate_lbl_outlook = t
            }
            if (x == 'google') {
                _ate_lbl_google = t
            }
            if (x == 'yahoo') {
                _ate_lbl_yahoo = t
            }
            if (x == 'ical') {
                _ate_lbl_ical = t
            }
            if (x == 'facebookevent') {
                _ate_lbl_fb_event = t
            }
        },
        settings: function(c) {
            if (c.license != undefined) {
                _ate_license = c.license
            }
            if (c.css != undefined) {
                if (c.css) {
                    _ate_css = 'true'
                } else {
                    _ate_css = 'false';
                    addthisevent.removecss()
                }
            }
            if (c.mouse != undefined) {
                _ate_mouse = c.mouse
            }
            if (c.outlook != undefined) {
                if (c.outlook.show != undefined) {
                    _ate_show_outlook = c.outlook.show
                }
            }
            if (c.google != undefined) {
                if (c.google.show != undefined) {
                    _ate_show_google = c.google.show
                }
            }
            if (c.yahoo != undefined) {
                if (c.yahoo.show != undefined) {
                    _ate_show_yahoo = c.yahoo.show
                }
            }
            if (c.hotmail != undefined) {
                if (c.hotmail.show != undefined) {
                    _ate_show_hotmail = c.hotmail.show
                }
            }
            if (c.ical != undefined) {
                if (c.ical.show != undefined) {
                    _ate_show_ical = c.ical.show
                }
            }
            if (c.facebook != undefined) {
                if (c.facebook.show != undefined) {
                    _ate_show_facebook = c.facebook.show
                }
            }
            if (c.outlook != undefined) {
                if (c.outlook.text != undefined) {
                    _ate_lbl_outlook = c.outlook.text
                }
            }
            if (c.google != undefined) {
                if (c.google.text != undefined) {
                    _ate_lbl_google = c.google.text
                }
            }
            if (c.yahoo != undefined) {
                if (c.yahoo.text != undefined) {
                    _ate_lbl_yahoo = c.yahoo.text
                }
            }
            if (c.hotmail != undefined) {
                if (c.hotmail.text != undefined) {
                    _ate_lbl_hotmail = c.hotmail.text
                }
            }
            if (c.ical != undefined) {
                if (c.ical.text != undefined) {
                    _ate_lbl_ical = c.ical.text
                }
            }
            if (c.facebook != undefined) {
                if (c.facebook.text != undefined) {
                    _ate_lbl_fb_event = c.facebook.text
                }
            }
            if (c.dropdown != undefined) {
                if (c.dropdown.order != undefined) {
                    _ate_dropdown = c.dropdown.order
                }
            }
            if (c.callback != undefined) {
                _ate_callback = c.callback
            }
        },
        hasclass: function(e, c) {
            return new RegExp('(\\s|^)' + c + '(\\s|$)').test(e.className)
        },
        htmlencode: function(a) {
            var b = a.replace(/<br\s*[\/]?>/gi, "\n");
            b = b.replace(/<(?:.|\n)*?>/gm, '');
            b = b.replace(/(^\s+|\s+$)/g, '');
            var c = document.createElement("div");
            var d = document.createTextNode(b);
            c.appendChild(d);
            return c.innerHTML
        },
        eclick: function(a) {
            var b = document.getElementById(a);
            if (b.click) {
                b.click()
            } else if (document.createEvent) {
                var c = document.createEvent('MouseEvents');
                c.initEvent('click', true, true);
                b.dispatchEvent(c)
            }
        },
        track: function(a) {
            var b = new Image(1, 1);
            var d = new Date();
            var c = d.getTime();
            var e = encodeURIComponent(window.location.href);
            b.src = proc + '//track.addevent.com/atc/?trktyp=' + a.typ + '&trkcal=' + a.cal + '&guid=' + addthisevent.getguid() + '&url=' + e + '&cache=' + c
        },
        getguid: function() {
            var a = "addevent_track_cookie=",
                coov = '';
            var b = document.cookie.split(';');
            for (var i = 0; i < b.length; i++) {
                var c = b[i];
                while (c.charAt(0) == ' ') {
                    c = c.substring(1, c.length)
                }
                if (c.indexOf(a) == 0) {
                    coov = c.substring(a.length, c.length)
                }
            }
            if (coov == '') {
                var d = (addthisevent.s4() + addthisevent.s4() + "-" + addthisevent.s4() + "-4" + addthisevent.s4().substr(0, 3) + "-" + addthisevent.s4() + "-" + addthisevent.s4() + addthisevent.s4() + addthisevent.s4()).toLowerCase();
                var e = new Date();
                e.setTime(e.getTime() + (365 * 24 * 60 * 60 * 1000));
                var f = "expires=" + e.toUTCString();
                document.cookie = "addevent_track_cookie=" + d + "; " + f;
                coov = d
            }
            return coov
        },
        s4: function() {
            return (((1 + Math.random()) * 0x10000) | 0).toString(16).substring(1)
        }
    }
}();
if (window.addEventListener) {
    window.addEventListener("DOMContentLoaded", function() {
        _d_rd = true;
        addthisevent.trycss();
        addthisevent.generate()
    }, false);
    window.addEventListener("load", function() {
        addthisevent.generate()
    }, false)
} else if (window.attachEvent) {
    window.attachEvent("onreadystatechange", function() {
        _d_rd = true;
        addthisevent.trycss();
        addthisevent.generate()
    });
    window.attachEvent("onload", function() {
        addthisevent.generate()
    })
} else {
    window.onload = function() {
        addthisevent.generate()
    }
}
if (!_d_rd) {
    setTimeout("addthisevent.trycss();addthisevent.generate();", 20)
}
                                    

