GET /land/225/ HTTP/1.1
Host: app2.mackeeperaff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 3.225.159.165
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Server: awselb/2.0
Date: Thu, 20 Oct 2022 14:51:27 GMT
Content-Length: 134
Connection: keep-alive
Location: https://app2.mackeeperaff.com:443/land/225/
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 20 Oct 2022 13:51:50 GMT
Expires: Thu, 20 Oct 2022 14:44:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Jg36uBkqTc_ORhLZzAY3qe9_5qZQwr0pCos_YaarhifZaoJgrluYZA==
Age: 3577
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "1E42A2CD7E7EF655D17DEA6423DFF85D3F57111D9BD08D2F829535AA462EB11C"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8767
Expires: Thu, 20 Oct 2022 17:17:34 GMT
Date: Thu, 20 Oct 2022 14:51:27 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "22DFBEC34834914FFD13A3BEE717DBF695450C05A44949BB691E39D254E39665"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5630
Expires: Thu, 20 Oct 2022 16:25:18 GMT
Date: Thu, 20 Oct 2022 14:51:28 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: mNwOMac4j0L8fEEbtl7BKY0pHBItsqnE5BJHJhnVvMSneY7j5aSjzb9JRq/0sJexVaXuqlV9q+8=
x-amz-request-id: 3A8HFZQCBG2Z0ASB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 20 Oct 2022 14:36:47 GMT
age: 881
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 20 Oct 2022 14:51:28 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 20 Oct 2022 14:43:40 GMT
Expires: Thu, 20 Oct 2022 15:29:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UMHRC67cUeM5DLHgpLyppKKC9i7T9YZOfj7WSf0BQNK2v_blZJGQ9Q==
Age: 468
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99897
Date: Thu, 20 Oct 2022 14:51:28 GMT
Etag: "635043a9-1d7"
Expires: Fri, 21 Oct 2022 18:36:25 GMT
Last-Modified: Wed, 19 Oct 2022 18:36:25 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yvlPHNoMZhXrY_ejff2yzWswx_PpgSGmbMGI30LYxyLSjhCPmNbb7g==
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6577
Cache-Control: max-age=155095
Date: Thu, 20 Oct 2022 14:51:28 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 09:56:23 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3NSgal8xCBUKqgK1vChJJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
52.38.146.2
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t4FK9cR9cbfn7jKKNn5L0t/tkqE=
|
GET /mk-land/dist/svg/landings/225/clean_two.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 431
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:02 GMT
etag: "f0f6b52bce4737187d5986d65c2b9a11"
cache-control: public, max-age=604800
x-amz-version-id: LRgYiVhEK3fItgvPk6mKGbDsgX8pnLBe
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lSGA_4P0oCIG-fqQ6AyZ78vaXhu-2gDykaIee6VGbp9ERV8hy7cH-g==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/soft_two.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 416
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:06 GMT
etag: "9cab428314b3d6d14b27b1c135719c23"
cache-control: public, max-age=604800
x-amz-version-id: AzD9wwbrIkCKyEsG_bLx1P0QngZ10lMa
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OVKyFz37hBvndvusXCI0a_P7-ewFjexxr1Dxvq_U4Ye6jxJdXiJkAw==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/clean_three.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 583
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:01 GMT
etag: "64036bea66db20718ae3285e9ca951cd"
cache-control: public, max-age=604800
x-amz-version-id: aO4a9w_YfpO.ZI6ANxHSeJI1.NSl2EjU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S2pRz4qmcZjIrMaTHXqab8tO8DitBLinQXMdqGRVMpUb2r2XO6xurw==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/per_one.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 539
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:03 GMT
etag: "97ea212e1de4543eabca9fd8ddd404de"
cache-control: public, max-age=604800
x-amz-version-id: GWAKBWCSqT_7gPWOz2RGnf88tL37V5HF
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vqohm26VH2nrWN2DPGpzg24gcudHk8sz5xi4una-TRnDnH0UjZE13A==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/per_two.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 573
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:03 GMT
etag: "f7c01b4f32eceacb4bf0a84f301505c6"
cache-control: public, max-age=604800
x-amz-version-id: Hd7XMs0T4oJtO_vQvm6W.PePMJuuAU9e
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: d8FVuIqqmzq7OH4RjbTkBPeKUgk89otKO43cxNvBGrFViKE9zNQW6w==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/per_three.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 720
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:01 GMT
etag: "6827d895741abaebbe73a96f65d28344"
cache-control: public, max-age=604800
x-amz-version-id: JgEm4VjBwayEO1JgrCFhxLPUqy7wD_Nx
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vf1pyNNv53QznITvEq17PO2WUvm-IpaGRht3fyxeAbrFjMNeB-b-Xw==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/ant_one.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 432
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:02 GMT
etag: "48ee3a2cc5a7ac742bd440d7c5497fa3"
cache-control: public, max-age=604800
x-amz-version-id: 6iupm1tUoslfH5kSfuK18ox_5nA1IMD1
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eDFafDyJMGMCYrvfr_DUm91O97VC_bIA7AnnjmeZ35iHRTugujdZew==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/security-two.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 442
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:05 GMT
etag: "1dc4abe3aa5d009df49fbf517f481ccc"
cache-control: public, max-age=604800
x-amz-version-id: P7COEuM1ReN_35TeAX6nirZtWmDpnezY
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LqBkd1OYusESuErHB8d9M9vsE_1x9SBf0R_x4vr9mkRejHQXCsUgCQ==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/soft_four.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 399
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:04 GMT
etag: "bc4849c8d35e6a210935e7b9fdda0196"
cache-control: public, max-age=604800
x-amz-version-id: 4zPAwPwwjZUa3v8MqKY9C58_Duocufi7
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1IsJcA_5XEOCWcPHmNdtsdfSwHXYdWpx0Yq5cbxmHrmInpImi5LsRw==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/components/btn-arrow.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 412
date: Wed, 19 Oct 2022 08:49:38 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 18 Feb 2021 12:38:48 GMT
etag: "2bb20d31732674b19f39721677ee98b0"
cache-control: public, max-age=604800
x-amz-version-id: nukWLapdOnZ6K4hroAQrBv4GKBUk7Zxa
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MpcFoEcZ8pWr6102upoAPeVhF8YRGA9bqJeh0i7fhTTJ7Ypktfxl9A==
age: 108112
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/prive_three.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 717
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:07 GMT
etag: "a5c782d385dc0cbbd4afa608cdd1d8f3"
cache-control: public, max-age=604800
x-amz-version-id: bZmAWXuf1_16mNzH9W77urKoZ22SJAkL
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XZ-JvWpgdMH4syqPY3i_c6LhFgDCvWDgO2nOSpffI8ZJ0Xg8Wap3Mg==
age: 106278
