Report - justanswer.cc/

Report Overview

Submitted URL
justanswer.cc/
IP
165.160.15.20
ASN
#19574 CSC
Submitted
2023-01-27 08:26:36
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	244 kB	142.250.74.131
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	2.4 kB	172.64.155.188
cat.justanswer.com	133477	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	4.7 kB	104.16.42.9
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.190.4
seal.digicert.com	8805	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	850 B	8.3 kB	63.33.186.64
my-secure.justanswer.com	351238	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	496 B	2.3 kB	104.16.42.9
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	725 B	1.7 kB	216.58.207.194
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	608 B	349 B	31.13.72.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	11 kB	23.36.77.32
widget.trustpilot.com	6018	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	47 kB	54.230.111.50
s.adroll.com	2553	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	776 B	22 kB	54.230.111.98
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.2 kB	142.250.74.67
d.adroll.com	1530	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	492 B	615 B	54.74.252.81
justanswer.cc	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	125 B	165.160.15.20
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.mczbf.com	9496	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	852 B	22 kB	54.230.111.70
q.quora.com	3239	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	489 B	418 B	3.220.15.152
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	705 B	641 B	142.250.74.132
ocsp.r2m01.amazontrust.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	54.230.80.227
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.0 kB	93.184.220.29
d.impactradius-event.com	2612	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	14 kB	35.186.249.72
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	1.0 kB	209.85.233.156
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.justanswer.com	69936	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	798 B	6.3 kB	104.16.42.9
cdn.mouseflow.com	6644	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	825 B	68 kB	151.139.128.10
www.sjwoe.com	11166	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	599 B	54.230.111.49
bat.bing.com	387	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	15 kB	204.79.197.200
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	78 kB	142.250.74.168
sima.justanswer.com	127394	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	7.7 kB	104.16.42.9
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	21 kB	142.250.74.110
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	797 B	141 kB	157.240.205.11
images.dmca.com	11903	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	831 B	7.9 kB	151.139.128.10
a.quora.com	7568	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	47 kB	162.159.152.17

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-27 08:26:24	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-01-27 08:26:24	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	www.justanswer.com/	474 B	2023-03-13	2023-03-13
Pretty URL www.justanswer.com/ IP 104.16.42.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash bff1820b63ad6293be15be14792ef615 ce6a385d5b6da2e335c4847c306724a659979fb2 15f01f7c40e508fa4938ee6916482bb2642a60f5979e3d38cf9f6a35e70d370a Loading...

	components.justanswer.com/v3/client-side-internal-tracking@released.js	58 kB	2023-03-10	2023-03-13
Pretty URL components.justanswer.com/v3/client-side-internal-tracking@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-03-13 08:17:59 Times Seen1 Hash f7bae57de4ca7f9e0c91efaa3e19fe02 d64c0d776d0c6e04ea486f3dfed5ad2dd64507ff 900f5625a3840adb570b9fd2a47ac436d73560512ca4df2eae561505e9dbb841 Loading...

	components.justanswer.com/v3/component-model-tracking@released.js	2.1 kB	2023-03-10	2023-03-14
Pretty URL components.justanswer.com/v3/component-model-tracking@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-03-14 19:20:23 Times Seen1 Hash 103ca1fb5d52843e4bd0a6626c090c9f 4003bc142817f5a0dfb506e8e225201bfcb54f1f b4062dd02570cb5bce359d0f12cdd11ceeb7961108c7048851c904b7b0c017bc Loading...

	components.justanswer.com/v3/chat-tracking@released.js	2.4 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/chat-tracking@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:27 Last Seen2023-11-04 08:37:41 Times Seen15 Hash c85c0c4cb142224f588ac1e9f435dfd3 7f3dca3e2e28e7da479d18a56799f92137a28f1a 41f20a4e5e8ed14c47724d50bfba3755f93a1695c08cffd698adea8d17f2af95 Loading...

	www.googletagmanager.com/gtag/js?id=G-YVR58N9NM0	219 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-YVR58N9NM0 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 6cf04a059eb2b04117fa90e14e482a00 6a5f3aafccc70d61c4dc81dd6ca7e39c85a6902d e4c8233d2f58ee1270af47971888fb54e6756496145453b94a36fbb01e1de3a3 Loading...

	www.justanswer.com/revizely/2/core/ja-com.js	184 kB	2023-03-13	2023-03-13
Pretty URL www.justanswer.com/revizely/2/core/ja-com.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 5d94c16cfd2743245141acd10720380e 061c9841985d45034f2e44b6de9b3104b69e0bf9 7b15470ac82b62dc90615d7e89a25809ae872f3f561a0f24ce5ca04172a52431 Loading...

	widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/main.js	51 kB	2023-03-08	2023-05-08
Pretty URL widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/main.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:45:05 Last Seen2023-05-08 13:26:07 Times Seen125 Hash 1f166419e912fcb9283121b25418bd81 a0057bb68c35be553f45cdef5f0b444d066622c9 4760bf61bd6fc2e1e83d862478607dd6df56552ab7fa2cc5ac2e5a8f2929c092 Loading...

	seal.digicert.com/seals/cascade/seal.min.js	7.7 kB	2023-03-07	2024-04-25
Pretty URL seal.digicert.com/seals/cascade/seal.min.js IP 63.33.186.64 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:37 Last Seen2024-04-25 03:27:47 Times Seen656 Hash 80aa9eec1d19324dcef60e2e0ed92280 8eb63a841a5ee0e24b7f47ec15effa1a97e89a3e 81f277888d1ee510668666fb819bcf637e488b613dac15cf78cbe9d1ac41658c Loading...

	bat.bing.com/bat.js	39 kB	2023-03-13	2023-11-20
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:26:48 Last Seen2023-11-20 16:57:27 Times Seen4 Hash 317f48afb68ad5da3f7fa6b09690b21a 3df4136a70a0632ae71125a7c3fce7fa5dc6bd58 1d26490f083b209ef29e08d092649725edf15ac2b33ad62fdeaafd37f7d79d6f Loading...

	components.justanswer.com/v3/affiliate-traffic-source@released.js	2.5 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/affiliate-traffic-source@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:27 Last Seen2023-11-04 08:37:40 Times Seen11 Hash e9ca780791b1cc688ab2a00338099453 ed5cdce480ab67f110926a33cb157af0d0a467c4 b2fe689f4a85f9b7ae5abad291d55a65342dc97e0eb7267945796c135cd9b1a0 Loading...

	components.justanswer.com/v3/web-vitals-tracking@released.js	5.7 kB	2023-03-10	2023-03-14
Pretty URL components.justanswer.com/v3/web-vitals-tracking@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-03-14 19:20:23 Times Seen1 Hash d2175f631aaa7ca5f6d6f6f6c45ce7c1 dfa67af83ce8748965ebb01045ca8de9456130fe 4e2807247fccba72a4c1a3eadf4aeb7ebe200b6fa023e6e8735bca725d6e3209 Loading...

	s.adroll.com/j/exp/UJRQPYUAZNF7BMB7Z6PIEK/index.js	42 B	2023-03-12	2023-04-05
Pretty URL s.adroll.com/j/exp/UJRQPYUAZNF7BMB7Z6PIEK/index.js IP 54.230.111.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:03:46 Last Seen2023-04-05 02:03:30 Times Seen71 Hash 2ff5e20519778d0385c77e7f6e12de10 8e8d022d7675d4c0227b63c3fd2c75d09f52068b f51a75f2ede4c5e0457f05d60bfa39290b59348a71cdae4cc701236e6f552ad9 Loading...

	d.adroll.com/consent/check/UJRQPYUAZNF7BMB7Z6PIEK?pv=16220169289.89891&arrfrr=https%3A%2F%2Fwww.justanswer.com%2F&_s=137eb5b0be6fbbaa16fc66d3f21bc02c&_b=2	462 B	2023-03-13	2023-03-13
Pretty URL d.adroll.com/consent/check/UJRQPYUAZNF7BMB7Z6PIEK?pv=16220169289.89891&arrfrr=https%3A%2F%2Fwww.justanswer.com%2F&_s=137eb5b0be6fbbaa16fc66d3f21bc02c&_b=2 IP 54.74.252.81 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:59:09 Last Seen2023-03-13 20:54:11 Times Seen1 Hash f1ea6806bd568a76f90743c9f86bf4dc 1434f444859671823af93466ca352a9c5bdb3edc 01226f5cec5edccdd97671ef8f3ad5028c7e1842ae1e3440108e963d12c24f6a Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.205.11 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:30:49 Last Seen2023-03-13 08:53:57 Times Seen1 Hash ab83678e33d91a4c05df6e3d3f200bce 499efc34dc56dbc5e8a6fdb3a7dc4cfda2a3848d ef8f067f829af7c95936a36f38e54c98ab090f937f5557e4c78829ed8fcf5ffd Loading...

	www.mczbf.com/tags/354437340850/tag.js	52 kB	2023-03-13	2023-03-13
Pretty URL www.mczbf.com/tags/354437340850/tag.js IP 54.230.111.70 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 6a01c4f836bff0fe2126a8ec40d72b34 68ebf46e46bb9b0d7104759d9ae34a567523c309 21746f178506fdcd7e1c89805531d5db3ed6e518a23a386d106ef9073c50a77b Loading...

	www.googletagmanager.com/gtag/js?id=AW-1067616637&l=dataLayer&cx=c	181 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=AW-1067616637&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 4e4b7b8e9a282d906a6278e389287c2a c9fa4e40e100631159977c0307c1bd13b01e2d44 209a7dbebde1e981978e5f78fbbf10c91a7565554ea600e8f5259bcd5e0b6000 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/1067616637/?random=1674807987066&cv=11&fst=1674807987066&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&auid=1968850749.1674807987&data=event%3Dgtag.config&rfmt=3&fmt=4	2.0 kB	2023-03-13	2023-03-13
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/1067616637/?random=1674807987066&cv=11&fst=1674807987066&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&auid=1968850749.1674807987&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 6b4edc98982ad5caabf6044bbdd66268 f18da5879bcd31e5eae4b649dc87dbe12ef1b6ef 74c0d9b1a6cc51cff7c4fe992f01e1b3c96d0b48f89f9a8ead894979f0d7dab0 Loading...

	components.justanswer.com/v3/remarketing-pixels-impact@released.js	1.6 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/remarketing-pixels-impact@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-11-04 08:37:40 Times Seen12 Hash 7798db013fcc6549af8e0ec29ea0b016 7a2a5a425f29949ac262049ff4cb5d8a2da1176e 0d74c59e6d319dd705f67b4b8976c19511b0fe5728e6bafc8e601c3a48aef4e4 Loading...

	components.justanswer.com/v3/on-home-page-tracking-us@released.js	9.4 kB	2023-03-10	2023-07-03
Pretty URL components.justanswer.com/v3/on-home-page-tracking-us@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-07-03 09:30:47 Times Seen6 Hash 48f29803e8e6f6f7d3cc36e380b4933e cb2ce1a91a681590cde5d621acf211cf5640d807 fbc786f306bc0bc6930c945638e35adcf5ddfbe4d081c73dcfd471cf3c3365e9 Loading...