#2 JavaScript::Eval (size: 119, repeated: 1) - SHA256: cca70f02549c906adb08d49545c32014cd2f31b9c353a961d7bcbca3bb8beb35

                                        createCookie('is_eu', false);
createCookie('e3mr1c7wal2wwrul', true, 365);
createCookie('12027371_viewed_1', '1', 365);
                                    

Executed Writes (0)



HTTP Transactions (59)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8468
Expires: Tue, 27 Sep 2022 12:29:19 GMT
Date: Tue, 27 Sep 2022 10:08:11 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 09:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JsYWVf3QVatY1i1DgZPUuwr9c3DqgDHAYGvMx0i8tfZg_mujrSl8Qw==
Age: 3161


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2LQ7VgRBU7PdEFEO-EOqx36Suqj2IYLcH1y3ufdxNIkJDaYs_YxtoA==
age: 2638
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 10:08:11 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.16.16.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 27 Sep 2022 10:08:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
CF-Ray: 75136fc918b3b51e-OSL
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store
Vary: Accept-Encoding
CF-Cache-Status: BYPASS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Access-Control-Request-Method: *
Pragma: no-cache
Status: 302 Found
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss
X-Request-Id: cd8bd3dca982a6350326e49d40d5bfe3
X-Runtime: 0.287733
Set-Cookie: __cf_bm=_GTnXAdGUawk4IkFBOEr2Q1nD_pUtAny5Zj_XHDjne0-1664273292-0-AQQ1dvDItDrDcP4qTqKEywHVidAN4R4Nmd9iVuz3YXqzbA4sMNeGhCjtCbGpG0BVwK0nNJwQdJrtx75hqnImVmDEOAXp/pb/jJxCP1frIS+o; path=/; expires=Tue, 27-Sep-22 10:38:12 GMT; domain=.wrist-vacatures.com; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (493)
Size:   508
Md5:    9b0145591f401048bf47a9923a1b85aa
Sha1:   26bbdaeeb300186375be3abffe1c1291634b4af3
Sha256: 7867dd4f4e0963a3ef5632e416a2e3cac109a3eb34f9c2f1001c9ae57065d597

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 10:08:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 10:08:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 09:10:46 GMT
Expires: Tue, 27 Sep 2022 09:38:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ldu78SWLmWObIFJkxDkFTY-yvg0cmpoPSrPBdh0X_CW1L4MwtPLm0g==
Age: 3446


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5384
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:12 GMT
Last-Modified: Tue, 27 Sep 2022 08:38:28 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 27 Sep 2022 10:08:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4907
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:12 GMT
Last-Modified: Tue, 27 Sep 2022 08:46:25 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PbPwZ5YCr+PwWIBJt17rng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.71.185
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9V9lLfkrLJEHFcpNMfb2N7mSnBg=

                                        
                                            GET /assets/userevents/application.js HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fcde914b4eb-OSL
access-control-allow-origin: *
age: 667
cache-control: public, max-age=1200
etag: W/"632b3357-1353"
expires: Tue, 27 Sep 2022 10:28:12 GMT
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=FezoeH5g77D9dgoQxnlF6WKTQvu2GeU50PSB1PApN0c-1664273292-0-Aa_rMhMDDALCanCLIfh6O_veSsxAyI8LCjHBdgtNL8sZrTtIgZDdmlYgFLdNcAy2I2QlyZD5gYI70Wd_06nt2DjVrT7L703ngeXFLokLmw08"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=FezoeH5g77D9dgoQxnlF6WKTQvu2GeU50PSB1PApN0c-1664273292-0-Aa_rMhMDDALCanCLIfh6O_veSsxAyI8LCjHBdgtNL8sZrTtIgZDdmlYgFLdNcAy2I2QlyZD5gYI70Wd_06nt2DjVrT7L703ngeXFLokLmw08; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4947), with no line terminators
Size:   2721
Md5:    d9db597faa4b31717819507749bb76eb
Sha1:   5b1c529744f7c0ff331c4d8082467f9757334f81
Sha256: 58d9ab3d990eaea9aa931bdb47035e151ad1b574c00554e695c5ff256c8dd0e4