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/privacy-two.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 987
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:06 GMT
etag: "102a03f6293726facccabba18c0e9455"
cache-control: public, max-age=604800
x-amz-version-id: huCh93vXiRgrU7OH1cjV32VI19B1GuJD
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TYI3LepiKnMbxB-_ItvZ_RhChGElAOTEi42_PvfU_K3LNlcsoyh_6g==
age: 106278
X-Firefox-Spdy: h2
|
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.80
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 20 Oct 2022 01:34:28 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TcUdQw3pGbgOxRcui_sszviKKKDcECOrN2mL-mGPjxASiQ7KUnxYhw==
age: 47822
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/clean_one.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 486
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:01 GMT
etag: "4ef86b2fbcdb943033b3c85e020122da"
cache-control: public, max-age=604800
x-amz-version-id: YH32xEF_5ib9lzid_dJ7i9GT9Dd5L9LT
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Or6RG1frj33UMF8xOFPg_b10Tyc1kLWj4lOfyxk-W85SGrqg0vvhDQ==
age: 106278
X-Firefox-Spdy: h2
|
GET /5.5.0/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
151.101.66.217
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Fri, 11 Nov 2022 05:27:37 GMT
last-modified: Fri, 05 Jul 2019 11:17:04 GMT
etag: W/"39339cf627bc67e34d4c623bea4c0b4a"
x-guploader-response-body-transformations: gunzipped
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 20 Oct 2022 14:51:29 GMT
age: 29669034
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 51570
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /mk-land/dist/images/landings/225/header.webp HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/mk-land/dist/225/style.webp.min.css?3a6665f1aefdfa6e7708
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 131024
date: Wed, 19 Oct 2022 09:22:44 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:25 GMT
etag: "4b4b385f28364f3bd51926ab2bb81541"
cache-control: public, max-age=604800
x-amz-version-id: VJAy19mh_ft.NcFkncwio32zsEqiPrFC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xZwNwL04FZapsmiYaivezSk8_p2XQi7zF4oITurJhdUk9WsPaGHvVw==
age: 106127
X-Firefox-Spdy: h2
|
GET /mk-land/dist/images/landings/225/header-bg.webp HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/mk-land/dist/225/style.webp.min.css?3a6665f1aefdfa6e7708
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 74138
date: Wed, 19 Oct 2022 09:22:44 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:28 GMT
etag: "137aa51469fe2a02e21b1aaae3c6ccaa"
cache-control: public, max-age=604800
x-amz-version-id: 4vvl8O.5lMjAsDg4AwGt3hY9oo1LATBH
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4l4hZQT8h5WI-CyBqeDb1oNrZoA5Gt8z4-bE4o9aKWT36z_HwgaAuw==
age: 106127
X-Firefox-Spdy: h2
|
GET /mk-land/dist/images/landings/225/memory.webp HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/mk-land/dist/225/style.webp.min.css?3a6665f1aefdfa6e7708
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 1420
date: Wed, 19 Oct 2022 09:22:44 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:26 GMT
etag: "e24e191c026b00c1d7a106572ec478ed"
cache-control: public, max-age=604800
x-amz-version-id: bUSSObvLnb7DQVXnLsaj5d1FlWuhJ.L2
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EJt0pjSGgV7kXcV7Kf8fH7K8x4-Jj62d8AqWoInHiJ2Dlr3QdeBVmw==
age: 106127
X-Firefox-Spdy: h2
|
GET /css?family=Source+Sans+Pro:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 20 Oct 2022 14:51:29 GMT
date: Thu, 20 Oct 2022 14:51:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /css?family=Roboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 20 Oct 2022 14:51:29 GMT
date: Thu, 20 Oct 2022 14:51:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /mk-land/dist/images/landings/225/mac.webp HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/mk-land/dist/225/style.webp.min.css?3a6665f1aefdfa6e7708
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 29518
date: Wed, 19 Oct 2022 09:22:46 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:27 GMT
etag: "588156972ffbc510a38822a08c5474cb"
cache-control: public, max-age=604800
x-amz-version-id: QifUAQLavVRq8JpREIHRD9Oj9m5x59jE
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UIkX1CYO2mqt3p9XXuXcVJFI78T-hQqXSvrndXMMOHU64_YbIxkiZA==
age: 106125
X-Firefox-Spdy: h2
|
GET /gtm.js?id=GTM-PVNC4DL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 20 Oct 2022 14:51:30 GMT
expires: Thu, 20 Oct 2022 14:51:30 GMT
cache-control: private, max-age=900
last-modified: Thu, 20 Oct 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94556
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /mk-land/dist/fonts/MarkOT-Bold.otf HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: font/ttf
date: Wed, 19 Oct 2022 08:54:33 GMT
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-methods: GET
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Fri, 11 Sep 2020 13:01:12 GMT
etag: W/"336e38c18c3ac1666fa496c919b08eca"
cache-control: public, max-age=604800
x-amz-version-id: _SyAJ1U0XNp0EgWFZoSm7jR1ZmFIsGhh
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TRX3Lwqq74XWkvzdx1yWAAfK0ighiqh65drcgsk77FqBSTZ6f3bxeA==
age: 107818
X-Firefox-Spdy: h2
|
GET /trustboxes/539ad60defb9600b94d7df2c/index.html?templateId=539ad60defb9600b94d7df2c&businessunitId=4dbb14ee00006400050fa293 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
search
143.204.55.80
HTTP/2 200 OK
content-type: text/html
content-length: 3697
last-modified: Tue, 04 Oct 2022 10:34:05 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 20 Oct 2022 09:40:14 GMT
cache-control: max-age=86400
etag: "83355578cdf883e1c6aef6f07b55893f"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GZ4hNVBhm7ohQ7Swe2UMhMqRTx34dpe22hQpodypcPa1sGeX_1ZpkA==
age: 22393
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Thu, 20 Oct 2022 16:20:02 GMT
Date: Thu, 20 Oct 2022 14:51:30 GMT
Connection: keep-alive
|
GET /trustboxes/5419b637fa0340045cd0c936/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b637fa0340045cd0c936/index.html?templateId=5419b637fa0340045cd0c936&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 17075
last-modified: Tue, 04 Oct 2022 10:33:51 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 20 Oct 2022 05:31:19 GMT
cache-control: max-age=86400
etag: "8efe0f2f2944e9baaa88fd0174e1b459"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F_Xtt9Xmg1X8ld9Z9sTrVWthPqzJXBQaqXom1l3GjY-Zy8keymWAsQ==
age: 33612
X-Firefox-Spdy: h2
|
GET /trustboxes/539ad60defb9600b94d7df2c/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/539ad60defb9600b94d7df2c/index.html?templateId=539ad60defb9600b94d7df2c&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 29606
last-modified: Tue, 04 Oct 2022 10:34:08 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Wed, 19 Oct 2022 19:35:56 GMT
cache-control: max-age=86400
etag: "bc5c8622de6c884abb3d021c6468b0dc"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cLr2F-UeUcxrZPBE8ZA0C3CLj_eEHAiTUggHm8au6-tuWojnQdFCXg==