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	19 kB	2023-03-07	2023-11-04
Pretty URL widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 54.230.111.50 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2023-11-04 14:10:25 Times Seen853 Hash 09f25c4b4cb4f5d5bd2bf7adf3235bc0 dbe22054d87d6ef7127d98ceab7650eaa0f6ed68 f3496bc7c277d917d35553c46ed1597a86065494cac582e42a3a1d55aedef7fb Loading...

	a.quora.com/qevents.js	41 kB	2023-03-07	2023-08-26
Pretty URL a.quora.com/qevents.js IP 162.159.152.17 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:05 Last Seen2023-08-26 01:19:38 Times Seen854 Hash 47078e63380c6b0cbbfb6d8508b25ee7 7650e291706d8ca9d72d66858220206e549e9ce2 a15bef5551f730c8269a1cba57c370099d559defd996193c80a477c411081ca2 Loading...

	components.justanswer.com/v3/broken-resources-on-seo-pages@released.js	1.9 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/broken-resources-on-seo-pages@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-11-04 08:37:40 Times Seen13 Hash 55ecfcfe1de04edb6419bdbe327d8401 fbc3eb73849826d9b558d6657b34818af46df77e 633ddc79f515f0edf1abb33d85109321dacb1c70b9b69d3cae4ff70bce50642c Loading...

	components.justanswer.com/v3/re-kv-page-home-page@1.9.9.js	817 kB	2023-03-13	2023-03-14
Pretty URL components.justanswer.com/v3/re-kv-page-home-page@1.9.9.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:02:03 Last Seen2023-03-14 19:20:23 Times Seen1 Hash 721a5537e36f5c96983835cc77e0d9b9 1961e0fff4a60522c4a4ff47834f8098882cd8bc ca55b137e7094f426bf813549ac2851aa1593b60524fa3808c77cabb8356b86a Loading...

	components.justanswer.com/v3/main-tracking-script@released.js	189 kB	2023-03-13	2023-03-13
Pretty URL components.justanswer.com/v3/main-tracking-script@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 309ff99a82bf0fe80885137263a60146 acbdf5d7a2b1b0bcbc45313aa3837e1ac6ef035b 0742ba8f9231441eec1382768c9213f3f8b6fc7bdf6b5f853160ac223078d359 Loading...

	www.justanswer.com/	592 B	2023-03-10	2023-11-04
Pretty URL www.justanswer.com/ IP 104.16.42.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-11-04 08:37:40 Times Seen10 Hash 0d47668f3d64c4a2f1f19015d2a664da afc8a0433d9bb4a6c7528192c2fca4f286a5781f 52734cbea713523a7077258f8a15fdc32f2e3a40dde3904cafdcedcbbbc9fe98 Loading...

	www.google-analytics.com/plugins/ua/ec.js	2.8 kB	2023-03-07	2024-04-24
Pretty URL www.google-analytics.com/plugins/ua/ec.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-24 19:10:50 Times Seen1644 Hash 7b430c6350a59a7cf22b9adeccba327b b48d3c289bcb6809bb52fffd8f013055ed6bcd65 058ed961bfe422af7bfc65865f4c08531ec8ace995f8a1ec560a46581cb7712c Loading...

	connect.facebook.net/signals/config/581392048641826?v=2.9.94&r=stable	387 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/signals/config/581392048641826?v=2.9.94&r=stable IP 157.240.205.11 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash d1e1184a5b03de6eab31b9a256fe6542 3e9dc51b4e2efebfa50e8422e30cff8d02239e14 7198762756a517a20c568757db7a2ea66073038a0a43019a99441a6f1588d386 Loading...

	www.justanswer.com/	652 B	2023-03-10	2023-11-04
Pretty URL www.justanswer.com/ IP 104.16.42.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-11-04 08:37:40 Times Seen10 Hash 751e3695ac6bb3eac0a5e4902cbaca31 cc6e1c5df70bfd95a110e2e4e7d46bc41d8c5e04 bfcbb2414676b4bc8d2aacc257c5f36f791f29c1a5a3b4dd1525d304d44b6f6b Loading...

	www.justanswer.com/	82 B	2023-03-10	2023-07-03
Pretty URL www.justanswer.com/ IP 104.16.42.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:27 Last Seen2023-07-03 09:30:46 Times Seen4 Hash d6e63efa94eee9e9b977ea142efc62ac e909b9bbdc6bf81e2cfde3a1eed5aadbe2845bce 5d222b929ce85d94f75daa34c7a9ea01648f42aca847d014b0fe94b4354851a2 Loading...

	components.justanswer.com/v3/revizely@released.js	103 kB	2023-03-13	2023-03-14
Pretty URL components.justanswer.com/v3/revizely@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-14 19:20:24 Times Seen1 Hash 24e7746ef27b8c830313ad013e32fb84 cebb9188ce8d7954e36cdf3ac9b2eed1e8b627ae 954028bf8cbc1aa7e4d1f09a003e2bb56cc1dfd6fe7706333380e7c0c2295e9f Loading...

	components.justanswer.com/v3/remarketing-pixels-us@released.js	11 kB	2023-03-10	2023-03-13
Pretty URL components.justanswer.com/v3/remarketing-pixels-us@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-03-13 08:17:59 Times Seen1 Hash e7db28a1ee43d3f6bdaddcecc2011ce9 8cde354bfaceb36bd513606dfa35cf0743b79291 a35daa4acd93f7e3e131a3afb3131c0a8199c5dc2e0afdfc21a36d7e339526f8 Loading...

	components.justanswer.com/v3/remarketing-pixels-cj@released.js	1.6 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/remarketing-pixels-cj@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-11-04 08:37:40 Times Seen12 Hash d0c401d0a11772541edcb5484b8cc1e0 104e7eb9fd7b19c041c1a67820e2429128c1a3c1 c7bd3ac12be02b60051b290ffdfd99131dfd3947bce55bb60c215d062d7a8000 Loading...

	s.adroll.com/j/UJRQPYUAZNF7BMB7Z6PIEK/roundtrip.js	72 kB	2023-03-13	2023-03-13
Pretty URL s.adroll.com/j/UJRQPYUAZNF7BMB7Z6PIEK/roundtrip.js IP 54.230.111.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 642593cc1a432ae41cfb0a11103c3d99 6392713a7e86696fccbd2c51ca56808fe8cdd2da a880f7326bfb34a5136c81bf2aebad2ab209b6256842012b6c8ffb53f31a21ba Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	images.dmca.com/Badges/DMCABadgeHelper.min.js	465 B	2023-03-07	2024-04-21
Pretty URL images.dmca.com/Badges/DMCABadgeHelper.min.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-21 23:33:39 Times Seen3912 Hash bac6fb686027b93b6565e1b1e5e8e213 e585bdd95488444f0ce2888d8281dbdaf73ca2ea e8021f1a9dad409f7e699457ac334653bf800464df69900237c4de1c29e275d0 Loading...

	components.justanswer.com/v3/remarketing-pixels-bing@released.js	1.5 kB	2023-03-10	2023-05-14
Pretty URL components.justanswer.com/v3/remarketing-pixels-bing@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:27 Last Seen2023-05-14 09:27:17 Times Seen2 Hash d143643ac9d2055f643e6c48c1e934dc aee792105532218ab1274fc07c0c2f0bcc2f30f0 1bb8b1b9eee528e883d5f1c8ca4cd63d8b95b303e225a27df4f2c1c4d3d287ce Loading...

	cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js	194 kB	2023-03-13	2023-03-13
Pretty URL cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:17:59 Last Seen2023-03-13 08:17:59 Times Seen1 Hash 5ecc9eb389335a4d580ff872ba556332 02604ebeae4fe688cf4232d7f13c53913537f858 99c88ff15723d4a264b026173c8485f9a054a379c639093a67a9260c3631e0a8 Loading...

	d.impactradius-event.com/A1345497-005d-4e0f-b02e-2eed4286e0701.js	45 kB	2023-03-10	2023-03-14
Pretty URL d.impactradius-event.com/A1345497-005d-4e0f-b02e-2eed4286e0701.js IP 35.186.249.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:26 Last Seen2023-03-14 19:20:23 Times Seen1 Hash 4b1e11e5d1a4e6f4d2b1443af3a7196d 69538a237b72669d05acf6a2db1a9a8feebb3869 8b1867f6340fd114e3a020ccb2ab09751bd702c67904e0243ae58b54a45cb2a7 Loading...

	bat.bing.com/p/action/17450364.js	0 B	2023-03-07	2024-04-25
Pretty URL bat.bing.com/p/action/17450364.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 10:28:20 Times Seen37060774 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	components.justanswer.com/v3/traffic-source@released.js	3.3 kB	2023-03-10	2023-11-04
Pretty URL components.justanswer.com/v3/traffic-source@released.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:57:27 Last Seen2023-11-04 08:37:40 Times Seen12 Hash 62e6ba18f3bb3c5432c76b7670cfd468 e6f61912bf910c3a2f9ef3e7802b521b0fd002c2 64a0c4360d73bea9b226586d1ce374da9e82f0b7f4683ffeacbc7e2b923a0828 Loading...