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /assets/lander.js HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fcde91ab4eb-OSL
access-control-allow-origin: *
age: 667
cache-control: public, max-age=1200
etag: W/"632b33c5-238fd1"
expires: Tue, 27 Sep 2022 10:28:12 GMT
last-modified: Wed, 21 Sep 2022 15:54:45 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=FDOWfh2hNLGF6j0iJ0IphZ_8Afj4tI8BWfLqlpfRPts-1664273292-0-ASPRBdbmplW84Ygf2EldasCM0AF_DJ45DVZf86B2O6z0Zmd7meVpTSCTZASOAgn5BNX20Phbj7F2mPc_Eqo4gEYJmaRrDj6ywGugxpJfkruX"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=FDOWfh2hNLGF6j0iJ0IphZ_8Afj4tI8BWfLqlpfRPts-1664273292-0-ASPRBdbmplW84Ygf2EldasCM0AF_DJ45DVZf86B2O6z0Zmd7meVpTSCTZASOAgn5BNX20Phbj7F2mPc_Eqo4gEYJmaRrDj6ywGugxpJfkruX; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32752)
Size:   677906
Md5:    abbe9858bb0d1fc9bd5b60958ec7698a
Sha1:   0da846694f5069cf7d25db705ebcfb663275b30c
Sha256: cea8d326da18c9f0a8e6b74b79cabfdc6289d6372321fc0e54ee145cd91507b7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5042
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:13 GMT
Last-Modified: Tue, 27 Sep 2022 08:44:12 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next HTTP/1.1 
Host: form.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.64.146.93
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:13 GMT
x-powered-by: 7244-6.10.6
vary: Accept-Encoding
x-envoy-upstream-service-time: 129
x-varnish: 303197318
age: 0
x-cache: MISS
x-cache-lookup: HIT
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
access-control-allow-methods: GET, OPTIONS, POST, PUT, PATCH, DELETE
access-control-allow-headers: X-Typeform-Key, Content-Type, Authorization, Typeform-Version
access-control-expose-headers: Location, X-Request-Id
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: AWSALBTG=dteb0xaXETk8GcWnfWLLtDGoyecWf0nnto/QubVdJac9R079BgVW4SinREJZhB9pXTHZo5G1/156I4aQ4v0laidqW6UF1X3Sn0y31shvDOlrCuvALRDNBrnYA6YBK2DpmkwhHlnhgNR23Xq3LA1f3Lh1xXxxJhx7ww/+0aRPU3GW; Expires=Tue, 04 Oct 2022 10:08:12 GMT; Path=/ AWSALBTGCORS=dteb0xaXETk8GcWnfWLLtDGoyecWf0nnto/QubVdJac9R079BgVW4SinREJZhB9pXTHZo5G1/156I4aQ4v0laidqW6UF1X3Sn0y31shvDOlrCuvALRDNBrnYA6YBK2DpmkwhHlnhgNR23Xq3LA1f3Lh1xXxxJhx7ww/+0aRPU3GW; Expires=Tue, 04 Oct 2022 10:08:12 GMT; Path=/; SameSite=None; Secure __cf_bm=YCDZ2_lcdO6c_1z_KjfWhs8qT05rbMlzS5hmjwi_P3o-1664273293-0-AdaG/OW9G+MZRMurpSHCzlIJG9Odu2CF27j1lGOtClfq1JCnC7wF2hds9nRcrp6h1Ahv5vCWFwu9slZ/ccRaxHg=; path=/; expires=Tue, 27-Sep-22 10:38:13 GMT; domain=.typeform.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BjMNVJr3eN4bxtCRecF09o8ub4XyLgBNiD3OEqnhA4kaX1L3XFDUOXyY4ZBy5pLG2P%2Fv1qP3MARW1fdFO8pGC99dLWDd8tq4GeikO536JE9o4cMJUmyOljwp%2FFjWnCEWf4h%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75136fd0cff1b509-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16949)
Size:   282431
Md5:    d0dd835a7f0b6d71dc8a433649af4085
Sha1:   ed1d71ad5b1ebdf757191bd77fca5c452f0a5bb8
Sha256: 2605c306154ba39ca43f30f3f5cdac725b8ca82a71fe084ccc45fae2e28c54c0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5042
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:13 GMT
Last-Modified: Tue, 27 Sep 2022 08:44:12 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /assets/pushcrew.js HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fcde91eb4eb-OSL
access-control-allow-origin: *
age: 226
cache-control: public, max-age=1200
etag: W/"632b3356-27d"
expires: Tue, 27 Sep 2022 10:28:12 GMT
last-modified: Wed, 21 Sep 2022 15:52:54 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (637), with no line terminators
Size:   9341
Md5:    f82aa21ae8cc632d5f02f086f438c9f9
Sha1:   369a1401bbf9bc690f082addc8d36a8caea3d649
Sha256: dd66d87f707407469d42e2a4895d7ec62fc5ace796e55deaf606f5fe89ab4f0c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /userevents/?funnel_id=WjFITFNJV1hEZDd5bk8weStGR01mdz09LS11YVR1REdrdmI5SzVxYUlDSlA1VExBPT0%3D--abb6a486d066d0e3dc6919d4ac14cf1f4000f6a8&page_id=emI2U2VNTVM2Rjc1WUU1aEJoYjh1QT09LS1xTnppRkZXazI4NXhGQUxHU1RYSm1RPT0%3D--241a0091c3a70e3f81a052d3f6e0027d85a80714&funnel_step_id=LzNveVhVdFZ0MFoyL1BFbnNuZHRoQT09LS13Mmp0bEdpWWFxekE1Z0dtTm91V0RBPT0%3D--b38f327dcddc0e359073e2b7900c825167eee11f&user_id=ZHcwWkl2a3BqenhhYWEzYnFtOWpiZz09LS00Q3Bja1o0ZzZjelBVaXY0Y0poSjh3PT0%3D--e0b3380fbfef72e8798e956fba635bc80d7ba32b&account_id=d25kQ3htc1prRzVaNUlZY3Z6bDJpUT09LS1tZmpUMktQeUY1QU9YaVluWmhCcXpRPT0%3D--88ea28e50cc8a986847bb94bc7d915a91a92f6c0&page_code=NTQxOTIzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniquePageviewsCreatedSummary&nonce=b98b2327-f33e-46ba-86f5-6b92f5898b1e&url=https%3A%2F%2Fwrist-vacatures.com%2Fwrist-klevenberg-douane-declarant1 HTTP/1.1 
Host: app.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wrist-vacatures.com
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.13.194
HTTP/2 202 Accepted
content-type: text/html
                                        