age: 69335
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Thu, 20 Oct 2022 16:20:02 GMT
Date: Thu, 20 Oct 2022 14:51:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Thu, 20 Oct 2022 16:20:02 GMT
Date: Thu, 20 Oct 2022 14:51:30 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5312
Expires: Thu, 20 Oct 2022 16:20:02 GMT
Date: Thu, 20 Oct 2022 14:51:30 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1a95f4f-d066-4cb4-bb6a-392f3ed5c229.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 13101
x-amzn-requestid: e10df8ba-d8f2-44c8-ad0f-bbda32020e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRYBYF6noAMFthg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d3b-56538b97541830784f01f61f;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9R7vli3BwVLfleTf2jeZc5YNDMDxM024T7nyXcIpE2-o8Ddff57Jmg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:44:56 GMT
age: 61594
etag: "e008a1663c29616e83dccba105d7f6e2dbbb37dc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5d17f5-6084-45a5-9677-8ae8646d6ee1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9607
x-amzn-requestid: 590b20a6-039c-4c25-a61a-5f579c5b31f2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRZj6HZ7oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506fb2-04b740c442ae735347b4e2c3;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bL5fVog2SuW8ZNt9a0ECc8jwcAELUBVo63LXPovdnIRxCRnsMWVvvQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:46:27 GMT
age: 61503
etag: "6b15c7d7abb9ff1cc040853401ad5a39f81c19a4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1c50c7d-8321-4dac-aa20-04a81680db07.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10554
x-amzn-requestid: 343fc462-3654-48cb-bb4f-0d0d54c07b58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRX9REoMoAMF21g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d21-152a7b145b9fcb0e0a97db57;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4b3RT-THlt6W7NHL9Tu35gWrOeJ1aNALztrgXSkSwdT-14ccmz7gtg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:49:35 GMT
age: 61315
etag: "a8ba1a075a9c5501d043b9b14c45ed6bcd684e68"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F439223ef-e2fa-42fc-93f2-f5f60c5c8c47.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10453
x-amzn-requestid: f9476efc-26f7-4b71-acb9-d6a07e5857c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRX9XEProAMFS_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506d22-5f3f86da2e32b84c3911a69a;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:33:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J3tOE-6TDdWgQvo4mUNrN0JJINKLZqy5lS__rR6tRyHr6uCJRyWp6g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:44:48 GMT
age: 61602
etag: "88ef1b5e5c76c76281f94d5bb21d47876431a26f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6da0eaa5-24ec-42bb-8269-d235104e844f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9623
x-amzn-requestid: b3d5bd8d-111b-4d50-9720-71f72c62f860
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7Q8oFLRIAMFrEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347951d-613e5e810f420e4c0ba3e6f6;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 04:33:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OA9iHADyiam26eo88jYDECifkqeBaTjsuoeHD2YOy0aZJZEGhG-xow==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 13:19:23 GMT
age: 5527
etag: "ce0f78803a81b1c6b3067c78b75bc6f1d5a7f7c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /trustbox-data/5419b637fa0340045cd0c936?businessUnitId=4dbb14ee00006400050fa293&locale=en-US HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b637fa0340045cd0c936/index.html?templateId=5419b637fa0340045cd0c936&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 431
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
date: Thu, 20 Oct 2022 14:50:21 GMT
cache-control: public,max-age=1800
etag: "973f21bc574ceb69fd1799aa3712db8e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d4_MOrlxzl7yvqDDg1yYVSK-6aoNpJuIhyl5wBmdoEs6zMOXevdEnA==
age: 953
X-Firefox-Spdy: h2
|
GET /trustbox-data/539ad60defb9600b94d7df2c?businessUnitId=4dbb14ee00006400050fa293&locale=en-US&reviewTagValue=SelectedReview&reviewsPerPage=20 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/539ad60defb9600b94d7df2c/index.html?templateId=539ad60defb9600b94d7df2c&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 3046
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
date: Thu, 20 Oct 2022 14:51:30 GMT
cache-control: public,max-age=1800
etag: "4f654425816a0619004ee1409a8c6bbb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aifE1LIM8tCUlA0y2XDpxM6pGPLWEwgOuOtHRNU4-V-naT4_CWBM5w==
age: 51
X-Firefox-Spdy: h2
|
GET /stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b637fa0340045cd0c936 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b637fa0340045cd0c936/index.html?templateId=5419b637fa0340045cd0c936&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 20 Oct 2022 14:51:30 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: odajUYInAiFoqCg2CBcAhYVKE8AJ1_ViAIjs-yU_oUMOJlLfO-gphA==
X-Firefox-Spdy: h2
|
GET /stats/TrustboxImpression?locale=en-US&styleHeight=500px&styleWidth=100%25&theme=light&tags=SelectedReview&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=539ad60defb9600b94d7df2c HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/539ad60defb9600b94d7df2c/index.html?templateId=539ad60defb9600b94d7df2c&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 20 Oct 2022 14:51:29 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: THCwSsDOalZRHWCVrhjtqcCJbT67GugnVCEdFy85JIfJWSlaVn6boA==
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=658
Date: Thu, 20 Oct 2022 14:51:30 GMT
Connection: keep-alive
X-N: S
|
GET /stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b637fa0340045cd0c936 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b637fa0340045cd0c936/index.html?templateId=5419b637fa0340045cd0c936&businessunitId=4dbb14ee00006400050fa293
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
143.204.55.80
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Thu, 20 Oct 2022 14:51:30 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bypIZT--u6Vm_sMITo5jNtZI5LcvFsBUXrfxFNwDdyZJJEMFbCymJQ==
X-Firefox-Spdy: h2
|
GET /?sid=ywVkO4XWPeW7Z6Bj&data=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 HTTP/1.1
Host: tr-rc.lfeeder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.34
HTTP/2 200 OK
content-type: image/gif
content-length: 43
server: CloudFront
date: Thu, 20 Oct 2022 14:51:30 GMT
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jqOAkRvSWEEeip4oHVc2NBEekF15oCijq3QyYTXeWJZY5rOfHt2RwQ==
X-Firefox-Spdy: h2
|
GET /js/trad.js HTTP/1.1
Host: t.adcell.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 185.5.82.77
HTTP/2 200 OK
content-type: text/javascript
server: myracloud
date: Thu, 20 Oct 2022 14:51:30 GMT
strict-transport-security: max-age=15768000
content-encoding: gzip
vary: accept-encoding
expires: Thu, 20 Oct 2022 14:56:46 GMT
cache-control: max-age=900
etag: "myra-42e358a7"
x-cdn: 1
X-Firefox-Spdy: h2