HTTP Transactions (85)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9fbe85f42e8ae8ae41cc12df5f98b141 949fa36ff0f22f72565fd584bef094dd4de23037 184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19504 Expires: Fri, 27 Jan 2023 13:51:29 GMT Date: Fri, 27 Jan 2023 08:26:25 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 58ffdcb539c3b250fdf31ed761627fc1 5b55b1522ef84c39b5c42f9bbfbc62b806c1269f eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63" Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7296 Expires: Fri, 27 Jan 2023 10:28:01 GMT Date: Fri, 27 Jan 2023 08:26:25 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 69f73ac59327cd9ad7d99816ccfcc03e c54844f82dbee0d5ee4c8ce344eb0139373e6c6b e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3" Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14586 Expires: Fri, 27 Jan 2023 12:29:31 GMT Date: Fri, 27 Jan 2023 08:26:25 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 27 Jan 2023 07:35:19 GMT content-type: application/json age: 3066 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: SeZZFN5X1Yhm8X3QByegrnzYKfuiFKd94gxdoww4Eicv6DU9eMljmHMjhrxKOYUb4jjH07s6Qto= x-amz-request-id: ZKRC006TRAGGQFFB content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 27 Jan 2023 07:49:20 GMT age: 2225 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	justanswer.cc/	165.160.15.20	301 Moved Permanently	0 B
URL HTTP/1.1 justanswer.cc/ IP 165.160.15.20:0 ASN #19574 CSC File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: justanswer.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Fri, 27 Jan 2023 08:26:25 GMT Location: http://www.justanswer.com Content-Length: 0`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 27 Jan 2023 08:26:25 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 27 Jan 2023 07:41:40 GMT age: 2685 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	www.justanswer.com/	104.16.42.9	301 Moved Permanently	0 B
URL HTTP/1.1 www.justanswer.com/ IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: www.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Fri, 27 Jan 2023 08:26:25 GMT Content-Length: 0 Connection: keep-alive Location: https://www.justanswer.com/ CF-Ray: 79001a758b4009ab-ARN Cache-Control: max-age=0, private Vary: Accept-Encoding Via: Jate (1-master.build-7771.sha-1451ac83) CF-Cache-Status: DYNAMIC Handle-fetch-duration: 231ms referrer-policy: no-referrer-when-downgrade Rules-duration: 14ms Selected-Route: US.Http_default X-Rev2-Worker: rule-engine-prod-com-master.build-672.sha-54384f8 Set-Cookie: __cf_bm=jmlVYAEbC8IBjV4Hm.QMKNIlWyXnIbTEujJUX4zqK7U-1674807985-0-ARcOecybFqODGI3S6ynJCiB03hJmQass8sk2nT0xBi0YLTiM7NFVzEyflsf0EbugAeVZ88KjvJxOurix7R9c4DA=; path=/; expires=Fri, 27-Jan-23 08:56:25 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None JAAnonymousGUID=6b60035c-c325-44e3-8152-304675c7d5c5;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:25 GMT JAAnonymousVisitKey=8f4991ef-dd24-45be-f913-803ae6831abc;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:25 GMT JAAnonymousVisit=1674807985;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:25 GMT re.v2.ja-com={};domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:25 GMT prior_visit=1674807985;domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:25 GMT cf_currency=NOK;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:25 GMT cf_geo=NO_;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:25 GMT cf_cache_status=DYNAMIC;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:25 GMT cf_ray=79001a7717ba09ab-ARN;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:25 GMT redirectLoop={"c":1,"p":["http://www.justanswer.com/","https://www.justanswer.com/"]};domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 08:26:40 GMT __cf_bm=MpKZUwv6mfVVwhMaQ4mb2YU3z0egT4NS2FJ6rKMv6CQ-1674807985-0-AafPZ5dd8wV4JlHmcnc74xBq+CtcXGlkw6khf4w1tL83UVAoUN8GM9WUyBg0cM3180pVc1nXXUpT/q212SPquls=; path=/; expires=Fri, 27-Jan-23 08:56:25 GMT; domain=.justanswer.com; HttpOnly; SameSite=None Server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16" Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20424 Expires: Fri, 27 Jan 2023 14:06:50 GMT Date: Fri, 27 Jan 2023 08:26:26 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a867e17aac70fe1f2d7dcddada37f239 f661292d4cf6551a910992fbcd292bbff85d98eb 2952bd7f9526146972675c373a3fc58875df82d353c8915b0097a8b04e89d446 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4729 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:26 GMT Etag: "63d34c7a-1d7" Last-Modified: Fri, 27 Jan 2023 07:07:37 GMT Server: ECS (amb/6BA1) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a867e17aac70fe1f2d7dcddada37f239 f661292d4cf6551a910992fbcd292bbff85d98eb 2952bd7f9526146972675c373a3fc58875df82d353c8915b0097a8b04e89d446 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4729 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:26 GMT Last-Modified: Fri, 27 Jan 2023 07:07:37 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	54.148.190.4	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.190.4:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: t5RHKcZqP6MhyUc9RZIWZg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: s+sLuZn72wZbtsXdzgPmBG7+fgs=`

	images.dmca.com/Badges/DMCABadgeHelper.min.js	151.139.128.10	200 OK	395 B
URL HTTP/2 images.dmca.com/Badges/DMCABadgeHelper.min.js IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type ASCII text Size 395 B (395 bytes) Hash 365ad8f83802168e7326b29df6a22f4a a096aa3c7e46525c7b7c54cb6b7987f01559b688 dafd787e6bf2c7ed10cb6c14f36ada4e5e9b7c15ffe7393cd6000acb946ebf13 HTTP Headers `GET /Badges/DMCABadgeHelper.min.js HTTP/1.1 Host: images.dmca.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:26 GMT content-encoding: gzip content-length: 395 content-type: application/javascript last-modified: Fri, 21 Jun 2019 20:14:34 GMT accept-ranges: bytes server: Microsoft-IIS/10.0 cache-control: public,max-age=31536000 etag: "26b181f16d28d51:0" x-powered-by: ASP.NET x-hw: 1674807986.cds253.sk1.hn,1674807986.cds225.sk1.c link: <https://www.dmca.com/Badges/DMCABadgeHelper.min.js>; rel="canonical" access-control-allow-origin: * X-Firefox-Spdy: h2`

	images.dmca.com/Badges/dmca-badge-w250-5x1-01.png?ID=8cf5b398-29e6-4ecd-aef9-45f0ddd2d8c9	151.139.128.10	200 OK	6.6 kB
URL HTTP/2 images.dmca.com/Badges/dmca-badge-w250-5x1-01.png?ID=8cf5b398-29e6-4ecd-aef9-45f0ddd2d8c9 IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type PNG image data, 250 x 50, 8-bit/color RGBA, interlaced\012- data Size 6.6 kB (6553 bytes) Hash 8f1ea2ff5b2807cc89b5ad37275b1f4f 0f98b09de8261320d2f7c93eb0e2bce47a667a8f 306760b33d307ebb848eb8ac44198c811f3176d1542826704e9ca6d67b6a43a6 HTTP Headers `GET /Badges/dmca-badge-w250-5x1-01.png?ID=8cf5b398-29e6-4ecd-aef9-45f0ddd2d8c9 HTTP/1.1 Host: images.dmca.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:26 GMT content-length: 6553 content-type: image/png last-modified: Mon, 25 Jul 2016 19:39:16 GMT accept-ranges: bytes server: Microsoft-IIS/10.0 cache-control: public,max-age=31536000 etag: "d93f973aace6d11:0" x-powered-by: ASP.NET x-hw: 1674807986.cds253.sk1.hn,1674807986.cds229.sk1.c link: <https://www.dmca.com/Badges/dmca-badge-w250-5x1-01.png>; rel="canonical" access-control-allow-origin: * X-Firefox-Spdy: h2`

	seal.digicert.com/seals/cascade/seal.min.js	63.33.186.64	200 OK	3.3 kB
URL HTTP/1.1 seal.digicert.com/seals/cascade/seal.min.js IP 63.33.186.64:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (7741), with no line terminators Size 3.3 kB (3286 bytes) Hash 02dcd5ea231004305b668ecad0e0ee37 d8d16e16a55374e91cf8eb68374d60f315e3cc29 b330547e047a0b2529f3136dd520bc64d5a8ced171bdcff2065db886aae07219 HTTP Headers `GET /seals/cascade/seal.min.js HTTP/1.1 Host: seal.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Fri, 27 Jan 2023 08:26:26 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive vary: Accept-Encoding last-modified: Thu, 26 Jan 2023 22:32:49 GMT etag: W/"1e3d-5f33254224640" content-encoding: gzip X-XSS-Protection: 1; mode=block, 1; mode=block X-Content-Type-Options: nosniff, nosniff Strict-Transport-Security: max-age=31536000`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82e3abc4a7b17efedca67cf215f4bb60 e20e55d87591af7db3a4bcfc429048f85e389b85 df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:26 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	54.230.111.50	200 OK	7.2 kB
URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 54.230.111.50:0 ASN #16509 AMAZON-02 File type data Size 7.2 kB (7202 bytes) Hash 349f6e0e3228e370d5b8761bda406df2 b8d8ada7676977dd7656c7ae27eeb332d79f6d21 06179c73219ff5c5b7c14f30fa15a267aac077a7b567ffe5b4bddb2052ddd8eb HTTP Headers `GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/x-javascript content-length: 6124 last-modified: Mon, 30 May 2022 14:38:02 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Fri, 27 Jan 2023 04:04:58 GMT cache-control: max-age=86400 etag: "5add60196e5f96a414fb4b9586764e5d" x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: tRwyZ9wUjKZ6q7dMbCRpuF02-0k6Nw-WZWElA5TaoT7aYLh6rDVarA== age: 15688 X-Firefox-Spdy: h2

	seal.digicert.com/seals/cascade/?tag=PMRTLWh_&referer=www.justanswer.com&format=png&seal_number=15&seal_size=s	63.33.186.64	200 OK	4.2 kB
URL HTTP/1.1 seal.digicert.com/seals/cascade/?tag=PMRTLWh_&referer=www.justanswer.com&format=png&seal_number=15&seal_size=s IP 63.33.186.64:0 ASN #16509 AMAZON-02 File type data Size 4.2 kB (4237 bytes) Hash 3f127e5404135842921292b99e047d3e 75814785999456736c929d1fc5621dc3d9444bd7 50b700adf756401cb7de4dd357bed3013ca4adbcb6790fed786223b2f9fa1c3e HTTP Headers `GET /seals/cascade/?tag=PMRTLWh_&referer=www.justanswer.com&format=png&seal_number=15&seal_size=s HTTP/1.1 Host: seal.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Server: nginx Date: Fri, 27 Jan 2023 08:26:26 GMT Content-Type: image/png Content-Length: 3419 Connection: keep-alive last-modified: Thu, 26 Jan 2023 00:00:00 +0000 cache-control: max-age=86400 expires: Fri, 27 Jan 2023 20:22:53 +0000 X-XSS-Protection: 1; mode=block, 1; mode=block X-Content-Type-Options: nosniff, nosniff Strict-Transport-Security: max-age=31536000`

	www.googletagmanager.com/gtag/js?id=G-YVR58N9NM0	142.250.74.168	200 OK	77 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-YVR58N9NM0 IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (19747) Size 77 kB (76898 bytes) Hash 519f904c5243ece7d34aac8e188db4c5 48b20b59f799389d363e540e1270dc645a0bb98a 73b907b7c052e91b387196414ee6cf62778c9540d490869f3826f6dc5c19b8ee HTTP Headers `GET /gtag/js?id=G-YVR58N9NM0 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 27 Jan 2023 08:26:26 GMT expires: Fri, 27 Jan 2023 08:26:26 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 76898 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82e3abc4a7b17efedca67cf215f4bb60 e20e55d87591af7db3a4bcfc429048f85e389b85 df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:26 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.77.32	200 OK	1.8 kB
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 1.8 kB (1752 bytes) Hash 7a0b90c5e04f80a9d0a137dc69c5a667 de8b9c5a4ef2efae8903535d9afc377746826738 11377a587e26aeb7af2367c52091fe359f5b3904fbb0f680ab2a4c1813aa9f1f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "431D5193C3F2A62F4D3F28F333D363E6D0F570793B825A14E3078B4BF3765B68" Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18768 Expires: Fri, 27 Jan 2023 13:39:14 GMT Date: Fri, 27 Jan 2023 08:26:26 GMT Connection: keep-alive`

	widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=49179707000064000503e452	54.230.111.50	200 OK	33 kB
URL HTTP/2 widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=49179707000064000503e452 IP 54.230.111.50:0 ASN #16509 AMAZON-02 File type data Size 33 kB (33335 bytes) Hash 2b1f4d4dbee0b907cbd6b9ab9a3c36a0 51b1f3208446fc65c347f71a988caa77f9b874af 4655f8f46a4df78763b3f9dca1781a16a9faa74e84ed9add7b8637ad997a6a3c HTTP Headers GET /trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=49179707000064000503e452 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK content-type: text/html content-length: 1930 last-modified: Tue, 04 Oct 2022 10:33:40 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Fri, 27 Jan 2023 08:26:26 GMT cache-control: max-age=86400 etag: "1b1a56d9c9fcf8acab07f238231461df" x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: DGs3yhzI4KwKYSTatjM23XEjyJ5zukBEL56sWBHlxEO91MvErDOCxg== age: 6073 X-Firefox-Spdy: h2

	cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js	151.139.128.10	301 Moved Permanently	10 kB
URL HTTP/2 cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type data Size 10 kB (10449 bytes) Hash 65847fb354bb236af26df30ac3188684 4f21d07e0ca91bfbe0de6942a1ad7f01a63c4b0a bff0ccbb034461decd183b10cb9fbeca7cc6027cf17e319388c97094281a7eda HTTP Headers `GET /projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js HTTP/1.1 Host: cdn.mouseflow.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 301 Moved Permanently date: Fri, 27 Jan 2023 08:26:27 GMT accept-ranges: bytes content-length: 0 location: https://cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf_eu.js cache-control: max-age=86400 x-hw: 1674807987.cds018.sk1.hn,1674807987.cds256.sk1.c x-hw-loc: https://cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf.js access-control-allow-origin: * X-Firefox-Spdy: h2`

	a.quora.com/qevents.js	162.159.152.17	200 OK	47 kB
URL HTTP/2 a.quora.com/qevents.js IP 162.159.152.17:0 ASN #13335 CLOUDFLARENET File type data Size 47 kB (46609 bytes) Hash 063a88958f2701b9c82e9b5ea7e9651b a59bfe0105b3274360d2aefa4ed20ffbb8d53a9d aa644aa21c1b94df2d68f07db5ec7e0027d94885cc0e6abfe3640bf8f5de8bb4 HTTP Headers `GET /qevents.js HTTP/1.1 Host: a.quora.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:27 GMT content-type: text/plain x-amz-id-2: Lo6V6sS9dollZm991E+r9QS5ilIWlcul705lMiga2oQnz8bnT95jaa4X7qyu2MPUU2YNcD20ek4= x-amz-request-id: ABWFWAK2P6Z86ST7 last-modified: Fri, 18 Mar 2022 00:16:52 GMT etag: W/"47078e63380c6b0cbbfb6d8508b25ee7" x-amz-meta-s3cmd-attrs: atime:1647562609/ctime:1647562609/gid:150037/gname:ezhang/md5:47078e63380c6b0cbbfb6d8508b25ee7/mode:33204/mtime:1647562609/uid:150037/uname:ezhang cache-control: public, max-age=14400 x-amz-version-id: vyBstMTGyA6m5sV66zq8xsypUg.tAOk. cf-cache-status: HIT age: 711425 expires: Fri, 27 Jan 2023 12:26:27 GMT vary: Accept-Encoding server: cloudflare cf-ray: 79001a7ecb2c0b51-OSL content-encoding: gzip alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.mczbf.com/tags/354437340850/tag.js	54.230.111.70	200 OK	20 kB
URL HTTP/1.1 www.mczbf.com/tags/354437340850/tag.js IP 54.230.111.70:0 ASN #16509 AMAZON-02 File type data Size 20 kB (20516 bytes) Hash a58fb4d97d5e38da2429f5c538491de8 5420704c08b4298448662521ac69d316b2bba775 116e97171b0ed891e41af99774acd993566d2b49a1836112fadfa62fd4ea1038 HTTP Headers `GET /tags/354437340850/tag.js HTTP/1.1 Host: www.mczbf.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: application/javascript; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Date: Fri, 27 Jan 2023 07:57:39 GMT X-Request-ID: 45544e2a-9e18-11ed-b17a-39db36c59ebf Server: nginx Cache-Control: max-age=1800 Content-Encoding: gzip X-Cache: Hit from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: A6yS3E9L3YvIpsEmUNgwmabdHxZM1lzn7Ml6rrEb6wwR2Jfr1O-3jg== Age: 1728`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 98d20d6589d219451f300470d39fb87e 90111fb8a11e8c72bcadaa3d0cbd015044160171 431d5193c3f2a62f4d3f28f333d363e6d0f570793b825a14e3078b4bf3765b68 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "431D5193C3F2A62F4D3F28F333D363E6D0F570793B825A14E3078B4BF3765B68" Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18767 Expires: Fri, 27 Jan 2023 13:39:14 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf_eu.js	151.139.128.10	200 OK	56 kB
URL HTTP/2 cdn.mouseflow.com/projects/9327b182-5de5-4429-85b9-c68c2e48d3bf_eu.js IP 151.139.128.10:0 ASN #20446 STACKPATH-CDN File type ASCII text, with very long lines (57573), with CRLF line terminators Size 56 kB (56306 bytes) Hash 51cfad07fff52fde5b89b329ddd1cecb 5c168685d41b37d342b1d02670e0a5180c090f3e 1853db509d341c7e6845f8ead40526b71822f634e07571d68d6fbcb4cd6f7a02 HTTP Headers `GET /projects/9327b182-5de5-4429-85b9-c68c2e48d3bf_eu.js HTTP/1.1 Host: cdn.mouseflow.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:27 GMT cache-control: max-age=86400 content-encoding: gzip content-length: 56306 content-type: application/javascript; charset=utf-8 last-modified: Sun, 15 Jan 2023 18:25:37 GMT accept-ranges: bytes etag: "80667ac3e29d91:0" server: x-hw: 1674807987.cds018.sk1.hn,1674807987.cds022.sk1.c access-control-allow-origin: * X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	172.64.155.188	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 6d9e613522b2eb9f0245e9f190e9ca7c a603337c8171282e086679e609beb008fc8661f0 fb32a6bdb15595969790a5ff1767cf500a1d4f6cb27054290f2cde0f481b9051 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 27 Jan 2023 08:26:27 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Wed, 25 Jan 2023 18:44:40 GMT Expires: Wed, 01 Feb 2023 18:44:39 GMT Etag: "a603337c8171282e086679e609beb008fc8661f0" Cache-Control: max-age=468491,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 79001a7f28f5b515-OSL`

	www.sjwoe.com/policy	54.230.111.49	200 OK	47 B
URL HTTP/2 www.sjwoe.com/policy IP 54.230.111.49:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 47 B (47 bytes) Hash 4df589e07db49a37b9f0f0f388dafe4d dec69779c617f1a3d12b24c305887f06d2c0e7ef b9a115127dd63e3f27882fddcf4431f2cffc43deb619586cd6becc6f23e57ba6 HTTP Headers `GET /policy HTTP/1.1 Host: www.sjwoe.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.justanswer.com Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/json content-length: 47 date: Thu, 26 Jan 2023 20:01:59 GMT x-amzn-requestid: 02c14fca-4b57-495d-8e7b-534ccab2263a access-control-allow-origin: * x-amz-apigw-id: fXdYwEO6IAMFThg= cache-control: max-age=3600 x-amzn-trace-id: Root=1-63d2dc37-751f4d7d0f9e746a471b9b3b;Sampled=0 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: LvlJTJCY-XsCyvCmSygSjXRgoBC8N45ZLsaDZUNQ7k-UEXYUyjGuKQ== age: 44668 X-Firefox-Spdy: h2

	cat.justanswer.com/jatag/collect	104.16.42.9	204 No Content	0 B
URL HTTP/2 cat.justanswer.com/jatag/collect IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /jatag/collect HTTP/1.1 Host: cat.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.justanswer.com/ Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Fri, 27 Jan 2023 08:26:27 GMT cf-ray: 79001a7edfa42d9e-ARN access-control-allow-origin: * cf-cache-status: DYNAMIC access-control-allow-headers: content-type access-control-allow-methods: POST set-cookie: route=1674807988.098.933.240129\|519dd8eebee6ac27264669b473d5f211; Expires=Sun, 29-Jan-23 08:26:27 GMT; Max-Age=172800; Path=/; HttpOnly __cf_bm=GRzujaYA7a5uJ1v1m4IAIJmqjNQAYZqYaW7bF8W5g5U-1674807987-0-AUJu7liaDGVFkh/Wn79zWWPAvOJF8JLhDKzMKQ8GwdL3F77SDveLDpjJxzo/4lC5Td8f3o98Dq10LYD0AGKcp8w=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None __cf_bm=qR03PNlKa9r6SzvUvMmAuP8z1.dWETOdz_QkSeIhvfs-1674807987-0-ASrbJjIQDiA16zEHW/dB/w7RjHp1e86BVcfbwBnf64zPniVU6KCjTpsbb8xDsb2yIoGe8z3RVvjQ9VdZIsQR8M8=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	sima.justanswer.com/RequestCollector-1.4/RequestCollector	104.16.42.9	200 OK	6.3 kB
URL HTTP/2 sima.justanswer.com/RequestCollector-1.4/RequestCollector IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type data Size 6.3 kB (6341 bytes) Hash 6c1e16d4b93a000a7c076c916fb9aad0 a393ec188838ed8756f37435610d6163118280df 64a0f9747d6ddd9e4a1415a9f6cd243bbc4d11840922bcd2662f67e100ac0dfe HTTP Headers OPTIONS /RequestCollector-1.4/RequestCollector HTTP/1.1 Host: sima.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.justanswer.com/ Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:27 GMT content-length: 0 access-control-allow-origin: https://www.justanswer.com access-control-allow-credentials: true access-control-max-age: 1800 access-control-allow-methods: POST access-control-allow-headers: origin,x-dq-mode,x-requested-with,access-control-request-headers,content-type,access-control-request-method,accept cf-cache-status: DYNAMIC set-cookie: __cf_bm=9aqL2ZnMeehKc6MyB2L9mh.1JOy7N.k.rE1TIQ1YGtI-1674807987-0-AYxcIq/CJVYttGzvDgs6mqnrRrcaYNuB1I+CTgitkwx3vK/lwzK0Wi/3HY8DXlQa2Ofzmhil8l1kQNvwYshH3vE=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 79001a7eefc12d9e-ARN alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cat.justanswer.com/jatag/collect	104.16.42.9	204 No Content	0 B
URL HTTP/2 cat.justanswer.com/jatag/collect IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /jatag/collect HTTP/1.1 Host: cat.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.justanswer.com/ Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content date: Fri, 27 Jan 2023 08:26:27 GMT cf-ray: 79001a7edfa12d9e-ARN access-control-allow-origin: * cf-cache-status: DYNAMIC access-control-allow-headers: content-type access-control-allow-methods: POST set-cookie: route=1674807988.109.586.704042\|519dd8eebee6ac27264669b473d5f211; Expires=Sun, 29-Jan-23 08:26:27 GMT; Max-Age=172800; Path=/; HttpOnly __cf_bm=TMDYJqVHNSEzvtVupwdC.yImQnCw2oPeTYuAPKcZNWY-1674807987-0-AfVHOWa/aLNaW+RQ+DlyECn/P70e1jeEIep1EXAxoom+uLcmyIc/9dd0+sGew4HQHNpLCahtgcLJ2ppqRidaonI=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None __cf_bm=QGEjvFm407NF7dsCjhNCml27MUTURsvUfDsKS.EhAQM-1674807987-0-AYZxmdfztCBY5sipxc4xR7HoYEEhYvVl/SWTPo2316146eevsSwrLe2I0I3Hs8+VuGp6raeqa0Z8RtXh+XuCfmI=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	widget.trustpilot.com/trustbox-data/53aa8807dec7e10d38f59f32?businessUnitId=49179707000064000503e452&locale=en-US	54.230.111.50	200 OK	3.7 kB
URL HTTP/2 widget.trustpilot.com/trustbox-data/53aa8807dec7e10d38f59f32?businessUnitId=49179707000064000503e452&locale=en-US IP 54.230.111.50:0 ASN #16509 AMAZON-02 File type data Size 3.7 kB (3690 bytes) Hash 676ea0aae1536457c142c13ca338b40a eed24a79c464a981421323f445e79c6dffe6d4fb e37266173c2b3dc69e20b5fbc21667e682ffa1df3d04891d0593cca80a23166b HTTP Headers GET /trustbox-data/53aa8807dec7e10d38f59f32?businessUnitId=49179707000064000503e452&locale=en-US HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=49179707000064000503e452 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 394 content-encoding: gzip server: Kestrel strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block date: Fri, 27 Jan 2023 08:26:27 GMT cache-control: public,max-age=1800 etag: "e2aa4adc5297b806fd34d257b49e6c8a" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: QMqoWgOfuFPFI5oimE-3aefsB4A62AMtjEkejCCRLp4mTTrRkek9cA== age: 1749 X-Firefox-Spdy: h2