date: Tue, 27 Sep 2022 10:08:13 GMT
cf-ray: 75136fd2be921bfe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: a38a89fa8280c1c9914627b84a78b1db
x-runtime: 0.033063
set-cookie: __cf_bm=ILrsWXc5qejQuX1IxGDGQE5.HyXlJwEUXc1bHkKsfL8-1664273293-0-AbGckBqOvBXdOnENzlsqhnJ+gX1umK1QYXP2NBLtvmVyUmGcLZ/kiyB+BztTOHCxeM+ttHiZfMSYmv4gFDLalTvejSkQJC0f5tKTv5J/TF5q; path=/; expires=Tue, 27-Sep-22 10:38:13 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=jf4tE8jaUIqDxGkNrEmyrmus.VMe.CP19GtyuN4gxvU-1664273293-0-AfQQS9jwP8eqyVq6S9l4yyOY20kbLGb3SfiPPJU_kG8XifJjb2xKk5E2u5a9TwVkTxDF3GoLwjs765cjmipMh2d6GkOcgyvPVQ7_szibO1V4"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=jf4tE8jaUIqDxGkNrEmyrmus.VMe.CP19GtyuN4gxvU-1664273293-0-AfQQS9jwP8eqyVq6S9l4yyOY20kbLGb3SfiPPJU_kG8XifJjb2xKk5E2u5a9TwVkTxDF3GoLwjs765cjmipMh2d6GkOcgyvPVQ7_szibO1V4; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /next/embed.js HTTP/1.1 
Host: embed.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.5
HTTP/2 200 OK
content-type: application/x-javascript
                                        
last-modified: Fri, 16 Sep 2022 13:54:00 GMT
x-amz-version-id: szYBfK07E4veASTgyw64BU0speoTZaMi
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 10:08:03 GMT
etag: W/"6683d167c12d5efb43477d9c49e68801"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KoRX5qm8Me9LKiSDow9ZzGs9werCptxuYJFn-HlXA4TmwhxyflzbWQ==
age: 10
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   175309
Md5:    e9906b9f2b4d4569610245bb8bb767bb
Sha1:   c3cf1c2654ce531479dea158c476cb8278eb80c0
Sha256: a947b49e05f3cb8c36af68ab415f668a47fcb186c395c1191e06d77340dec449
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14491
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:08:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14491
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:08:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14491
Expires: Tue, 27 Sep 2022 14:09:45 GMT
Date: Tue, 27 Sep 2022 10:08:14 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8342bc11-d95e-4085-a7ca-d421aba94a91.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4573
x-amzn-requestid: ff35a66a-caf2-4ff4-b850-01a584fc2aa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8FzLIAMFSPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-5b4a410a2827baf5598d58e7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NFjYOqhUeb3yyjMNWpoBNq_xcsX3wXvc3-rqJt4cGbJXY9Sxr5KpDA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 15:29:19 GMT
age: 67135
etag: "9f99fa947a603fd6b10ff149e379cd04ad83d27a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4573
Md5:    efaaa002eb6251769ea6dbf306ced3a1
Sha1:   9f99fa947a603fd6b10ff149e379cd04ad83d27a
Sha256: 238e0ca1aa29223416c34ef2dfcc6570c00e27a98991d91efc16e9bc4083c197
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
age: 32539
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    5274e770cb5a704916c8965659709f4a
Sha1:   1a26007f761e439db575fb80fb403031260aecf4
Sha256: e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 44336
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 44727
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40a8f8a-3bc7-4223-a676-6960af975ebc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6628
x-amzn-requestid: 1f0e95f2-d860-422f-80ad-96c6e7c941c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1vvHIaoAMFV4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296997-5746c99d78e025945cfdd238;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:19:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9-6jF5OoUb2I2HBasyNXBZC-L6rF1VINmgoBFZMuJ9eNelzkS-8BDQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:08:24 GMT
age: 43190
etag: "b078452d30703ea98ad4a7f7fd411b3e2a42ee71"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6628
Md5:    3d478b7bea64d1a5998967c0a665e6be
Sha1:   b078452d30703ea98ad4a7f7fd411b3e2a42ee71
Sha256: 24158d741732109ae2be7314205ac35f4c8b29785876f2785e8bb0ea906762b0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qkOlqM6tJ90H9572YLE0J-s79edBSceM5hLbJtyyuH86xdW8juoktA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:28:31 GMT
age: 74383
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8255
Md5:    fa70ece15044b7318cb11ae5e37a64e7
Sha1:   04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
Sha256: 8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
                                        
                                            GET /tr/?id=560906625402886&ev=PageView&dl=https%3A%2F%2Fform.typeform.com%2Fto%2FlL0t6SNg%3Ftypeform-embed-id%3D43363146998456736%26typeform-embed%3Dembed-widget%26typeform-source%3Dsocialpromotionnl-app.clickfunnels.com%26typeform-medium%3Dsnippet%26typeform-medium-version%3Dnext&rl=https%3A%2F%2Fwrist-vacatures.com%2F&if=true&ts=1664273292346&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=29&it=1664273291528&coo=false&tm=1&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://form.typeform.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 27 Sep 2022 10:08:14 GMT
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:14 GMT
Last-Modified: Tue, 27 Sep 2022 09:01:26 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lUpegBvuaVAMOgFAa0kpTZu99cBIrDGaazSjOl3UmydaCpscakCC6Q==
Age: 4008