|
GET /j?dtstmp=1666277501289&aid=a-015g&se=e30&duid=f810f9c9df2c--01gfty1t7df97z1rp0fvhp7ymt&tna=v2.5.0&pu=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&wpn=lc-bundle&c=PHRpdGxlPk1hY0tlZXBlcjwvdGl0bGU-&n3pc=true HTTP/1.1
Host: rp.liadm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Referer: https://app2.mackeeperaff.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
3.223.51.75
HTTP/2 200 OK
content-type: application/json
date: Thu, 20 Oct 2022 14:51:30 GMT
content-length: 13
trace-id: 95094e00a237f1ef
vary: Origin
request-time: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY
x-pixel-event-id: 72b03841-79b9-4ebc-b127-d2e96e95a544
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-credentials: true
x-permitted-cross-domain-policies: master-only
X-Firefox-Spdy: h2
|
GET /mk-land/dist/images/favicon_ua.png HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/png
content-length: 407
date: Wed, 19 Oct 2022 08:49:42 GMT
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Apr 2022 09:52:27 GMT
etag: "471c1c90d41a571f14162d7a8a9c8b9c"
cache-control: public, max-age=604800
x-amz-version-id: fOjB1uVWJszrafJRMb0A4UZGtOA62i.I
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ORuwLE_K7SdVHuIShnbTiQt0oaWFg-pWXAENN3Ay6tW7EOB3oVK8bA==
age: 108110
X-Firefox-Spdy: h2
|
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
23.36.76.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
last-modified: Wed, 19 Oct 2022 18:56:33 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=14708
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
|
GET /mk-land/dist/fonts/MarkOT-Light.otf HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: font/ttf
date: Wed, 19 Oct 2022 08:54:33 GMT
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-methods: GET
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Fri, 11 Sep 2020 13:01:11 GMT
etag: W/"48dd0f49a4207634e9062def9074a038"
cache-control: public, max-age=604800
x-amz-version-id: 0k6awkdioEQDqMMUsMLLZL0d1S0LNdte
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q7Ad44N3jjIc4_oBmSSXEdqJFIYORJ-M4eXnU94Y8w4Ft3Q1jPIokw==
age: 107817
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 2009
Cache-Control: max-age=118104
Date: Thu, 20 Oct 2022 14:51:31 GMT
Etag: "635082f2-1d7"
Expires: Fri, 21 Oct 2022 23:39:55 GMT
Last-Modified: Wed, 19 Oct 2022 23:06:26 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /land/api/send-event HTTP/1.1
Host: app2.mackeeperaff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-CSRF-TOKEN: vowWAifKuOIW6prkb6M7C8uanEsRd6Irk2FGtoYw
X-XSRF-TOKEN: eyJpdiI6IkVcLzVZNWRHQnJOSXhmaXB0WGRzMVZnPT0iLCJ2YWx1ZSI6Ik1VajBoUTJtRkJESGZkT1FUQjZJejNYWHJOZFUrc09wdE9ta3BxNllyclp0NTBXWmV5Y1JUWDdEc0diT2JCbmxsT0RwWGtsWmhxN2ZhRXZNTjN1TEFGb3ViQXRnMDdOSWdieU9Tc1dNZkU3VlV6K1Y3ajFCOE54UXRLZ1U4VmZrIiwibWFjIjoiMGI4ZTUxYWQwMzZlYjI5YzQ0MzhkMWIyZDY5ZDQ5NzU2YTAyNzllNmM0NGRkMjA3MTYzNjA4NDE5ZjE0OGUzNCJ9
Content-Length: 104
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/land/225/
Cookie: XSRF-TOKEN=eyJpdiI6IkVcLzVZNWRHQnJOSXhmaXB0WGRzMVZnPT0iLCJ2YWx1ZSI6Ik1VajBoUTJtRkJESGZkT1FUQjZJejNYWHJOZFUrc09wdE9ta3BxNllyclp0NTBXWmV5Y1JUWDdEc0diT2JCbmxsT0RwWGtsWmhxN2ZhRXZNTjN1TEFGb3ViQXRnMDdOSWdieU9Tc1dNZkU3VlV6K1Y3ajFCOE54UXRLZ1U4VmZrIiwibWFjIjoiMGI4ZTUxYWQwMzZlYjI5YzQ0MzhkMWIyZDY5ZDQ5NzU2YTAyNzllNmM0NGRkMjA3MTYzNjA4NDE5ZjE0OGUzNCJ9; mackeeper_session=eyJpdiI6IlVRZXZJTjVBR1pGWjBHSWlZR3NjSnc9PSIsInZhbHVlIjoiQzBtR01HRXk4MVRjMmdFcjRFRjZ3eHhwdUNlTDJUZngwazlSTmNkSGpYRFZwZmVKbjNPaUM5elljQ2lCN2p6Vk5cLzRBK1FteDJcL2NueUdraHdVeVNtaTJhR3RXZlZBUG83OG93MHV6RUZselFZcXZIMjNxVXpKeHF0RmJFZVRONSIsIm1hYyI6ImQwOTBhNTgwNzE3ZmVjZWQzMDA5OWE3ZjU5NGU3MjE1ZDRkMGE4ZjdhZTBiN2JjODJmOGMxMmM3MjBjNDkwNDcifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
3.225.159.165
HTTP/2 200 OK
content-type: application/json
date: Thu, 20 Oct 2022 14:51:30 GMT
server: nginx
vary: Accept-Encoding
cache-control: no-cache, private
x-ratelimit-limit: 180
x-ratelimit-remaining: 178
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: : allow-from https://www.youtube.com https://giphy.com https://vimeo.com https://mackeeper.com https://www.slideshare.net
expect-ct: max-age=60
content-encoding: gzip
request-id: a11574f4983c300e02d201a9511c5b6e
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /land/api/send-event HTTP/1.1
Host: app2.mackeeperaff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-CSRF-TOKEN: vowWAifKuOIW6prkb6M7C8uanEsRd6Irk2FGtoYw
X-XSRF-TOKEN: eyJpdiI6IkVcLzVZNWRHQnJOSXhmaXB0WGRzMVZnPT0iLCJ2YWx1ZSI6Ik1VajBoUTJtRkJESGZkT1FUQjZJejNYWHJOZFUrc09wdE9ta3BxNllyclp0NTBXWmV5Y1JUWDdEc0diT2JCbmxsT0RwWGtsWmhxN2ZhRXZNTjN1TEFGb3ViQXRnMDdOSWdieU9Tc1dNZkU3VlV6K1Y3ajFCOE54UXRLZ1U4VmZrIiwibWFjIjoiMGI4ZTUxYWQwMzZlYjI5YzQ0MzhkMWIyZDY5ZDQ5NzU2YTAyNzllNmM0NGRkMjA3MTYzNjA4NDE5ZjE0OGUzNCJ9
Content-Length: 103
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/land/225/
Cookie: XSRF-TOKEN=eyJpdiI6IkVcLzVZNWRHQnJOSXhmaXB0WGRzMVZnPT0iLCJ2YWx1ZSI6Ik1VajBoUTJtRkJESGZkT1FUQjZJejNYWHJOZFUrc09wdE9ta3BxNllyclp0NTBXWmV5Y1JUWDdEc0diT2JCbmxsT0RwWGtsWmhxN2ZhRXZNTjN1TEFGb3ViQXRnMDdOSWdieU9Tc1dNZkU3VlV6K1Y3ajFCOE54UXRLZ1U4VmZrIiwibWFjIjoiMGI4ZTUxYWQwMzZlYjI5YzQ0MzhkMWIyZDY5ZDQ5NzU2YTAyNzllNmM0NGRkMjA3MTYzNjA4NDE5ZjE0OGUzNCJ9; mackeeper_session=eyJpdiI6IlVRZXZJTjVBR1pGWjBHSWlZR3NjSnc9PSIsInZhbHVlIjoiQzBtR01HRXk4MVRjMmdFcjRFRjZ3eHhwdUNlTDJUZngwazlSTmNkSGpYRFZwZmVKbjNPaUM5elljQ2lCN2p6Vk5cLzRBK1FteDJcL2NueUdraHdVeVNtaTJhR3RXZlZBUG83OG93MHV6RUZselFZcXZIMjNxVXpKeHF0RmJFZVRONSIsIm1hYyI6ImQwOTBhNTgwNzE3ZmVjZWQzMDA5OWE3ZjU5NGU3MjE1ZDRkMGE4ZjdhZTBiN2JjODJmOGMxMmM3MjBjNDkwNDcifQ%3D%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
|
search
3.225.159.165
HTTP/2 200 OK
content-type: application/json
date: Thu, 20 Oct 2022 14:51:30 GMT
server: nginx
vary: Accept-Encoding
cache-control: no-cache, private
x-ratelimit-limit: 180
x-ratelimit-remaining: 178
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: : allow-from https://www.youtube.com https://giphy.com https://vimeo.com https://mackeeper.com https://www.slideshare.net
expect-ct: max-age=60
content-encoding: gzip
request-id: b6a34ea8a34b4edd7fdf61ef7601a847
X-Firefox-Spdy: h2
|
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: JxkIHOSqB7VuLR6kz0J4G1MRUd9zxYdXL2wnVD57MI2mU5fpjRnp28CKHYOQWmDlHkv0zCvqE+j+ntYe/DUyUg==
priority: u=3,i
content-length: 27027
x-fb-trip-id: 2074150462
date: Thu, 20 Oct 2022 14:51:31 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
13.107.21.200
HTTP/2 200 OK
content-type: application/javascript
cache-control: private,max-age=1800
content-length: 11376
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=37BB764A0DE86ED1019664090C1D6F44; domain=.bing.com; expires=Tue, 14-Nov-2023 14:51:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EF36B6DD39AE48068AE82B77431618A3 Ref B: OSL30EDGE0519 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:30 GMT
X-Firefox-Spdy: h2
|
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 20 Oct 2022 14:51:31 GMT
expires: Thu, 20 Oct 2022 14:51:31 GMT
cache-control: private, max-age=3600