	my-secure.justanswer.com/api/cookiebannerapi/getshowcookiebannerheader?pageType=100	104.16.42.9	200 OK	4 B
URL HTTP/2 my-secure.justanswer.com/api/cookiebannerapi/getshowcookiebannerheader?pageType=100 IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 5c3ab820d545e488b1a03b57729ef4f0 a9f7804eb5575d118d6608caf4172c005783b71a 289e8fe4a66b416dbff5f38d812278bfc3b040b43efafbd1d356a875ab0e7ffa HTTP Headers `GET /api/cookiebannerapi/getshowcookiebannerheader?pageType=100 HTTP/1.1 Host: my-secure.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:27 GMT content-type: text/plain; charset=utf-8 content-length: 4 cf-ray: 79001a7eefc02d9e-ARN accept-ranges: bytes access-control-allow-origin: https://www.justanswer.com age: 42520 cache-control: public, max-age=86400 expires: Sat, 28 Jan 2023 08:26:27 GMT last-modified: Thu, 26 Jan 2023 20:37:47 GMT vary: Accept-Encoding via: Jate (1-master.build-7765.sha-cc7638b4) cf-cache-status: HIT access-control-expose-headers: * handle-fetch-duration: 51ms p3p: CP="OTI CUR PSD OUR" pragma: no-cache referrer-policy: no-referrer-when-downgrade rules-duration: 13ms selected-route: CookieBannerGDPR_WWW_default show-cookie-banner: 1 x-frame-options: SAMEORIGIN x-rev2-worker: rule-engine-prod-com-master.build-672.sha-54384f8 x-ua-compatible: IE=Edge,chrome=1 set-cookie: __cf_bm=SnILC1iYgUlTYaSfag1rIXp3jjjfztB2f6jkH0UwsoY-1674807987-0-AXZj1W0Q1CkvTmCwUianmui2xeNkP5aEiRUzGZeKai2ZXmhpASDJGvpnvtI/QmG83hx4QOgDun/U2MHpRy7zxss=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure JAAnonymousGUID=3910cdd0-a00a-4ffd-b207-f8fcf2013ba7;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:27 GMT JAAnonymousVisitKey=edbba9e0-579d-476d-a3a4-ca6661d09099;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:27 GMT JAAnonymousVisit=1674807987;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:27 GMT re.v2.ja-com={};domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:27 GMT prior_visit=1674807987;domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:27 GMT cf_currency=NOK;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:27 GMT cf_geo=NO_;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:27 GMT cf_cache_status=HIT;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:27 GMT cf_ray=79001a8014e82d9e-ARN;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:27 GMT __cf_bm=Idj098R9mqMpmyy2uvN6cCTplMil4nJNOoriJxrpa0o-1674807987-0-ASpVI7VP9wuSId0VpkzT4ZbDffgy795tltANDzrJKc4+gYoWWLVnTQ2Ai4W5LgJqkytN7Ir6qorG/G6h8NDYJJQ=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	d.impactradius-event.com/A1345497-005d-4e0f-b02e-2eed4286e0701.js	35.186.249.72	200 OK	14 kB
URL HTTP/2 d.impactradius-event.com/A1345497-005d-4e0f-b02e-2eed4286e0701.js IP 35.186.249.72:0 ASN #15169 GOOGLE File type C source, ASCII text, with very long lines (44923), with no line terminators Size 14 kB (13593 bytes) Hash 9586090f53679ab1b6739edd4a4e046b 3aab1c55444225b9d82c80febf4b12ae7a66e296 3a0fa3427f91bb850555458b648894da910af6ff9723069bff4b1641fcecf3b8 HTTP Headers `GET /A1345497-005d-4e0f-b02e-2eed4286e0701.js HTTP/1.1 Host: d.impactradius-event.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-guploader-uploadid: ADPycdvym5L_AKGJbo9dz6XvdKlUEiNQUkNFT-Bq8JQOnTcoeg8BOBTrTj1U4QTh3_JJBbOH5RvWyT0VPZtMZaKscY7h vary: Accept-Encoding x-goog-generation: 1667207159767679 x-goog-metageneration: 1 x-goog-stored-content-encoding: gzip x-goog-stored-content-length: 13593 content-encoding: gzip x-goog-hash: crc32c=aQ27tA==, md5=lYYJD1NnmrG2c57dSk4Eaw== x-goog-storage-class: MULTI_REGIONAL accept-ranges: bytes content-length: 13593 access-control-allow-origin: * server: UploadServer date: Fri, 27 Jan 2023 08:26:27 GMT expires: Fri, 27 Jan 2023 08:31:27 GMT cache-control: public,max-age=900,s-maxage=300 last-modified: Mon, 31 Oct 2022 09:05:59 GMT etag: "9586090f53679ab1b6739edd4a4e046b" content-type: text/javascript; charset=utf-8 age: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 04a02db3097e0f9fa4c6311ea80eb206 715a0b77837fd2e6cdecc0555d8cbcacae4247f9 a762f0d279f126605a99bfed48e8dd97a440228bc091dcf3a262076534172318 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A762F0D279F126605A99BFED48E8DD97A440228BC091DCF3A262076534172318" Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12595 Expires: Fri, 27 Jan 2023 11:56:22 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	cat.justanswer.com/g/collect?v=2&tid=G-YVR58N9NM0&gtm=2oe1p0&_p=1052083267&_gaz=1&cid=1407534881.1674807987&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674807986&sct=1&seg=0&dl=https%3A%2F%2Fwww.justanswer.com%2F&dt=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.visitor_guid=5be8f93e-5ef3-471c-8980-15c08747d539&epn.landing_page_hit=1&epn.unique_landing_page_hit=1&ep.page_name=Home&ep.question_ppc_vertical_name=General&ep.question_category=General&ep.content_category=General&ep.cf_cache_status=HIT	104.16.42.9	202 Accepted	0 B
URL HTTP/2 cat.justanswer.com/g/collect?v=2&tid=G-YVR58N9NM0&gtm=2oe1p0&_p=1052083267&_gaz=1&cid=1407534881.1674807987&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674807986&sct=1&seg=0&dl=https%3A%2F%2Fwww.justanswer.com%2F&dt=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.visitor_guid=5be8f93e-5ef3-471c-8980-15c08747d539&epn.landing_page_hit=1&epn.unique_landing_page_hit=1&ep.page_name=Home&ep.question_ppc_vertical_name=General&ep.question_category=General&ep.content_category=General&ep.cf_cache_status=HIT IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-YVR58N9NM0&gtm=2oe1p0&_p=1052083267&_gaz=1&cid=1407534881.1674807987&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674807986&sct=1&seg=0&dl=https%3A%2F%2Fwww.justanswer.com%2F&dt=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.visitor_guid=5be8f93e-5ef3-471c-8980-15c08747d539&epn.landing_page_hit=1&epn.unique_landing_page_hit=1&ep.page_name=Home&ep.question_ppc_vertical_name=General&ep.question_category=General&ep.content_category=General&ep.cf_cache_status=HIT HTTP/1.1 Host: cat.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Origin: https://www.justanswer.com Connection: keep-alive Cookie: JAAnonymousGUID=5be8f93e-5ef3-471c-8980-15c08747d539; JAAnonymousVisitKey=652f4dad-f5dc-4959-c4d1-f2c31486cd69; JAAnonymousVisit=1674807986; re.v2.ja-com={}; prior_visit=1674807986; cf_currency=NOK; cf_geo=NO_; cf_cache_status=HIT; cf_ray=79001a79a4d509b5-ARN; __cf_bm=YjlsEd8890QyZIx.QqwfcN9WbzO93AQZ2MWJvCaSoWw-1674807986-0-AUYHp8k3cT5YVV2DK1LjEg9TzV/f5xyYkxmBNdet5XNiNpw2N4CUOGnV94RH2iWxAcswFDshhNoLMFISRoSs/BI=; PlatformAgnostincTrackingVisitorGUID=5be8f93e-5ef3-471c-8980-15c08747d539; PlatformAgnostincTrackingVisitCreation=1674807986; ga4_upvm=LP_UniquePageView_HasTracked,; trafficsource=dd=www.justanswer.com&dp=%2F; dtCookie=v_4_srv_4_sn_083C2D0E751799244E1F0BA0089E604F_perc_100000_ol_0_mul_1_app-3Ac5b11ceb0023d18f_0; ARPTJA=2870061248.20736.0000; mf_9327b182-5de5-4429-85b9-c68c2e48d3bf=\|.47.1674807986904\|1674807986904\|\|0\|\|\|0\|0\|92.0071; _ga_YVR58N9NM0=GS1.1.1674807986.1.0.1674807986.60.0.0; _ga=GA1.1.1407534881.1674807987 Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Content-Length: 0 TE: trailers HTTP/2 202 Accepted date: Fri, 27 Jan 2023 08:26:27 GMT content-length: 0 cf-ray: 79001a7fc8642d9e-ARN access-control-allow-origin: * set-cookie: route=1674807988.267.933.37205\|519dd8eebee6ac27264669b473d5f211; Expires=Sun, 29-Jan-23 08:26:27 GMT; Max-Age=172800; Path=/; HttpOnly cf-cache-status: DYNAMIC api-supported-versions: 1.0 content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline'; x-frame-options: DENY vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cat.justanswer.com/jatag/collect	104.16.42.9	202 Accepted	0 B
URL HTTP/2 cat.justanswer.com/jatag/collect IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /jatag/collect HTTP/1.1 Host: cat.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Content-Type: application/json;charset=UTF-8 Content-Length: 233 Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 202 Accepted date: Fri, 27 Jan 2023 08:26:27 GMT content-length: 0 cf-ray: 79001a7fd87e2d9e-ARN access-control-allow-origin: * cf-cache-status: DYNAMIC api-supported-versions: 1.0 content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline'; x-frame-options: DENY set-cookie: route=1674807988.261.787.729265\|519dd8eebee6ac27264669b473d5f211; Expires=Sun, 29-Jan-23 08:26:27 GMT; Max-Age=172800; Path=/; HttpOnly __cf_bm=jtvjskZvEC8rj_mqyP5eWFLvzUskJyXeuQ6nnqaVCbI-1674807987-0-AdL9qSD5ktIVEMtZ9WTVtlfbCvYSETEQaHNnWjYg6M7iAVvKi4imOoMumYXmqQwiA+W1m2C8SpRUfsSwtVYuOWI=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None __cf_bm=uB2O875.mULfqQlzEsPUBQU.ZVHntN804GeDB6DK3B8-1674807987-0-AUR4eiVbKvHHQXiemczvOEptALCnLszf/HOCbhY1s/5Mn07RPaW6KdO81gmZcb0fH10YWmDOTCVw0i8UtLSr63c=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cat.justanswer.com/jatag/collect	104.16.42.9	202 Accepted	0 B
URL HTTP/2 cat.justanswer.com/jatag/collect IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /jatag/collect HTTP/1.1 Host: cat.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Content-Type: application/json;charset=UTF-8 Content-Length: 233 Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 202 Accepted date: Fri, 27 Jan 2023 08:26:27 GMT content-length: 0 cf-ray: 79001a7fd8a02d9e-ARN access-control-allow-origin: * cf-cache-status: DYNAMIC api-supported-versions: 1.0 content-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline'; x-frame-options: DENY set-cookie: route=1674807988.273.1013.48789\|519dd8eebee6ac27264669b473d5f211; Expires=Sun, 29-Jan-23 08:26:27 GMT; Max-Age=172800; Path=/; HttpOnly __cf_bm=9botlm5D8hOR21JrdsHAqWY84gL8W9hK72g7.6YbfcQ-1674807987-0-AfMLsY3xcdrWxhnO8mCpnUdaKdPkXeydkYss+euOUNvsjbo1MVrfHDx9ZutC+i/h6ytpoNG06NuUf4F8AJ8Mj1E=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None __cf_bm=fykkw0IQIFq.dDuBsEK1FJjXf3t1jan6nVrPRRBn2Uc-1674807987-0-Aaf2d+Q3Z5uevNDBowspk1DlydAi1CZV7YMl5agrYbvh/4GHmQm+z+Ujwrk7draa7jVpFEluBd4wB+eBzk3uAQo=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.mczbf.com/354437340850/pageInfo	54.230.111.70	200 OK	765 B
URL HTTP/1.1 www.mczbf.com/354437340850/pageInfo IP 54.230.111.70:0 ASN #16509 AMAZON-02 File type data Size 765 B (765 bytes) Hash 05e3c7c1080d0de97f41ea0da30b9af0 e17a8e35711f820de8b4dcc26783527788a66f25 8ac94520acc79a8a054e920231493fcdfaa892b594fbe0506b951b67f400170e HTTP Headers `POST /354437340850/pageInfo HTTP/1.1 Host: www.mczbf.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Origin: https://www.justanswer.com Content-Length: 547 Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/png Content-Length: 68 Connection: keep-alive Date: Fri, 27 Jan 2023 08:26:27 GMT X-Request-ID: 4b0d9ebe-9e1c-11ed-a50e-7f59ff12bbab Server: nginx Access-Control-Allow-Origin: * Cache-Control: no-store X-Cache: Miss from cloudfront Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 1Nj8lBwuxTiQlUWxw0lB0S0_yK5N70XUlUcSSvEr2Y6B5iheWytrNA==`

	widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=48px&styleWidth=110px&theme=light&url=https%3A%2F%2Fwww.justanswer.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=49179707000064000503e452&widgetId=53aa8807dec7e10d38f59f32	54.230.111.50	204 No Content	0 B
URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=48px&styleWidth=110px&theme=light&url=https%3A%2F%2Fwww.justanswer.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=49179707000064000503e452&widgetId=53aa8807dec7e10d38f59f32 IP 54.230.111.50:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /stats/TrustboxImpression?locale=en-US&styleHeight=48px&styleWidth=110px&theme=light&url=https%3A%2F%2Fwww.justanswer.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=49179707000064000503e452&widgetId=53aa8807dec7e10d38f59f32 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/53aa8807dec7e10d38f59f32/index.html?templateId=53aa8807dec7e10d38f59f32&businessunitId=49179707000064000503e452 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content cache-control: no-store,no-cache date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache server: Kestrel strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: YmrkI61sLo_e19d-XltHLcIlJtvp641HCFdLxY_m179FIXcJPkIMWg== X-Firefox-Spdy: h2`

	q.quora.com/_/ad/ecc899b0bd9846558ae303f40bff74de/pixel?j=1&u=https%3A%2F%2Fwww.justanswer.com%2F&tag=ViewContent&ts=1674807986842	3.220.15.152	200 OK	43 B
URL HTTP/1.1 q.quora.com/_/ad/ecc899b0bd9846558ae303f40bff74de/pixel?j=1&u=https%3A%2F%2Fwww.justanswer.com%2F&tag=ViewContent&ts=1674807986842 IP 3.220.15.152:0 ASN #14618 AMAZON-AES File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash df3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 HTTP Headers `GET /_/ad/ecc899b0bd9846558ae303f40bff74de/pixel?j=1&u=https%3A%2F%2Fwww.justanswer.com%2F&tag=ViewContent&ts=1674807986842 HTTP/1.1 Host: q.quora.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 27 Jan 2023 08:26:27 GMT Server: nginx Strict-Transport-Security: max-age=63072000; includeSubDomains; preload X-Q-Stat: ,84dd60dcec566fb758a64be5c29a70e3,10.0.0.238,33680,91.90.42.154,,97589558381,1,1674807987.422,0.001,,.,0,0,0.000,0.000,-,0,0,197,165,82,10,34729,,,,,,-, Content-Length: 43 Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2e21811f62c077f45a93d7c3b543998d 3e890a73bb51d9dd1021d5339271aa40833ba258 c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10175 Expires: Fri, 27 Jan 2023 11:16:02 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2e21811f62c077f45a93d7c3b543998d 3e890a73bb51d9dd1021d5339271aa40833ba258 c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10175 Expires: Fri, 27 Jan 2023 11:16:02 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2e21811f62c077f45a93d7c3b543998d 3e890a73bb51d9dd1021d5339271aa40833ba258 c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10175 Expires: Fri, 27 Jan 2023 11:16:02 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2e21811f62c077f45a93d7c3b543998d 3e890a73bb51d9dd1021d5339271aa40833ba258 c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1" Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10175 Expires: Fri, 27 Jan 2023 11:16:02 GMT Date: Fri, 27 Jan 2023 08:26:27 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7538 bytes) Hash 131eb343c5abd61939457d69bd371348 ffb2035cf64fc83f01db5c6f26ffa264b6aac95b 8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7538 x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e3fobF-ZoAMFjjA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0 x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Thu, 26 Jan 2023 21:59:56 GMT age: 37591 etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12508 bytes) Hash bad60daf652c598a06510ff955137b69 235bf4642e726bb6a303fe1b69238e2e973414cb d655c5ac17274a30a89c31674e14dc9c1b6bc39bfff94db1c9ff0d8006bb673b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47dfbf8f-d762-4550-83d7-2992a8c8fe66.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12508 x-amzn-requestid: 68787c38-72fe-4d8a-9521-aeb9efa56b05 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fBYWyGIHoAMF-LQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ca075e-1ee9488d2dd0437728beac94;Sampled=0 x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:42 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 2RZzMCqjRpKbm-g_6vAq1YV4LQ5RAB9HrkKCQx_ah4C6PnAzHZpKCg== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Thu, 26 Jan 2023 18:49:04 GMT age: 49043 etag: "235bf4642e726bb6a303fe1b69238e2e973414cb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9056 bytes) Hash dc869235086902c4acc379733b6bfdb8 0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae e614e29b14e69209fd4b82a688290f7a3f541909833a6558cf480aca899bab6d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52fbb3f0-e394-4245-a542-f5d9aa7b93cc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9056 x-amzn-requestid: 81cf473d-8dc6-49e7-b012-d0b7dfaec7f8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fB4COHTlIAMFtRg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63ca3a0e-0848461c054db5c66fde9107;Sampled=0 x-amzn-remapped-date: Fri, 20 Jan 2023 06:51:58 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: fdefZSZfSJi1-C7ZTSahawckLN-To4P91H-n1cyPqw34f18VzTeHRg== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Thu, 26 Jan 2023 12:54:06 GMT age: 70341 etag: "0170f6aa6bd83ddeb60cf1cb65e9f0443d8d4bae" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5737 bytes) Hash 5e7158416f60576804ccff03307319fe a342f94625e913fa6b8d862a59979f1e3ad80dd1 5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5737 x-amzn-requestid: cc977ea9-c418-4a5a-a13b-c86e16bbe6ba x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fRGPFGL5oAMFiSg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d050c6-2d540cac5ca7d4e64cfdb8bc;Sampled=0 x-amzn-remapped-date: Tue, 24 Jan 2023 21:42:30 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: uZnA5gkRlZyqamh_n3992G9PlMJa4gJ-mjSOQEysII73dDKLXmeXsg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Thu, 26 Jan 2023 12:26:22 GMT age: 72005 etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	sima.justanswer.com/RequestCollector-1.4/RequestCollector	104.16.42.9	200 OK	0 B
URL HTTP/2 sima.justanswer.com/RequestCollector-1.4/RequestCollector IP 104.16.42.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /RequestCollector-1.4/RequestCollector HTTP/1.1 Host: sima.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.justanswer.com/ Content-Type: application/json Content-Length: 577 Origin: https://www.justanswer.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:27 GMT content-length: 0 access-control-allow-origin: https://www.justanswer.com access-control-allow-credentials: true cf-cache-status: DYNAMIC set-cookie: __cf_bm=oRAikbqEy.vbW0UEPXtCutSLMzuanNe7G9nL1XhiQMs-1674807987-0-AbrSUe/bWcVWMi2HmIg7Y7e498YpdL7d6A64U6X0efC1Oh/lYNt/LQ9So09KYKQuKrwbgyEa89SF9CUI8iU2+qU=; path=/; expires=Fri, 27-Jan-23 08:56:27 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 79001a7fd8852d9e-ARN alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.sectigo.com/	172.64.155.188	200 OK	953 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 953 B (953 bytes) Hash d34ee6532e1cd969fd7c5dca7e47fd5d 5c41594d1e31e05609b8eab54cc22aac5dddd3b4 81fe9efe76817ad67084c1051d2eca3843080dc0758a656a7384e3c87662dc3c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 27 Jan 2023 08:26:27 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Wed, 25 Jan 2023 18:44:40 GMT Expires: Wed, 01 Feb 2023 18:44:39 GMT Etag: "a603337c8171282e086679e609beb008fc8661f0" Cache-Control: max-age=468491,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb1 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 79001a809ab4b515-OSL`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg	34.120.237.76	200 OK	4.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.3 kB (4272 bytes) Hash 6e96f3ea585b5fa8ed6446ed16e2b4b2 f90c205f370a2426dffe3c21b24bfa551b385556 6967ba25887f87200fcb39a3e6f065fd27596b2ebcf0d33a2751c655d6e724f2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbccadbe9-ae35-4a03-bf17-9342e0629c81.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4272 x-amzn-requestid: e051c22b-c2ec-4e59-b29b-ba1464d8015b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fRz28G13oAMFeeQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d099c5-48b013ff34b9702a6d2fd560;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 02:53:57 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: X4SfAYS0JvW4sUNqSuBERNBwaI_xgKugxZ76_fsih_LSnImMC7Pnzg== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 03:37:14 GMT age: 85438 etag: "f90c205f370a2426dffe3c21b24bfa551b385556" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5669 bytes) Hash 869cdfba2637cc932ce387317a3c485e 51d87a5223d87c959bf27b2a825dce0a28f52ada 6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5669 x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fR1ZSH4fIAMFxeQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0 x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: uBZkutqH9dy9U8-_i3LISu9nYOtCTP8YtgxvgZVywkDx7bRzLjqUhw== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Fri, 27 Jan 2023 04:27:02 GMT age: 14365 etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	s.adroll.com/j/UJRQPYUAZNF7BMB7Z6PIEK/roundtrip.js	54.230.111.98	200 OK	21 kB
URL HTTP/1.1 s.adroll.com/j/UJRQPYUAZNF7BMB7Z6PIEK/roundtrip.js IP 54.230.111.98:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (1211) Size 21 kB (20873 bytes) Hash 26a450ab1f965868e04366ca990a3a50 713be445a3290f0e38c340c672eefb558e1cdfac 5022062624a91faa7ace58b0251b06313a1d8640bb5593d03de7bd0261d9a52b HTTP Headers `GET /j/UJRQPYUAZNF7BMB7Z6PIEK/roundtrip.js HTTP/1.1 Host: s.adroll.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Tue, 24 Jan 2023 11:34:29 GMT X-Amz-Server-Side-Encryption: AES256 X-Amz-Version-Id: IGGa88hu1IujMIdFkzlJDzkDvsVwmAPT Server: AmazonS3 Content-Encoding: gzip Date: Fri, 27 Jan 2023 07:55:24 GMT Cache-Control: max-age=3600, must-revalidate Etag: W/"642593cc1a432ae41cfb0a11103c3d99" Vary: Accept-Encoding Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) Age: 1875 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: false Access-Control-Max-Age: 600 Access-Control-Allow-Methods: GET Access-Control-Allow-Headers: * X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ggcwM1SE5e5xsAa537rVZsdFyOenvthyM9SIIv_iaJLN3cYZPwbGkg==