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:14 GMT
Last-Modified: Tue, 27 Sep 2022 08:58:46 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3BfUiJMnU4gZLfThfJ9slv65gYv7us443GUBYrHQ84eU-UkGAziiJw==
Age: 4168

                                        
                                            OPTIONS /sourceConfig/?p=cdn&v=1.16.0 HTTP/1.1 
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         18.209.217.52
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:14 GMT
content-length: 2
server: uvicorn
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
access-control-allow-headers: authorization
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    e0aa021e21dddbd6d8cecec71e9cf564
Sha1:   9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
Sha256: 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
                                        
                                            GET /sourceConfig/?p=cdn&v=1.16.0 HTTP/1.1 
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         18.209.217.52
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 10:08:14 GMT
content-length: 610
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (610), with no line terminators
Size:   610
Md5:    b472ddb84e71008d7e128aa58199352f
Sha1:   bb19a929d005eb384268d4e73cd994324ffc5db4
Sha256: 1e1bfbb50209ae8693353623fab7eeeef5ae1c0ca5d128a40c3be54099e59028
                                        
                                            GET /images/vLuWDbEPm4qZ/image/default HTTP/1.1 
Host: images.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Connection: keep-alive
Cookie: __cf_bm=YCDZ2_lcdO6c_1z_KjfWhs8qT05rbMlzS5hmjwi_P3o-1664273293-0-AdaG/OW9G+MZRMurpSHCzlIJG9Odu2CF27j1lGOtClfq1JCnC7wF2hds9nRcrp6h1Ahv5vCWFwu9slZ/ccRaxHg=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 68224
date: Tue, 27 Sep 2022 10:08:15 GMT
x-amzn-requestid: 8dd24699-cbcc-4b1a-9e14-d73c3754be0a
access-control-allow-origin: *
content-security-policy: script-src 'self'
x-amz-apigw-id: ZHS-SHx3IAMFsgA=
cache-control: max-age=1296000
x-amzn-trace-id: Root=1-6332cb8e-4e59b95e36b6910e515b11da;Sampled=0
via: 1.1 e6959f77d21557f69683da8f0cd5578a.cloudfront.net (CloudFront), 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA56-C2, OSL50-C1
x-amz-cf-id: L5Pj4iNlIfTfHtsP9QxzeIENPelAbPMUw-g_sgpwMJJ8WSmAGcQtKw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 799 x 691, 8-bit/color RGBA, non-interlaced\012- data
Size:   68224
Md5:    2c973e5a997082a751a67b7535b7906a
Sha1:   a635ee42013ff54b51dd59443bd3a79f662e12cf
Sha256: 52c0cb297dd32cd69db1d4212bc274536add36525b4773bcc4151db92b0c9b21
                                        
                                            GET /cfmarketplace/plf1/popclose2.png HTTP/1.1 
Host: klee.studio.s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         54.231.165.145
HTTP/1.1 404 Not Found
Content-Type: application/xml
                                        
x-amz-request-id: EPWPVDQ11JANTSZV
x-amz-id-2: co6mauI9czx3fE9NYS49oiIKkbBkcxLw6UnmkIqb0mue8p08oH29hV1rkZLi9wurYnV+2GTD8FA=
Transfer-Encoding: chunked
Date: Tue, 27 Sep 2022 10:08:15 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML 1.0 document text\012- XML document, ASCII text
Size:   301
Md5:    dd3f4d5ca1c9551b6dfe4223079f12e0
Sha1:   6ab635bff74fd8271d6f794a89b74d2628ae9b90
Sha256: f99a6c1bfdc8dd6c430bb5a6f85e5ec573a5b326f0d3060a67582571876241dc
                                        
                                            GET /images/background.png?_unique=0.13092942674887176&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//wrist-vacatures.com/wrist-klevenberg-douane-declarant1&_title=VACATURE%20%7C%20Wrist%20Klevenberg%2C%20douane%20declarant&_key=2v5bs8eb&_page_key=e3mr1c7wal2wwrul&_fid=12027371&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1&_referrer= HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQxOTIzODI=:visited=true; cf:visitor_id=e7f1671f-3af6-484b-8273-140c9a14cb97; addevent_track_cookie=d0a44ac7-44f5-4d1d-7cff-1450608cf995
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:15 GMT
cf-ray: 75136fe1ac0db4eb-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 58b6631aee43b2727af31ed9c40d6885
x-runtime: 0.023854
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   14480
Md5:    a6ca98b33da05e9ad1d12463ce2aa5de
Sha1:   ca008c4e7fbecaa113b2b741b8875ef7f75bcc32
Sha256: dd676dce47a8bcdc6576571f4a6b6c7a886b31246361ef6fcb5dbd8ec9774654

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            OPTIONS /v1/track HTTP/1.1 
Host: rudderstack.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         107.21.23.98
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://form.typeform.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /v1/track HTTP/1.1 
Host: rudderstack.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         107.21.23.98
HTTP/2 200 OK
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://form.typeform.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 10:08:16 GMT
Last-Modified: Tue, 27 Sep 2022 09:01:54 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: um6SwYmrcyja6YJ5ECQx22h2_h75psP0vzlSI1xCVUs8fC-nFMt0xA==
Age: 3982