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /modules.5f63ca60a03298133ad8.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
content-length: 66045
date: Tue, 18 Oct 2022 12:18:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "eb4f228026ced3bcaadde65163571860"
last-modified: Tue, 18 Oct 2022 12:17:20 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7Ojxbzyz-lc4t-bHqbAdL4dwGZW-rbdsd7eV49u8QzQFXilRR47tig==
age: 182005
X-Firefox-Spdy: h2
|
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GYTXD89N1W&cid=1831974982.1666277501>m=2oeah0&aip=1&z=1868280829 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.3
HTTP/2 200 OK
content-type: image/gif
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 2009
Cache-Control: max-age=118104
Date: Thu, 20 Oct 2022 14:51:31 GMT
Etag: "635082f2-1d7"
Expires: Fri, 21 Oct 2022 23:39:55 GMT
Last-Modified: Wed, 19 Oct 2022 23:06:26 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 20 Oct 2022 14:41:09 GMT
expires: Thu, 20 Oct 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 622
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /signals/config/1593188040964422?v=2.9.87&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ZtgHT4vos0SKsUdpgLIjInyVK95OEst5vFC7oRxg8luoTXtz/mOO0Z07NRHX/j8LkH9bgJYpCelxUetVI3zPZg==
priority: u=3,i
content-length: 86219
x-fb-trip-id: 2074150462
date: Thu, 20 Oct 2022 14:51:31 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST /g/collect?v=2&tid=G-GYTXD89N1W>m=2oeah0&_p=2993938&_gaz=1&cid=1831974982.1666277501&ul=en-us&sr=1280x1024&_s=1&sid=1666277501&sct=1&seg=0&dl=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&dt=MacKeeper&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
|
search
216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
access-control-allow-origin: https://app2.mackeeperaff.com
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /box-c1417f7b48595d0dbca01c86f95d6dbb.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
143.204.55.105
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Tue, 18 Oct 2022 09:12:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "d2c298a660a1ee92f094a3d504e3e2e6"
last-modified: Tue, 18 Oct 2022 09:11:19 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jbEjTZ5e0k0AYDbwiXu2eXqq1xBeQ_JOESu2zjNWwOOEFpWkW3SVmQ==
age: 193165
X-Firefox-Spdy: h2
|
GET /collect?v=2&fmt=js&pid=3865705&time=1666277501906&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
13.107.42.14
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3865705%26time%3D1666277501906%26url%3Dhttps%253A%252F%252Fapp2.mackeeperaff.com%252Fland%252F225%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLYxKqsfyRQvgAAAYP14MICcU7uNEdnnJe2cgppmx6oLyTws-5Am3DfZQU17VZ2aIBqKXKJn0mqSA; Max-Age=2592000; Expires=Sat, 19 Nov 2022 14:51:31 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLpDlznaBYxAQAAAYP14MICyuOEVPEKOi6-_XIquiPOLsVLwK--Ath9igoM4TU8bV0wXy7B27EGaXMDb1cybQ; Max-Age=2592000; Expires=Sat, 19 Nov 2022 14:51:31 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&16759370-ef61-403e-8a9f-afe963899dbc"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 20-Oct-2023 14:51:31 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2411:u=1:x=1:i=1666277491:t=1666363891:v=2:sig=AQFLNV2Ea2kRryWxPfTzUMNROVlqJgYS"; Expires=Fri, 21 Oct 2022 14:51:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXreHX1sdHJrT3DIQOdNQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CEE91CA369344F4E8AE4332D7ABE74B9 Ref B: OSL30EDGE0210 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /p/action/36002432.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.21.200
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: private,max-age=60
content-length: 1423
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=3FADD6186C0A62480F90C45B6DFF63FB; domain=.bing.com; expires=Tue, 14-Nov-2023 14:51:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D91E0E38468E43D5A860C1CC5D93CB5B Ref B: OSL30EDGE0519 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:30 GMT
X-Firefox-Spdy: h2
|
GET /action/0?ti=36002432&Ver=2&mid=3a38686c-83fa-49f2-a062-8982b20bdb59&sid=b58e84e0508611ed906a076fb2c24724&vid=b58e7320508611ed834033143f3427f6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=MacKeeper&p=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&r=<=2595&evt=pageLoad&sv=1&rn=865580 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.21.200
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1929753AF1CE6D7029B16779F03B6CD1; domain=.bing.com; expires=Tue, 14-Nov-2023 14:51:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2F6F2A23B7424CDE96A1E243D34AF279 Ref B: OSL30EDGE0519 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:30 GMT
X-Firefox-Spdy: h2
|
GET /action/0?ti=36002432&Ver=2&mid=3a38686c-83fa-49f2-a062-8982b20bdb59&sid=b58e84e0508611ed906a076fb2c24724&vid=b58e7320508611ed834033143f3427f6&vids=0&msclkid=N&ec=pageview&gc=USD&tpp=1&ea=all_except_22019_cleaning&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=418385 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.21.200
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=28F04E6A0EAE6827384B5C290F5B6915; domain=.bing.com; expires=Tue, 14-Nov-2023 14:51:31 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 750AFEF982DF44F59B3226B0C5296614 Ref B: OSL30EDGE0519 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:31 GMT
X-Firefox-Spdy: h2
|
POST /g/collect?v=2&tid=G-GYTXD89N1W&cid=1831974982.1666277501>m=2oeah0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
|
search
173.194.73.154
HTTP/2 204 No Content
content-type: text/plain
access-control-allow-origin: https://app2.mackeeperaff.com
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /1212352/trc/3/json?tim=1666277501945&data=%7B%22id%22%3A43%2C%22ii%22%3A%22%2Fland%2F225%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1666277501941%2C%22cv%22%3A%2220221013-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F%3F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dkrometch-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1666277501944%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A21%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
151.101.85.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 20 Oct 2022 14:51:31 GMT
via: 1.1 varnish
x-served-by: cache-bma1639-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666277491.207146,VS0,VE93
vary: Accept-Encoding
x-vcl-time-ms: 93
X-Firefox-Spdy: h2
|
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-157596782-1&cid=1831974982.1666277501&jid=582424974&gjid=753379352&_gid=903001799.1666277502&_u=YADAAEAAQAAAACAEK~&z=1194487922 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
173.194.73.154
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://app2.mackeeperaff.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5182
Cache-Control: max-age=163787
Date: Thu, 20 Oct 2022 14:51:31 GMT
Etag: "63512900-1d7"
Expires: Sat, 22 Oct 2022 12:21:18 GMT
Last-Modified: Thu, 20 Oct 2022 10:54:56 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3791