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	237 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 237 kB (237356 bytes) Hash c5eca649c64db91713674cc09c7f357e b01f15227a906fe64cf354a5293a0f23dc5b2a02 3f2cf66f6fe7716f5904c47b14f3c142c3bb51cbd3f76b85132634e09cebab85 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google-analytics.com/analytics.js	142.250.74.110	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.110:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Fri, 27 Jan 2023 07:46:59 GMT expires: Fri, 27 Jan 2023 09:46:59 GMT cache-control: public, max-age=7200 age: 2368 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 37dce3efd55b962e0d26fdc3a1033e22 6453d72e70e36bd37ca1744d85ec9ca549629cf2 0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4748 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Last-Modified: Fri, 27 Jan 2023 07:07:19 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3 b865da423aa26e774270b8e3942b6fbe76793133 2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bat.bing.com/bat.js	204.79.197.200	200 OK	12 kB
URL HTTP/2 bat.bing.com/bat.js IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators Size 12 kB (11552 bytes) Hash 4f378a725368a42971cd69e29f75db89 2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e 6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078 HTTP Headers `GET /bat.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK cache-control: private,max-age=1800 content-length: 11552 content-type: application/javascript content-encoding: gzip last-modified: Mon, 23 Jan 2023 19:59:24 GMT accept-ranges: bytes etag: "076bc30652fd91:0" vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: DDEEFFEEB2FB441FB353A6206819B300 Ref B: OSL30EDGE0312 Ref C: 2023-01-27T08:26:27Z date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1&z=1526600487	142.250.74.67	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1&z=1526600487 IP 142.250.74.67:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1&z=1526600487 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	connect.facebook.net/en_US/fbevents.js	157.240.205.11	200 OK	28 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 157.240.205.11:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 28 kB (27859 bytes) Hash 9ba458c0d3060a442f3094daf58ec05d fc35d487d0dd81e6855f1b02367b755609d9608d 17087257ea25c2232c025f338b9f3153d35c3d953cb382b7b6e01728a643bc0b HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: VkAFyEq9zn23uE+tRiL+SbkEpseJ79Nr5Ym1QoJ/EeccyzU+pZUIYBLtrYORMyViV5mZnCSVOyt5AsBe4S+6HQ== content-length: 27859 x-fb-trip-id: 1679558926 date: Fri, 27 Jan 2023 08:26:27 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	googleads.g.doubleclick.net/pagead/viewthroughconversion/1067616637/?random=1674807987066&cv=11&fst=1674807987066&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&auid=1968850749.1674807987&data=event%3Dgtag.config&rfmt=3&fmt=4	216.58.207.194	200 OK	918 B
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1067616637/?random=1674807987066&cv=11&fst=1674807987066&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&auid=1968850749.1674807987&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 216.58.207.194:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1955), with no line terminators Size 918 B (918 bytes) Hash aa317fcc5ff0b716adfcd200be8b83fa 09297b5932f7c046ece2c9c8bf2538df3ba3365c d4b1cc7bb9714262837fb9ca5880edcd458940d06f710e9185bd0bf7d42c5c64 HTTP Headers GET /pagead/viewthroughconversion/1067616637/?random=1674807987066&cv=11&fst=1674807987066&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&auid=1968850749.1674807987&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 918 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 08:41:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	s.adroll.com/j/exp/UJRQPYUAZNF7BMB7Z6PIEK/index.js	54.230.111.98	200 OK	42 B
URL HTTP/1.1 s.adroll.com/j/exp/UJRQPYUAZNF7BMB7Z6PIEK/index.js IP 54.230.111.98:0 ASN #16509 AMAZON-02 File type ASCII text, with no line terminators Size 42 B (42 bytes) Hash 2ff5e20519778d0385c77e7f6e12de10 8e8d022d7675d4c0227b63c3fd2c75d09f52068b f51a75f2ede4c5e0457f05d60bfa39290b59348a71cdae4cc701236e6f552ad9 HTTP Headers `GET /j/exp/UJRQPYUAZNF7BMB7Z6PIEK/index.js HTTP/1.1 Host: s.adroll.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: text/javascript Content-Length: 42 Connection: keep-alive Last-Modified: Wed, 04 Jan 2023 20:25:03 GMT X-Amz-Server-Side-Encryption: AES256 X-Amz-Version-Id: JXN_EPAH_8bWbI8aF3mzWMLrRHZVKUfZ Accept-Ranges: bytes Server: AmazonS3 Date: Fri, 27 Jan 2023 08:26:10 GMT Cache-Control: max-age=300, must-revalidate Etag: "2ff5e20519778d0385c77e7f6e12de10" Vary: Accept-Encoding Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) Age: 57 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: false Access-Control-Max-Age: 600 Access-Control-Allow-Methods: GET Access-Control-Allow-Headers: * X-Cache: Hit from cloudfront X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: BfL5BKuZ6NjdRDGC_yf1z71PiYbLhb1CrhfNn0jXOKIvp2AoWnyRRg==

	ocsp.digicert.com/	93.184.220.29	200 OK	545 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 545 B (545 bytes) Hash cc0b67469fad9a4634a978d89f212d14 56b4349f73055bb5155f0663a0dbcabfbba327d9 ebcee11ac6f6c789814dfd85b43a9c6642c5a68090889df952b095530d03e471 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4748 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Last-Modified: Fri, 27 Jan 2023 07:07:19 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c8a0d6bc80301700d6fb1d520beb8b49 f33a1a1e491fcd6ca31360b28b092457a2d48f23 ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=1&ipr=y	142.250.74.67	200 OK	42 B
URL HTTP/2 www.google.no/pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=1&ipr=y IP 142.250.74.67:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3 b865da423aa26e774270b8e3942b6fbe76793133 2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bat.bing.com/action/0?ti=17450364&Ver=2&mid=28fac829-2c8c-4c3a-bafc-894822576a39&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=355520	204.79.197.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/action/0?ti=17450364&Ver=2&mid=28fac829-2c8c-4c3a-bafc-894822576a39&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=355520 IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=17450364&Ver=2&mid=28fac829-2c8c-4c3a-bafc-894822576a39&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=355520 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=11B1393A1DD06B640D3E2B9C1C876AC9; domain=.bing.com; expires=Wed, 21-Feb-2024 08:26:27 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: BEAA16D4478E4681A692822623B2A133 Ref B: OSL30EDGE0312 Ref C: 2023-01-27T08:26:27Z date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2

	connect.facebook.net/signals/config/581392048641826?v=2.9.94&r=stable	157.240.205.11	200 OK	110 kB
URL HTTP/2 connect.facebook.net/signals/config/581392048641826?v=2.9.94&r=stable IP 157.240.205.11:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64471) Size 110 kB (110317 bytes) Hash dde89cb46e27ad79259010b5fb1b5e22 0269e35e4940f0a9e24547d268c13be8de4d81c1 04daba48abb26bdc36d300f58a8fc3a3aeb1a233d4b6bd70f3bde949802271ea HTTP Headers `GET /signals/config/581392048641826?v=2.9.94&r=stable HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY origin-agent-cluster: ?0 strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: 7WHkrCSIS8JgNtNd40DXH6QJauWWILhLQEVLF3nXbs0yCDA6u2ohy49Vxz1joF0Ej7kdVumZzax0aJePKLuR+A== priority: u=3,i content-length: 110317 x-fb-trip-id: 1679558926 date: Fri, 27 Jan 2023 08:26:27 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 3ebf9d7211aba4c70b84fb470a61b414 28fe29a24e47d6abda88eeeb5e22eddda03c7fca a8276e099d9d8452b65b70d161a459fae25afb37cea7eff9cc5563b7de972acc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1f4c8e17a668764556ab61c7c31e53c7 ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2 8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bat.bing.com/action/0?ti=4018669&Ver=2&mid=f515c6a0-66ea-4cbd-a34c-35d3e466272d&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=151152	204.79.197.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/action/0?ti=4018669&Ver=2&mid=f515c6a0-66ea-4cbd-a34c-35d3e466272d&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=151152 IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=4018669&Ver=2&mid=f515c6a0-66ea-4cbd-a34c-35d3e466272d&sid=4b22a2209e1c11ed88c0f3943d30fb5a&vid=4b228bc09e1c11ed904c6dd2048130ae&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&kw=Ask%20an%20Expert,%20Ask%20Questions%20Get%20Answers,%20Ask%20A%20Question%20Online,%20Ask%20Questions%20Online,%20Question%20And%20Answer,%20Ask%20A%20Question,%20Ask%20An%20Expert,%20Ask%20Questions,%20Get%20Answers,%20Ask%20Experts,%20JustAnswer,%20JustAnswer&p=https%3A%2F%2Fwww.justanswer.com%2F&r=&lt=1910&evt=pageLoad&sv=1&rn=151152 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=04DBD2E0203D62F63F35C046216A6376; domain=.bing.com; expires=Wed, 21-Feb-2024 08:26:27 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: DF6316EC8D70405DB7A9314004CDD83F Ref B: OSL30EDGE0312 Ref C: 2023-01-27T08:26:27Z date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2