                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 9135
Origin: https://wrist-vacatures.com
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQxOTIzODI=:visited=true; cf:visitor_id=e7f1671f-3af6-484b-8273-140c9a14cb97; addevent_track_cookie=d0a44ac7-44f5-4d1d-7cff-1450608cf995; cf_survey_participant_54192382=participant_98psf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 27 Sep 2022 10:08:15 GMT
access-control-allow-origin: https://wrist-vacatures.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 75136fe27d1bb4eb-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /v1/track HTTP/1.1 
Host: rudderstack.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: MTc0ZjhiMmMtNzVjMy00YjRlLWJiODUtNDA2ZjNmYjVkNGQz
Content-Length: 2014
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         107.21.23.98
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    e0aa021e21dddbd6d8cecec71e9cf564
Sha1:   9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
Sha256: 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
                                        
                                            GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=4439&ck=1&ref=https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1&ap=420&be=810&fe=4025&dc=1614&perf=%7B%22timing%22:%7B%22of%22:1664273289468,%22n%22:0,%22f%22:590,%22dn%22:594,%22dne%22:594,%22c%22:595,%22s%22:601,%22ce%22:623,%22rq%22:624,%22rp%22:767,%22rpe%22:768,%22dl%22:792,%22di%22:1593,%22ds%22:1613,%22de%22:1723,%22dc%22:4024,%22l%22:4024,%22le%22:4141%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Tue, 27 Sep 2022 10:08:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75136fe4ce99b4f4-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=7d48778a43133df9; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   72
Md5:    107d93e382e2c9b00fbf9fb0edc65d86
Sha1:   77e750e3ebf9706f4f6dd253785602d70be17c6c
Sha256: a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
                                        
                                            POST /v1/track HTTP/1.1 
Host: rudderstack.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: MTc0ZjhiMmMtNzVjMy00YjRlLWJiODUtNDA2ZjNmYjVkNGQz
Content-Length: 2194
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         107.21.23.98
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    e0aa021e21dddbd6d8cecec71e9cf564
Sha1:   9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
Sha256: 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
                                        
                                            POST /v1/track HTTP/1.1 
Host: rudderstack.cdp.prod.data.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: MTc0ZjhiMmMtNzVjMy00YjRlLWJiODUtNDA2ZjNmYjVkNGQz
Content-Length: 2515
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         107.21.23.98
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    e0aa021e21dddbd6d8cecec71e9cf564
Sha1:   9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
Sha256: 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
                                        
                                            GET /3.0/projects/58a35e6f8db53dfda8a87a67/events/survey_data_collector?api_key=E844E116CB12000A6B72AA691F8A2108E6BEBC97A05786370C6703C31E3A5FD4EDC7CC8012418A997621F11C2CFD95A9C1D64E6EF1850AFCC2B76E360F7BA3BC3BE6AEFCCFAAD87B19E1309B88378181E69436B7E01A38447184F2886A9D7AF9&data=eyJzdXJ2ZXlfaWQiOiI1NDE5MjM4Ml90bXBfc3VydmV5LTYxNDQ4IiwicGlkIjoicGFydGljaXBhbnRfOThwc2YiLCJ0eXBlIjoic3RhcnRlZCJ9&modified=1664273293623&jsonp=keenJSONPCallback1664273293623 HTTP/1.1 
Host: api.keen.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         52.25.177.58
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 27 Sep 2022 10:08:16 GMT
content-length: 50
disposition: inline
expires: Sat, 01 Jan 2000 01:01:01 GMT
vary: Accept-Encoding
server: TornadoServer/4.5.1
pragma: no-cache
cache-control: private, no-cache, no-cache=Set-Cookie, max-age=0, s-maxage=0
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, user-agent, keen-compute-source, keen-sdk, X-Keen-Discoveries-Token
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   50
Md5:    3f0b341530d46291d00b6eda519f8730
Sha1:   07182c7ae3afc954dad4ee38a122a4dba9f37c42
Sha256: a8efcc0e7161a1cdc7a21dd8d9dd3fe439fcfaba95a35346b218e6b6dd6e722f
                                        
                                            GET /vendors~form~blocks-validation-phone_number~blocks-renderer-contact_info~blocks-renderer-phone_number.4af84cc3a887409f368b.renderer.js HTTP/1.1 
Host: renderer-assets.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Connection: keep-alive
Cookie: __cf_bm=YCDZ2_lcdO6c_1z_KjfWhs8qT05rbMlzS5hmjwi_P3o-1664273293-0-AdaG/OW9G+MZRMurpSHCzlIJG9Odu2CF27j1lGOtClfq1JCnC7wF2hds9nRcrp6h1Ahv5vCWFwu9slZ/ccRaxHg=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         143.204.55.76
HTTP/2 200 OK
content-type: application/x-javascript
                                        
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 22 Sep 2022 14:51:14 GMT
x-amz-version-id: J_NcbVvb52D6Tmf5ZQCRxvdLyKi_M6yp
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 05:43:08 GMT
etag: W/"1fbe947b50778cdfe013a9a20a4bcba1"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cKp0S4_SDaaSzRCMrD4Jk19wO6BJMtZ3bhN1rZNgrR1sCycZUz70UA==
age: 15912
cache-control: max-age=2419200
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 479
Origin: https://wrist-vacatures.com
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTQxOTIzODI=:visited=true; cf:visitor_id=e7f1671f-3af6-484b-8273-140c9a14cb97; addevent_track_cookie=d0a44ac7-44f5-4d1d-7cff-1450608cf995; cf_survey_participant_54192382=participant_98psf; is_eu=false; e3mr1c7wal2wwrul=true; 12027371_viewed_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 27 Sep 2022 10:08:20 GMT
access-control-allow-origin: https://wrist-vacatures.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 751370011d1bb4eb-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /releases/v5.9.0/css/all.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.15
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
x-amz-id-2: eDALjXs4h5JwODL8ovr/4umLPbaCelCJI3+jx3FuubhJSoknTWWFmQo6HJaW+Q0JCvePiWa75nI=
x-amz-request-id: WT4YSGCQ9TAEW3HE
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29011549
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8dBST36B8dhcwFA8c63yFJrSJDwHTfQM6W0tx1ZVxj90ZivAXpM30wP%2FlxpzdYFqkhsdNAoTYuOUVXpdALhVxxSOIL2Sy5velPQQIScT9JqivZ4%2F5x%2BIZtEsfb5fu85I%2FKTqEan5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75136fcefe8588b3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /vendors~form~attachment.975c6b5003f448ee5e73.renderer.js HTTP/1.1 
Host: renderer-assets.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Connection: keep-alive
Cookie: __cf_bm=YCDZ2_lcdO6c_1z_KjfWhs8qT05rbMlzS5hmjwi_P3o-1664273293-0-AdaG/OW9G+MZRMurpSHCzlIJG9Odu2CF27j1lGOtClfq1JCnC7wF2hds9nRcrp6h1Ahv5vCWFwu9slZ/ccRaxHg=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         143.204.55.76
HTTP/2 200 OK
content-type: application/x-javascript
                                        
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 22 Sep 2022 14:51:14 GMT
x-amz-version-id: xHni8RlfojdQm5NCRuuY3Vf1CaRJhAcm
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 02:15:23 GMT
etag: W/"e5dc27584f3657afa32048fec8513444"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iN_fZMX4Ek8ukJd2stWbZHNV-1GNpH_j-cKqkDkUEcOUGJAt0VWdfQ==
age: 30205
cache-control: max-age=2419200
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /userevents/?funnel_id=WjFITFNJV1hEZDd5bk8weStGR01mdz09LS11YVR1REdrdmI5SzVxYUlDSlA1VExBPT0%3D--abb6a486d066d0e3dc6919d4ac14cf1f4000f6a8&page_id=emI2U2VNTVM2Rjc1WUU1aEJoYjh1QT09LS1xTnppRkZXazI4NXhGQUxHU1RYSm1RPT0%3D--241a0091c3a70e3f81a052d3f6e0027d85a80714&funnel_step_id=LzNveVhVdFZ0MFoyL1BFbnNuZHRoQT09LS13Mmp0bEdpWWFxekE1Z0dtTm91V0RBPT0%3D--b38f327dcddc0e359073e2b7900c825167eee11f&user_id=ZHcwWkl2a3BqenhhYWEzYnFtOWpiZz09LS00Q3Bja1o0ZzZjelBVaXY0Y0poSjh3PT0%3D--e0b3380fbfef72e8798e956fba635bc80d7ba32b&account_id=d25kQ3htc1prRzVaNUlZY3Z6bDJpUT09LS1tZmpUMktQeUY1QU9YaVluWmhCcXpRPT0%3D--88ea28e50cc8a986847bb94bc7d915a91a92f6c0&page_code=NTQxOTIzODI%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::UniqueVisitorsCreatedSummary&nonce=15610f17-f254-4dba-9928-3787f9541353&url=https%3A%2F%2Fwrist-vacatures.com%2Fwrist-klevenberg-douane-declarant1 HTTP/1.1 
Host: app.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wrist-vacatures.com
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.13.194
HTTP/2 202 Accepted
content-type: text/html
                                        
date: Tue, 27 Sep 2022 10:08:13 GMT
cf-ray: 75136fd2deaf1bfe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 99e4445806857865fac27fddd7e7af15
x-runtime: 0.037906
set-cookie: __cf_bm=IKktwodwkn3hu4tyJcjmtxIcHSPK4lGYPFGlnQzrkoQ-1664273293-0-Adwhto5hDS0MdF9ewbtAiqRlT0tIy64NEaXoP/q5TVFsG0kdtPWOptTseMGm9DtwGZxmmE+KRGNi5Oe+1b1riU1FtMNaDfhtKvv8iNgDv4Zs; path=/; expires=Tue, 27-Sep-22 10:38:13 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /form.b73a89bd000806ab7461.renderer.js HTTP/1.1 
Host: renderer-assets.typeform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/lL0t6SNg?typeform-embed-id=43363146998456736&typeform-embed=embed-widget&typeform-source=socialpromotionnl-app.clickfunnels.com&typeform-medium=snippet&typeform-medium-version=next
Connection: keep-alive
Cookie: __cf_bm=YCDZ2_lcdO6c_1z_KjfWhs8qT05rbMlzS5hmjwi_P3o-1664273293-0-AdaG/OW9G+MZRMurpSHCzlIJG9Odu2CF27j1lGOtClfq1JCnC7wF2hds9nRcrp6h1Ahv5vCWFwu9slZ/ccRaxHg=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         143.204.55.76
HTTP/2 200 OK
content-type: application/x-javascript
                                        
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 22 Sep 2022 14:51:14 GMT
x-amz-version-id: 17LY68MrMXIUFtftmBdTT.MBBrXTQAAn
server: AmazonS3
content-encoding: gzip
date: Tue, 27 Sep 2022 05:05:35 GMT
etag: W/"a5a85552833a06b2108ee42e4564cb51"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F-Ivh1F_soLPkzVTsIiJM4mdLIQZLS3VZVhpdGc2xkeyF8QSVLf5cA==
age: 18161
cache-control: max-age=2419200
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wrist-vacatures.com
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.47.230
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 75136fcee8471c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /vendor.js HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 27 Sep 2022 10:08:13 GMT
cf-ray: 75136fd24ed6b4eb-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss, store
x-request-id: 1af976b9bdb198f1356b00139e090f3a
x-runtime: 0.022311
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=zOBBSe.oXD8FWOt52hcMcyhW.UnbLALyivtVkETIg3Y-1664273293-0-AVpJ34G4Y6ep1MFnZk6iO5pD8e2TNJ3qberG-NbzaauavQDTtBAoHBV3a0dYdUf1VlZW3ZJJ_uP8iscgGaw9hGpO0pE9fACPddnXZWV1MHfI"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=zOBBSe.oXD8FWOt52hcMcyhW.UnbLALyivtVkETIg3Y-1664273293-0-AVpJ34G4Y6ep1MFnZk6iO5pD8e2TNJ3qberG-NbzaauavQDTtBAoHBV3a0dYdUf1VlZW3ZJJ_uP8iscgGaw9hGpO0pE9fACPddnXZWV1MHfI; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1 
Host: use.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.132.15
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
x-amz-id-2: lj0FvMnfC9mptRM/Gd0lw9lT7Zj4wo+oaxaEYLcDnZaRJXq3Oc/kbTmcEwen2MxXaG9FhyIrGnI=
x-amz-request-id: 9D38DJ2PTJVFVSCR
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29011548
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=96hCiR5kjKfQgwaCxP1TQtDfwuJahRfx1%2Fkj3r%2BxxJcNPmdZjOkBwKl6LGuqKCRwVc4GQl1k6LQmSgGTUaGLTCmCncFWKLq8ONmccfYx29hkQY2g2T2yRkZwLe2vu8d6HsUim%2F%2BE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75136fcf0e9d88b3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Montserrat%7Csans-serif%7CMontserrat%7Csans-serif%7CMontserrat%7Csans-serif%7C%7C HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 10:08:12 GMT
date: Tue, 27 Sep 2022 10:08:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wrist-klevenberg-douane-declarant1 HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fcc3ed3b4eb-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Sun, 01 May 2022 17:54:20 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: c862b307b79bca0b7bf63babc02f4a4c74289f2e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: fresh
x-request-id: 6d767094b85905f1873e10bf6694d762
x-runtime: 0.411471
set-cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO; path=/; expires=Tue, 27-Sep-22 10:38:12 GMT; domain=.wrist-vacatures.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /assets/lander.css HTTP/1.1 
Host: wrist-vacatures.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/wrist-klevenberg-douane-declarant1
Cookie: __cf_bm=9bSbTRKlQXMnmpqwTB1ILl.kothC6S7ROrG6nsUlzu0-1664273292-0-AYpEumYtXG85+hrOvZhebq0BveMQzNKl4iJQo7OztKeHS8yrGEHpdBOrN++Ar0Z5iNpKiHfbRHC8znXBXtjXoqETtMTIN+mOcT8jbrjANBBO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.16.16.194
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fcdd910b4eb-OSL
access-control-allow-origin: *
age: 667
cache-control: public, max-age=1200
etag: W/"632b3357-6a514"
expires: Tue, 27 Sep 2022 10:28:12 GMT
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /mailcheck.min.js HTTP/1.1 
Host: app.clickfunnels.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wrist-vacatures.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.13.194
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 27 Sep 2022 10:08:12 GMT
cf-ray: 75136fceff50fabc-OSL
access-control-allow-origin: *
age: 6812
etag: W/"632b3357-a8d"
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=.fOtmfavWz_4DfTnG9bYW_9wERVelBudx74Py.nklh8-1664273292-0-AalsRAofuy+Lm0kEEgdSgBnS5+naHrNmi5p6brftYCTnVJxj4jiG5TVmx2vQtWvIAqkxU6PK/UsdNxrVbuTGQUXGFZAnY6yAgRjryEjp56OM; path=/; expires=Tue, 27-Sep-22 10:38:12 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=TVAXuOZOD.iGZxVpBcCNdGqbiA8fQaWcuUGK9zBoS3c-1664273292-0-AereqcW7G2zUSupy43Alc4tuTLPzHURdHuYD6WOLkpzS-My6arQsVtEXiXub6rBfz3C11Vu-9OgeRKwvYhSxz1xwZNSqI-ggLk5EYFfLuz6y"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=TVAXuOZOD.iGZxVpBcCNdGqbiA8fQaWcuUGK9zBoS3c-1664273292-0-AereqcW7G2zUSupy43Alc4tuTLPzHURdHuYD6WOLkpzS-My6arQsVtEXiXub6rBfz3C11Vu-9OgeRKwvYhSxz1xwZNSqI-ggLk5EYFfLuz6y; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---