Cache-Control: max-age=162396
Date: Thu, 20 Oct 2022 14:51:31 GMT
Etag: "63512900-1d7"
Expires: Sat, 22 Oct 2022 11:58:07 GMT
Last-Modified: Thu, 20 Oct 2022 10:54:56 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/viewthroughconversion/1010020041/?random=1666277502027&cv=9&fst=1666277502027&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgah0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&tiba=MacKeeper&auid=1821804226.1666277501&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1011
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 15:06:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /pagead/viewthroughconversion/854379023/?random=1666277502024&cv=9&fst=1666277502024&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgah0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&tiba=MacKeeper&auid=1821804226.1666277501&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1013
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 15:06:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /pagead/viewthroughconversion/957119846/?random=1666277502028&cv=9&fst=1666277502028&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgah0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&tiba=MacKeeper&auid=1821804226.1666277501&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1014
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 15:06:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /wi/config/10013499.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
87.248.119.251
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: EYB1P968MWVKVK01
x-amz-id-2: F1mC7tABE5znrkLH6FQ2L1q0ClMDRr/vsQjyIfJnd/RrmMcyScLAZ18Fg0Mo12BhmW6FuiJFqrs=
date: Thu, 20 Oct 2022 14:33:33 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
cache-control: public,max-age=3600
content-length: 2
age: 1078
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /pagead/viewthroughconversion/1010020041/?random=1666277502029&cv=9&fst=1666277502029&num=1&fmt=3&value=0&label=9Uq1COfCvoMDEMndzuED&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgah0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&tiba=MacKeeper&auid=1821804226.1666277501&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.58.211.2
HTTP/2 200 OK
content-type: image/gif
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 15:06:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /pagead/viewthroughconversion/983482265/?random=1666277502026&cv=9&fst=1666277502026&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgah0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&tiba=MacKeeper&auid=1821804226.1666277501&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 20 Oct 2022 14:51:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1011
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 20-Oct-2022 15:06:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /cachedClickId?marketerId=005ba92794eafc10da81bd91da6dc1a949 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
70.42.32.95
HTTP/1.1 200 OK
Content-Type: application/javascript
Date: Thu, 20 Oct 2022 14:51:31 GMT
Content-Length: 56
X-TraceId: dca2bbb2f5d9eda92ace627b22e2b315
content-encoding: gzip
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 20 Oct 2022 14:51:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /c/hotjar-190484.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
143.204.55.98
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 20 Oct 2022 14:51:31 GMT
cache-control: max-age=60
etag: W/5e9438c81ee83d943867f08b60428e80
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KL0D5pv-l9TP0f1xe53_wcDa7BkzBx3d5ypywEvoD3jEWwnQjTqC6A==
age: 13
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
143.204.42.165
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86697
Date: Thu, 20 Oct 2022 14:51:31 GMT
Etag: "635008c2-1d7"
Expires: Fri, 21 Oct 2022 14:56:28 GMT
Last-Modified: Wed, 19 Oct 2022 14:25:06 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UVAhQNipWhAzULZyznT1LLjJZohjBLq8V5jaIDqubx2-yn83ocP7dQ==
Age: 1882
|
GET /tr/?id=1593188040964422&ev=PageView&dl=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&rl=&if=false&ts=1666277502286&sw=1280&sh=1024&v=2.9.87&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1666277502286.1021948486&it=1666277502005&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.36
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 20 Oct 2022 14:51:31 GMT
X-Firefox-Spdy: h2
|
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3865705%26time%3D1666277501906%26url%3Dhttps%253A%252F%252Fapp2.mackeeperaff.com%252Fland%252F225%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app2.mackeeperaff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.42.14
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3865705&time=1666277501906&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&47447a9f-740b-41ed-8c36-751baefc1a50"; Domain=.linkedin.com; Expires=Fri, 20-Oct-2023 14:51:31 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221020145131c8d14d83-ae3f-48c3-8cfc-1bec6cc0ca6dAQGeGyY0CCkrKXggN0rU6kk4CM3A6454"; Domain=.www.linkedin.com; Expires=Fri, 20-Oct-2023 14:51:31 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjYyNzc0OTE7MjswMjEv2fZvEVpyvmDvOLoz0+rnHJILO5GGnrOaFJuWTUEo4Q==; Domain=.linkedin.com; Expires=Tue, 18 Apr 2023 14:51:31 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2411:u=1:x=1:i=1666277491:t=1666363891:v=2:sig=AQFLNV2Ea2kRryWxPfTzUMNROVlqJgYS"; Expires=Fri, 21 Oct 2022 14:51:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com *.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXreHX/E113bYrrk2Gvxg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E81A881A934B43E8A89D8FE269F78A21 Ref B: OSL30EDGE0210 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /collect?v=2&fmt=js&pid=3865705&time=1666277501906&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app2.mackeeperaff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&611075d4-bce8-466d-86ea-b5b186700255"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 20-Oct-2023 14:51:31 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2411:u=1:x=1:i=1666277491:t=1666363891:v=2:sig=AQFLNV2Ea2kRryWxPfTzUMNROVlqJgYS"; Expires=Fri, 21 Oct 2022 14:51:31 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXreHYBWASnT36r0wCbbg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6DBD13F42E8A4D0D8254D43EDDFED165 Ref B: OSL30EDGE0210 Ref C: 2022-10-20T14:51:31Z
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
20.234.93.27
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=53457532CDF849D6B9EF59D7EC81C734&RedC=c.clarity.ms&MXFR=2113D8B1FD4967033527CAF2F949691F
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=2113D8B1FD4967033527CAF2F949691F; domain=.clarity.ms; expires=Tue, 14-Nov-2023 14:51:32 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /c.gif?CtsSyncId=53457532CDF849D6B9EF59D7EC81C734&RedC=c.clarity.ms&MXFR=2113D8B1FD4967033527CAF2F949691F HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app2.mackeeperaff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.107.21.200
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=53457532CDF849D6B9EF59D7EC81C734&MUID=2D07A9B6D0A163B83BDFBBF5D15462E1
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2D07A9B6D0A163B83BDFBBF5D15462E1; domain=c.bing.com; expires=Tue, 14-Nov-2023 14:51:32 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2F51A400BCCC4845A6C136368DFC9550 Ref B: OSL30EDGE0519 Ref C: 2022-10-20T14:51:32Z
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 0
X-Firefox-Spdy: h2
|
GET /c.gif?CtsSyncId=53457532CDF849D6B9EF59D7EC81C734&MUID=2D07A9B6D0A163B83BDFBBF5D15462E1 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app2.mackeeperaff.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
20.234.93.27
HTTP/2 200 OK
content-type: image/gif
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 20-Oct-2022 15:01:32 GMT; path=/; SameSite=None; Secure;
date: Thu, 20 Oct 2022 14:51:31 GMT
content-length: 42
X-Firefox-Spdy: h2
|
GET /sp.pl?a=10000&d=Thu%2C%2020%20Oct%202022%2014%3A51%3A42%20GMT&n=0&b=MacKeeper&.yp=10013499&f=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F&enc=UTF-8&yv=1.13.0&tagmgr=gtm HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
76.13.32.146
HTTP/2 200 OK
content-type: image/gif
date: Thu, 20 Oct 2022 14:51:32 GMT
expires: Thu, 20 Oct 2022 14:51:32 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBHRgUWMCEPFUkG4H1YzkNaxFseE933cFEgEBAQGxUmNbYwAAAAAA_eMAAA&S=AQAAAknFVfveG4c1Jp4ejFNTNHc; Expires=Fri, 20 Oct 2023 20:51:32 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
|
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1454
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
20.75.32.255
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-credentials: true
date: Thu, 20 Oct 2022 14:51:32 GMT
X-Firefox-Spdy: h2
|
GET /1212352/log/3/unip?en=pre_d_eng_tb&tos=1564&scd=21&ssd=1&est=1666277501943&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1666277503508&vi=1666277501941&ri=5e848b52bfab88f50c20bf6f4b8e4b87&ref=null&cv=20221013-3-RELEASE&item-url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 141.226.228.48
HTTP/2 204 No Content
server: nginx
date: Thu, 20 Oct 2022 14:51:32 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
|
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 29897
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
20.75.32.255
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-credentials: true
date: Thu, 20 Oct 2022 14:51:32 GMT
X-Firefox-Spdy: h2
|
GET /1212352/log/3/unip?en=pre_d_eng_tb&tos=4566&scd=21&ssd=1&est=1666277501943&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1666277506510&vi=1666277501941&ri=5e848b52bfab88f50c20bf6f4b8e4b87&ref=null&cv=20221013-3-RELEASE&item-url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F225%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
141.226.228.48
HTTP/2 204 No Content
server: nginx
date: Thu, 20 Oct 2022 14:51:35 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F638eac9f-fba9-43ad-a54e-d70a9233253b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5566
x-amzn-requestid: 0eb4a0a4-9659-4c49-81d4-cd605eceed66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRZKGEwzIAMFVbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63506f0d-0bc0a25f4f5b1e893f448ae2;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 21:41:33 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HJ79GtM4BktNGSt8djSSWbAKtnICVZBOrIzKUg1mrJpV1j_xQqAMxQ==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 21:54:06 GMT
age: 61050
etag: "14207b4845fc4c2c72a18a77cbcbe5f50aa9056e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /mk-land/dist/svg/landings/225/soft_one.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:20:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:07 GMT
etag: W/"bf6ed3f56235d31918a17604a3131f52"
cache-control: public, max-age=604800
x-amz-version-id: o6Ym8udUKvbAiqjYfNJ3_cK41O7hKn6Y
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W_ptawseQOqqxwVRvvL5fh1apJ5OT2Hb4X0lgdhJV6jopHE2qpNU3w==
age: 106278
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/critical/script.min.js?5d40e965e8fcb218406d HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 19 Oct 2022 08:49:38 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 18 Oct 2022 08:54:23 GMT
etag: W/"978916c1832b2db29b186d1578d5e378"
cache-control: public, max-age=604800
x-amz-version-id: BhWMZZ9PEhWMvFGBfg5J.vwJQdWMdbz2
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kMLuhEx1b5h9cGJwrl_JET8A1PiQxP2lSPa7rz7ttB6IMvPOGOdazg==
age: 108112
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/fonts/MarkOT.otf HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app2.mackeeperaff.com
Connection: keep-alive
Referer: https://static-cdn.mackeeper.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: font/ttf
date: Wed, 19 Oct 2022 08:54:33 GMT
access-control-allow-origin: https://app2.mackeeperaff.com
access-control-allow-methods: GET
access-control-allow-credentials: true
x-amz-replication-status: COMPLETED
last-modified: Fri, 11 Sep 2020 13:01:11 GMT
etag: W/"106ae5fa4d0e51fa73ed42c3beecda5e"
cache-control: public, max-age=604800
x-amz-version-id: Eju.irxG68JYjYuEi7BGXEsqN0F4MTaA
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -OodBNFaHwJRLo15xBg-aTOp_ZLNvWQX_iT5AUDLjWuUdF2l-RDvIw==
age: 107818
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/svg/components/logo/mk-logo-ua.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 19 Oct 2022 08:49:38 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 19 Apr 2022 14:50:37 GMT
etag: W/"0443bcb5ae8253499f7df7f80c45fc8c"
cache-control: public, max-age=604800
x-amz-version-id: sx6d65Ik.60EPUJCncti20jd8v0DNMRK
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zg_FrAfH-L2aCs_YL1p5p1a-49dHZnXpsLc7IWTsn1dh4u59prOzwA==
age: 108112
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/svg/landings/225/appesteem.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:20:16 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:01 GMT
etag: W/"11483e7c23b09ca50a06de72c255ce87"
cache-control: public, max-age=604800
x-amz-version-id: 3fMgzXzf95Ipu35ulrRn6b7jas.YfNqP
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2YZO7TGEGJrTJRGJoZZ5k25uyGegHrmsi6_CxQQrhT1oRYtPHVIMew==
age: 106274
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/svg/landings/225/shopper.svg HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.230.111.78
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:20:19 GMT
x-amz-replication-status: COMPLETED
last-modified: Thu, 14 Apr 2022 08:45:07 GMT
etag: W/"316255d136699b84962ae8e7e650fb4a"
cache-control: public, max-age=604800
x-amz-version-id: fKOEyyccH3jv1UtvKiv9xzpyRS0Q0D43
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0y3XRJ7_-_A4ntBMymXFxThyy24bN1IBUlaXzUdUAaH_R40ZC-iicw==
age: 106270
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/225/style.webp.min.css?3a6665f1aefdfa6e7708 HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.78
HTTP/2 200 OK
content-type: text/css
date: Wed, 19 Oct 2022 09:22:33 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 16 Aug 2022 13:12:49 GMT
etag: W/"4457db8fd1db6eab9c5f3d3d1c9974f7"
cache-control: public, max-age=604800
x-amz-version-id: AN8xanEF4YT_30ZnWEN6rFUop6tBr4SX
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kRij7XDPEWgo1DGOvYM1mimQqGq2FKCl8vMSJHUi6PatTGDNdaRruw==
age: 106137
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /mk-land/dist/225/script.min.js?4e6f2e1118e36c4972af HTTP/1.1
Host: static-cdn.mackeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app2.mackeeperaff.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.230.111.78
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 19 Oct 2022 09:20:11 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 18 Oct 2022 08:53:51 GMT
etag: W/"2fe9559f1db9fa3f5c4fb4bd7115605b"
cache-control: public, max-age=604800
x-amz-version-id: .zptg2Edi2ch1KcLxt34_WISgbusPa_b
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fcAF8jMqvCGlm1TePfgbWMFNFUt51gtH_YJkFbTejIv6C9LX0XJsFA==
age: 106279
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /land/225/ HTTP/1.1
Host: app2.mackeeperaff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
3.225.159.165
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 20 Oct 2022 14:51:29 GMT
server: nginx
vary: Accept-Encoding
cache-control: no-cache, private
content-security-policy: default-src 'self' *.hotjar.com *.mackeeper.com;frame-ancestors 'none';frame-src 'self' 'unsafe-inline' *.a.disquscdn.com widget.trustpilot.com *.adsage.com *.adsitrx.com *.analytics.yahoo.com *.b2c.com *.bing.com *.disqus.com *.doubleclick.net *.facebook.com *.facebook.net *.flowplayer.org *.fqtag.com *.google.com *.google.com.ua *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.googletagservices.com *.gstatic.com *.hotjar.com *.i.ytimg.com *.images.dmca.com *.intljs.rmtag.com *.linksynergy.com *.mackeeper.com *.mpnrs.com *.msn.com *.optimizely.com *.yabidos.com *.s.yimg.com *.secure.ace-tag.advertising.com *.secure.leadback.advertising.com *.shopperapproved.com *.tagmanager.google.com *.tribalfusion.com *.twimg.com *.twitter.com ws://*.hotjar.com wss://*.hotjar.com *.www1.mpnrs.com *.youtube.com *.lporirxe.com *.surveygizmo.com *.liadm.com *.typeform.com mc.yandex.ru *.js.ad-score.com *.cdn.onesignal.com *.onesignal.com *.criteo.com static-cdn.mackeeper.com;child-src 'self' 'unsafe-inline' *.a.disquscdn.com *.adsage.com *.adsitrx.com *.analytics.yahoo.com *.b2c.com *.bing.com *.disqus.com *.doubleclick.net *.facebook.com *.facebook.net *.flowplayer.org *.fqtag.com *.google.com *.google.com.ua *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.googletagservices.com *.gstatic.com *.hotjar.com *.i.ytimg.com *.images.dmca.com *.intljs.rmtag.com *.linksynergy.com *.mackeeper.com *.mpnrs.com *.msn.com *.optimizely.com *.yabidos.com *.s.yimg.com *.secure.ace-tag.advertising.com *.secure.leadback.advertising.com *.shopperapproved.com *.tagmanager.google.com *.tribalfusion.com *.twimg.com *.twitter.com ws://*.hotjar.com wss://*.hotjar.com *.www1.mpnrs.com *.youtube.com *.lporirxe.com blob: *.cdn.onesignal.com *.onesignal.com *.liadm.com static-cdn.mackeeper.com;form-action 'self' *.mackeeper.com *.facebook.com;img-src 'self' 'unsafe-inline' *.a.disquscdn.com *.adsage.com *.adsitrx.com *.analytics.yahoo.com *.b2c.com *.bing.com *.disqus.com *.doubleclick.net *.facebook.com *.facebook.net *.flowplayer.org *.fqtag.com *.google.com *.google.ad *.google.ae *.google.com.af *.google.com.ag *.google.com.ai *.google.al *.google.am *.google.co.ao *.google.com.ar *.google.as *.google.at *.google.com.au *.google.az *.google.ba *.google.com.bd *.google.be *.google.bf *.google.bg *.google.com.bh *.google.bi *.google.bj *.google.com.bn *.google.com.bo *.google.com.br *.google.bs *.google.bt *.google.co.bw *.google.by *.google.com.bz *.google.ca *.google.cd *.google.cf *.google.cg *.google.ch *.google.ci *.google.co.ck *.google.cl *.google.cm *.google.cn *.google.com.co *.google.co.cr *.google.com.cu *.google.cv *.google.com.cy *.google.cz *.google.de *.google.dj *.google.dk *.google.dm *.google.com.do *.google.dz *.google.com.ec *.google.ee *.google.com.eg *.google.es *.google.com.et *.google.fi *.google.com.fj *.google.fm *.google.fr *.google.ga *.google.ge *.google.gg *.google.com.gh *.google.com.gi *.google.gl *.google.gm *.google.gp *.google.gr *.google.com.gt *.google.gy *.google.com.hk *.google.hn *.google.hr *.google.ht *.google.hu *.google.co.id *.google.ie *.google.co.il *.google.im *.google.co.in *.google.iq *.google.is *.google.it *.google.je *.google.com.jm *.google.jo *.google.co.jp *.google.co.ke *.google.com.kh *.google.ki *.google.kg *.google.co.kr *.google.com.kw *.google.kz *.google.la *.google.com.lb *.google.li *.google.lk *.google.co.ls *.google.lt *.google.lu *.google.lv *.google.com.ly *.google.co.ma *.google.md *.google.me *.google.mg *.google.mk *.google.ml *.google.com.mm *.google.mn *.google.ms *.google.com.mt *.google.mu *.google.mv *.google.mw *.google.com.mx *.google.com.my *.google.co.mz *.google.com.na *.google.com.nf *.google.com.ng *.google.com.ni *.google.ne *.google.nl *.google.no *.google.com.np *.google.nr *.google.nu *.google.co.nz *.google.com.om *.google.com.pa *.google.com.pe *.google.com.pg *.google.com.ph *.google.com.pk *.google.pl *.google.pn *.google.com.pr *.google.ps *.google.pt *.google.com.py *.google.com.qa *.google.ro *.google.ru *.google.rw *.google.com.sa *.google.com.sb *.google.sc *.google.se *.google.com.sg *.google.sh *.google.si *.google.sk *.google.com.sl *.google.sn *.google.so *.google.sm *.google.sr *.google.st *.google.com.sv *.google.td *.google.tg *.google.co.th *.google.com.tj *.google.tk *.google.tl *.google.tm *.google.tn *.google.to *.google.com.tr *.google.tt *.google.com.tw *.google.co.tz *.google.com.ua *.google.co.ug *.google.co.uk *.google.com.uy *.google.co.uz *.google.com.vc *.google.co.ve *.google.vg *.google.co.vi *.google.com.vn *.google.vu *.google.ws *.google.rs *.google.co.za *.google.co.zm *.google.co.zw *.google.cat *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.googletagservices.com *.gstatic.com *.hotjar.com *.i.ytimg.com *.images.dmca.com *.intljs.rmtag.com *.linksynergy.com *.mackeeper.com *.mpnrs.com *.msn.com *.optimizely.com *.yabidos.com *.s.yimg.com *.secure.ace-tag.advertising.com *.secure.leadback.advertising.com *.shopperapproved.com *.tagmanager.google.com *.tribalfusion.com *.twimg.com *.twitter.com ws://*.hotjar.com wss://*.hotjar.com *.www1.mpnrs.com *.youtube.com data: *.2mdn.net *.pagead2.googlesyndication.com *.glotgrx.com *.lporirxe.com *.exelator.com *.owox.com *.liadm.com *.outbrain.com *.visualwebsiteoptimizer.com *.yahoo.co.jp *.apimzb-adserver.cloudmccloud.com *.3lift.com *.surveygizmo.com *.surveygizmolibrary.s3.amazonaws.com mc.yandex.ru cx.atdmt.com *.baidu.com *.gstatstrk.com *.cdn.onesignal.com *.onesignal.com *.rtmark.net *.taboola.com *.zoomsupport.com *.cloudmccloud.com linkconnector.com *.linkconnector. |
18.203.27.16