	bat.bing.com/p/action/17450364.js	204.79.197.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/p/action/17450364.js IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /p/action/17450364.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content cache-control: private,max-age=1800 strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: EACD68F254C84EED9B30177D341C04E0 Ref B: OSL30EDGE0312 Ref C: 2023-01-27T08:26:27Z date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2`

	stats.g.doubleclick.net/g/collect?v=2&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1	209.85.233.156	204 No Content	0 B
URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1 IP 209.85.233.156:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /g/collect?v=2&tid=G-YVR58N9NM0&cid=1407534881.1674807987&gtm=2oe1p0&aip=1 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.justanswer.com Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` `HTTP/2 204 No Content access-control-allow-origin: https://www.justanswer.com date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.google.com/pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=0&ipr=y	142.250.74.132	200 OK	42 B
URL HTTP/2 www.google.com/pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=0&ipr=y IP 142.250.74.132:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/1067616637/?random=1674807987066&cv=11&fst=1674806400000&bg=ffffff&guid=ON&async=1&gtm=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.justanswer.com%2F&tiba=Ask%20an%20Expert%20%26%20Get%20Answers%20to%20Your%20Questions%20-%20ASAP&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1585408978&rmt_tld=0&ipr=y HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2229500-1&cid=1407534881.1674807987&jid=130316277&gjid=250722764&_gid=516325524.1674807988&_u=aCDAgAILAAAAAEgdI~&z=32935157	209.85.233.156	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2229500-1&cid=1407534881.1674807987&jid=130316277&gjid=250722764&_gid=516325524.1674807988&_u=aCDAgAILAAAAAEgdI~&z=32935157 IP 209.85.233.156:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2229500-1&cid=1407534881.1674807987&jid=130316277&gjid=250722764&_gid=516325524.1674807988&_u=aCDAgAILAAAAAEgdI~&z=32935157 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.justanswer.com Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.justanswer.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Fri, 27 Jan 2023 08:26:27 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	bat.bing.com/p/action/4018669.js	204.79.197.200	204 No Content	0 B
URL HTTP/2 bat.bing.com/p/action/4018669.js IP 204.79.197.200:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /p/action/4018669.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 204 No Content cache-control: private,max-age=1800 strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 7B49007553DF4481BA6F065072EBE873 Ref B: OSL30EDGE0312 Ref C: 2023-01-27T08:26:27Z date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 97ccaa279f6ade845b71b57615d40388 5186089108dca0136feab418da66a9e027c7e427 515128c713e98c9a0546c35d9a1e0719057136509b5b2312e4af56a9acc80ec2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1f4c8e17a668764556ab61c7c31e53c7 ada5ee5917ab9faf3d55a6da1d5bfc3077e42de2 8ac89ed8b6650ea140c2eac1b1dd61f8498e97e278e6bd6debfd803a588e2468 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Jan 2023 08:26:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.facebook.com/tr/?id=581392048641826&ev=PageView&dl=https%3A%2F%2Fwww.justanswer.com%2F&rl=&if=false&ts=1674807987728&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674807987727.552704387&it=1674807987557&coo=false&tm=1&rqm=GET	31.13.72.36	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id=581392048641826&ev=PageView&dl=https%3A%2F%2Fwww.justanswer.com%2F&rl=&if=false&ts=1674807987728&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674807987727.552704387&it=1674807987557&coo=false&tm=1&rqm=GET IP 31.13.72.36:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tr/?id=581392048641826&ev=PageView&dl=https%3A%2F%2Fwww.justanswer.com%2F&rl=&if=false&ts=1674807987728&sw=1280&sh=1024&v=2.9.94&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1674807987727.552704387&it=1674807987557&coo=false&tm=1&rqm=GET HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400 date: Fri, 27 Jan 2023 08:26:27 GMT X-Firefox-Spdy: h2`

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 4e4a5f1a50dfe8318ec70ebe2c532e59 11e3083443c307990b9c16f8dffebc7d9d187fc6 58bc077e2f5db019454a8718af3c3f4632282db2f842c2e18517a473047a3bcb HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=138270 Date: Fri, 27 Jan 2023 08:26:28 GMT Etag: "63d2ff19-1d7" Expires: Sat, 28 Jan 2023 22:50:58 GMT Last-Modified: Thu, 26 Jan 2023 22:30:49 GMT Server: ECS (nyb/1D1B) X-Cache: Miss from cloudfront Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: wBktkGN-w9OLQkObL_vDTByk64Dn-nCitmllWqC_pEcDB6EoV7JGUA== Age: 1209

	d.adroll.com/consent/check/UJRQPYUAZNF7BMB7Z6PIEK?pv=16220169289.89891&arrfrr=https%3A%2F%2Fwww.justanswer.com%2F&_s=137eb5b0be6fbbaa16fc66d3f21bc02c&_b=2	54.74.252.81	200 OK	462 B
URL HTTP/2 d.adroll.com/consent/check/UJRQPYUAZNF7BMB7Z6PIEK?pv=16220169289.89891&arrfrr=https%3A%2F%2Fwww.justanswer.com%2F&_s=137eb5b0be6fbbaa16fc66d3f21bc02c&_b=2 IP 54.74.252.81:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (462), with no line terminators Size 462 B (462 bytes) Hash f1ea6806bd568a76f90743c9f86bf4dc 1434f444859671823af93466ca352a9c5bdb3edc 01226f5cec5edccdd97671ef8f3ad5028c7e1842ae1e3440108e963d12c24f6a HTTP Headers `GET /consent/check/UJRQPYUAZNF7BMB7Z6PIEK?pv=16220169289.89891&arrfrr=https%3A%2F%2Fwww.justanswer.com%2F&_s=137eb5b0be6fbbaa16fc66d3f21bc02c&_b=2 HTTP/1.1 Host: d.adroll.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.justanswer.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:28 GMT content-type: application/javascript content-length: 462 server: nginx/1.22.0 X-Firefox-Spdy: h2`

	www.justanswer.com/	104.16.43.9	200 OK	0 B
URL HTTP/2 www.justanswer.com/ IP 104.16.43.9:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: www.justanswer.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Fri, 27 Jan 2023 08:26:26 GMT content-type: text/html; charset=utf-8 cf-ray: 79001a78dd1f09b5-ARN access-control-allow-origin: * age: 119661 cache-control: public, max-age=86400 expires: Sat, 28 Jan 2023 08:26:26 GMT last-modified: Wed, 25 Jan 2023 23:12:05 GMT vary: Accept-Encoding via: Jate (1-master.build-7728.sha-54e24656b) cf-cache-status: HIT content-security-policy: default-src 'self' http://.justanswer.com https://.justanswer.com http://.justanswer.local https://.justanswer.local www.google.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' http://.justanswer.com https://.justanswer.com http://.justanswer.local https://.justanswer.local .criteo.net .criteo.com .google.com .google-analytics.com www.googletagmanager.com www.googleadservices.com .googleadservices.net .googleapis.com cdnjs.cloudflare.com connect.facebook.net a.quora.com bat.bing.com tracker.marinsm.com www.sjwoe.com .mczbf.com .hadronid.net .ad.gt d.impactradius-event.com cdn.mouseflow.com www.redditstatic.com seal.digicert.com .doubleclick.net .adroll.com components.pearl.com s3.amazonaws.com static.criteo.net code.jquery.com .dmca.com .trustpilot.com; style-src 'self' 'unsafe-inline' http://.justanswer.com https://.justanswer.com http://.justanswer.local https://.justanswer.local .googleapis.com .google.com; img-src 'self' data: https: http://.justanswer.com http://.justanswer.local bat.bing.com q.quora.com tracker.marinsm.com logs-01.loggly.com cx.atdmt.com seal.digicert.com .google.com .doubleclick.net .googleadservices.net www.google-analytics.com .gstatic.com; font-src data: 'self' http://.justanswer.com https://.justanswer.com http://.justanswer.local https://.justanswer.local http://fonts.gstatic.com https://fonts.gstatic.com fonts.googleapis.com; connect-src 'self' https: http://.justanswer.com http://.justanswer.local www.google-analytics.com .google.com www.googletagmanager.com stats.g.doubleclick.net bat.bing.com n2.mouseflow.com www.facebook.com justanswer.9pctbx.net code.jquery.com cdnjs.cloudflare.com ajax.googleapis.com; frame-src http://.justanswer.com https://.justanswer.com http://.justanswer.local https://.justanswer.local www.facebook.com .criteo.com .criteo.net www.googletagmanager.com bat.bing.com www.google-analytics.com *.doubleclick.net justanswer.9pctbx.net widget.trustpilot.com; report-uri https://secure.justanswer.com/processes/csp-violation.ashx handle-fetch-duration: 45ms referrer-policy: no-referrer-when-downgrade rules-duration: 11ms selected-route: Home_Page_US_default x-frame-options: SAMEORIGIN x-powered-by: Express x-rev2-worker: rule-engine-prod-com-master.build-672.sha-54384f8 set-cookie: __cf_bm=2dC7jjaauG1hkJ_uAG1pA0xT4zHR_DMoP7Gax8k7g1Y-1674807986-0-AZRZY8pr6b+eWq01kCYYuMtMi0scAwv7BRgrstezrXAzEljaQ09N04VuHmzQutW9OjllmT/NnfgPwgloizkYiZY=; path=/; expires=Fri, 27-Jan-23 08:56:26 GMT; domain=.justanswer.com; HttpOnly; Secure JAAnonymousGUID=5be8f93e-5ef3-471c-8980-15c08747d539;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:26 GMT JAAnonymousVisitKey=652f4dad-f5dc-4959-c4d1-f2c31486cd69;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:26 GMT JAAnonymousVisit=1674807986;domain=.justanswer.com;path=/;expires=Sat, 27 Jan 2024 08:26:26 GMT re.v2.ja-com={};domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:26 GMT prior_visit=1674807986;domain=.justanswer.com;path=/;expires=Mon, 27 Feb 2023 08:26:26 GMT cf_currency=NOK;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:26 GMT cf_geo=NO_;domain=.justanswer.com;path=/;expires=Sat, 28 Jan 2023 08:26:26 GMT cf_cache_status=HIT;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:26 GMT cf_ray=79001a79a4d509b5-ARN;domain=.justanswer.com;path=/;expires=Fri, 27 Jan 2023 09:26:26 GMT __cf_bm=YjlsEd8890QyZIx.QqwfcN9WbzO93AQZ2MWJvCaSoWw-1674807986-0-AUYHp8k3cT5YVV2DK1LjEg9TzV/f5xyYkxmBNdet5XNiNpw2N4CUOGnV94RH2iWxAcswFDshhNoLMFISRoSs/BI=; path=/; expires=Fri, 27-Jan-23 08:56:26 GMT; domain=.justanswer.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML