Report - app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm

Report Overview

Submitted URL
app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid=
IP
52.204.186.78
ASN
#14618 AMAZON-AES
Submitted
2023-05-18 08:32:56
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-05-18	889 B	179 kB	142.250.74.40
dvcasha2.ocsp-certum.com	71753	2013-12-19	2014-11-27	2023-05-17	338 B	1.9 kB	23.36.79.17
www.google.no	25607	2001-02-26	2016-04-05	2023-05-18	530 B	578 B	142.250.74.35
t.adcell.com	43380	2001-06-19	2018-11-13	2023-05-18	407 B	57 kB	185.5.82.77
browser.sentry-cdn.com	4393	2018-05-30	2018-07-13	2023-05-18	460 B	17 kB	151.101.66.217
widget.trustpilot.com	6018	2007-06-30	2017-02-01	2023-05-18	5.3 kB	77 kB	143.204.55.101
app2.mackeeperaff.com	unknown	2021-10-20	2022-06-14	2023-05-16	2.5 kB	24 kB	52.204.186.78
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-18	895 B	2.9 kB	142.250.74.138
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-05-18	871 B	454 B	216.239.32.36
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-18	340 B	865 B	143.204.48.16
sc.lfeeder.com	17815	2019-08-29	2020-09-08	2023-05-18	431 B	33 kB	143.204.55.63
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-18	340 B	865 B	143.204.48.16
tr-rc.lfeeder.com	unknown	2019-08-29	2022-10-20	2023-05-17	1.4 kB	396 B	143.204.55.92
bat.bing.com	387	1996-01-29	2014-04-08	2023-05-17	1.8 kB	16 kB	204.79.197.200
www.google.com	7	1997-09-15	2015-05-10	2023-05-18	952 B	1.3 kB	216.58.207.228
static-cdn.mackeeper.com	346539	2009-12-09	2015-05-14	2023-05-18	9.3 kB	577 kB	54.230.111.123
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-17	1.7 kB	3.5 kB	142.250.74.131
s.yimg.com	375	1997-05-14	2012-05-21	2023-05-18	853 B	7.8 kB	87.248.119.252

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-18 08:32:50	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (34)

	URL	Size	First Seen	Last Seen
	unknown	575 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash fd23ab21ac6df3738f562434dff77b27 d073eb3d67ea4ab2e29e39b946a80a5b5f1267dc 60d237e4e8dd361b8cbd222615bd4864d1192b4b3283672468d2a8aa3bd44334 Loading...

	bat.bing.com/bat.js	41 kB	2023-05-12	2023-12-31
Pretty URL bat.bing.com/bat.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 01:27:03 Last Seen2023-12-31 00:58:36 Times Seen17552 Hash 12b0721aebdc9816a2a99bcce751c1b3 6f01d33b811a39a95dbf0ada288306e1376099e1 679804e244b4127b7ecd99a513b57d6a4f91866410e16da69ce02f98f534051d Loading...

	static-cdn.mackeeper.com/mk-land/dist/default/script.min.js?59d9d7f19a458250ad83	84 kB	2023-05-18	2023-07-17
Pretty URL static-cdn.mackeeper.com/mk-land/dist/default/script.min.js?59d9d7f19a458250ad83 IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 10:32:58 Last Seen2023-07-17 08:42:15 Times Seen35 Hash 65748e90284ca17e733a0b77b906e79c 646e126bc7ec6fe4b786484f8116f957a40c197b 7d4f95c6b773856b91562edc15a8eb66de8151c19e0b2986688aad2404f459a0 Loading...

	t.adcell.com/js/trad.js	57 kB	2023-03-07	2024-03-05
Pretty URL t.adcell.com/js/trad.js IP 185.5.82.77 ASN #20546 SOPRADO GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2024-03-05 08:59:37 Times Seen218 Hash 56e1a43dcd8cf63a49a930cd5313b724 50bcc06085d9e7bab6849d3710ade4254ce0648a 77e3bdfb73066e1c7ce07b8e91e81b63380a761919fa65049925a0238fbbdd1c Loading...

	bat.bing.com/p/action/36002432.js	3.7 kB	2023-05-02	2023-07-24
Pretty URL bat.bing.com/p/action/36002432.js IP 204.79.197.200 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 23:26:55 Last Seen2023-07-24 21:26:33 Times Seen48 Hash 7242eafecdf0ba297efb8e72bef88bd7 eda00fcaf38325dedb0f33f885b82ef1fabdc50e fea64b1b231f634af9583da1bf6fa5a4c175c5aef0e59fc9c5eeef55bfe20310 Loading...

	static-cdn.mackeeper.com/mk-land/dist/critical/script.min.js?894b2433ffbc5edeff6d	70 kB	2023-05-18	2023-07-17
Pretty URL static-cdn.mackeeper.com/mk-land/dist/critical/script.min.js?894b2433ffbc5edeff6d IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 10:32:58 Last Seen2023-07-17 08:42:15 Times Seen35 Hash d0854157c5a606ee569ba467cebcaf3d 3ec5c0120c882511801e74188f02332792f23507 69205577473c4c34b9ffafb1f6e51bacf59cbaea6713d96455715c5976082a01 Loading...

	unknown	588 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash c9d4e5bed7ccc1b03104e2885cf292a3 d2acf0ee9b27f242e70529430ccfd06931ec35df 10206ecb0e2e51bca0336e31650f46fe2e973ad30cf917d95ef0320b9b045237 Loading...

	unknown	337 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 79be018914a0e212bc1848239a431074 89038500bbb634bacb30a496456ade639eaa285f 7208041e315929ae918044e6380608c3e19ff9909ce043cc732981fd9d23ce01 Loading...

	widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js	56 kB	2023-05-08	2024-04-19
Pretty URL widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-08 14:34:37 Last Seen2024-04-19 13:28:03 Times Seen576 Hash 465f654c3856443a861ae9d04377cbb7 941652a86122c2bb27c755e55649948618819e76 000cf4f67c9474f0eb6361bd3ab9f493e17f1873e4a36ef95c11bd685c89683d Loading...

	unknown	482 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 72cde6308f914eb45f4db1d7f4b8c045 dda2360daf3ebfd93cb69e4d4099c4293d55f6d4 583225295b0abdd3b443b9b3c61b13a6e4ee78d6c9924cb35b188be2451c7f9d Loading...

	app2.mackeeperaff.com/land/197.13/sandbox%20eval%20code	147 B	2023-04-11	2024-04-20
Pretty URL app2.mackeeperaff.com/land/197.13/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 00:26:56 Times Seen341005 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-20 00:26:55 Times Seen340510 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	browser.sentry-cdn.com/5.5.0/bundle.min.js	52 kB	2023-03-07	2024-04-16
Pretty URL browser.sentry-cdn.com/5.5.0/bundle.min.js IP 151.101.66.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2024-04-16 06:52:18 Times Seen257 Hash b1dcc6195d84cf50c3e882d3d515f848 06562c193663a31a3cabeaa18cffeb882084fcb6 8c04755395b8f232c57d062a7669c3c414658299d29c6b6f83f1f30185d94ecb Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PVNC4DL	312 kB	2023-05-18	2023-05-18
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PVNC4DL IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 10:32:58 Last Seen2023-05-18 10:32:58 Times Seen2 Hash 283f57cd9eac7cbe69aaa0a799e21b24 97f08462dd262ca57d9a10f994e5050e7df0fd0d c202d564505efd0df7f44a0e4cb15122954d1f5f52cc6265a3a3f684b5a8d74b Loading...

	unknown	503 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 841221e1af44bf4cde48359d1083aeee b686d4d0d2c0d88da65327be20abba2a48680c43 4059ef3cc4904376a0bf39a4914976401f93a39c860359f82b1f6f5ae497cad0 Loading...

	unknown	337 B	2023-03-07	2023-09-22
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 0f66a22815105cf476592582734e3647 13e34f98374041596bc9902b0505cfc4e9de3c18 bf4b58838de4f45b23c1176044c580c1dcf856c54dbc6355538823ec72661dc0 Loading...

	app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid=	405 B	2023-03-07	2023-09-22
Pretty URL app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= IP 52.204.186.78 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 1ce5d5ef780ccbfa3e1195870286b1a7 a5b385180eb58f9f0eea26b4873e5b66d104808c 31f3b31edf9edb5ab7c1bd1aeba3de2ea45a691238492d3b643f6df69deab1a3 Loading...

	app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid=	699 B	2023-03-07	2023-09-22
Pretty URL app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= IP 52.204.186.78 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:35:05 Last Seen2023-09-22 19:05:10 Times Seen66 Hash 04b294684f6c20245c89a46bcb6245d2 321b532a4969bda37a05bf569229d26507740fc1 22e6130b9d2aa6d60d80b7c6bf137ec4e91479882003576825b5850dba4bd3a0 Loading...

	www.googletagmanager.com/gtag/js?id=G-GYTXD89N1W&l=dataLayer&cx=c	213 kB	2023-05-18	2023-05-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-GYTXD89N1W&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 10:32:58 Last Seen2023-05-18 10:32:58 Times Seen2 Hash a11bc510de3b2f2898ab10d43f26b4bd 52deabc7ce3473320cf6186ba0dd49cdf26ff457 2f806ef01317c2c89a3d4099b56f9514476b58dbc321303f93a7a2f68d2006b8 Loading...

	unknown	24 B	2023-03-07	2024-02-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:35:05 Last Seen2024-02-20 08:47:34 Times Seen152 Hash d85ccf96a3a02100247cf1aa027b846c 06666b39fd8160daba3c4fb8f3e29cad947a4761 4c544325e83d44ed827db799758a19f902de1ed48bb6fd7f3ad477d32e11c9ba Loading...

	s.yimg.com/wi/ytc.js	18 kB	2023-04-26	2023-07-07
Pretty URL s.yimg.com/wi/ytc.js IP 87.248.119.252 ASN #203220 Yahoo! UK Services Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-26 17:00:44 Last Seen2023-07-07 09:39:14 Times Seen2538 Hash e896178ac557f4e393e0a05405c33633 5df2c56160b6ba806cf7d9bf209ed48f3c5ef4ad 72750dc5cdcaa538491728c6a58d6d1d97d28024f227ce7f13e63ddeba908226 Loading...

	static-cdn.mackeeper.com/mk-land/dist/197_13/script.min.js?814b3e4e68050d7c2627	65 kB	2023-05-18	2023-07-16
Pretty URL static-cdn.mackeeper.com/mk-land/dist/197_13/script.min.js?814b3e4e68050d7c2627 IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-18 10:32:58 Last Seen2023-07-16 17:57:46 Times Seen14 Hash 32e9ecc19b24396d04ccd376d10a82bb 897dabce8570b83fe2a3e19a299f266c061541cf 8984770e4d7a0a97ff3bec2579623cc90db696b41738f4aad172472eb4e6faee Loading...

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	22 kB	2023-05-03	2024-02-16
Pretty URL widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 143.204.55.101 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-03 17:56:13 Last Seen2024-02-16 19:09:28 Times Seen4419 Hash 7e11dcd43384643aa0e9d3f74390ce50 8505c7f07e1275beccd5c720a80630079fb17fc4 b58109431c3adc92bccc460ac5dc394dc4f0979d24656f7a52503e6c77709d0b Loading...

	sc.lfeeder.com/lftracker_v1_ywVkO4XWPeW7Z6Bj.js	32 kB	2023-05-02	2023-05-18
Pretty URL sc.lfeeder.com/lftracker_v1_ywVkO4XWPeW7Z6Bj.js IP 143.204.55.63 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-02 23:26:55 Last Seen2023-05-18 10:32:58 Times Seen4 Hash 5a541ab9cd65ba584fbdb609fb7e6d5c 97ab75c4f46460568ae8c063a0f89a3718696d30 2029b847aa15a583ee4e96bb8020155e4e0ee949b77c6f689f143e7443a6f306 Loading...

		Size	First Seen	Last Seen
	#1 Eval - b7601e27c54b8a3553d90d7bf7614ec3	329 B	2023-03-07	2023-06-27
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-06-27 00:09:01 Times Seen5 Hash b7601e27c54b8a3553d90d7bf7614ec3 327ae03fcbf0dde093dab43626487869b13c653c 660661e9c7f0f890974bbbb23472af1bc93f90cba6c90f0ebb9dbcf9cf8355d4 Loading...

	#2 Eval - 3cfd04b0e946375773e8a6b974ac05ad	70 B	2023-05-18	2023-06-27
Pretty Observations First Seen2023-05-18 10:32:58 Last Seen2023-06-27 00:09:01 Times Seen2 Hash 3cfd04b0e946375773e8a6b974ac05ad 39abc24d131531c48055c7e440aedbd7a8ad76de 62a0630d429f7745be859154dc97a3c7112691206c21659137b6940e816ca1a4 Loading...

	#3 Eval - d4669666d7cf15b637addcfd13d42daa	332 B	2023-05-18	2023-06-27
Pretty Observations First Seen2023-05-18 10:32:58 Last Seen2023-06-27 00:09:01 Times Seen2 Hash d4669666d7cf15b637addcfd13d42daa da114e68490ee0e39f1fe9d4e50500bd8e65904f 612fc6624d435989dad958f2a49d5b3963030fa31d4053ee4c2c81ab9fb9ff1e Loading...

	#4 Eval - 4575cafde558183741fc0c072a59ad7f	69 B	2023-03-07	2023-06-27
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-06-27 00:09:01 Times Seen5 Hash 4575cafde558183741fc0c072a59ad7f ea2c7dc1a2abb19e24723f51efb5adc5a9895b2e a12eb7029f1bb54eb1b2d9bad442cb478d95f413e74f7206f5f06f3782debb35 Loading...

	#5 Eval - 90ab2af2654c8ea9d0510e8bd1ad8d1f	76 B	2023-03-07	2023-08-03
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-08-03 05:44:53 Times Seen46 Hash 90ab2af2654c8ea9d0510e8bd1ad8d1f bd4801ff095e10f0b2f112d7a266d2ba12bf84f3 4ddd51fa56504fe5c4eaf5321c3bfe9c2f58d248208100f0b73fd2479c8be6b0 Loading...

	#6 Eval - bd281b78b70f90b05e1dd781a159948f	89 B	2023-03-07	2023-08-03
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-08-03 05:44:53 Times Seen46 Hash bd281b78b70f90b05e1dd781a159948f b3b7b0aff6a60952836d55e2e807841d0323b3ee d5df103b3d6158b5ad05c19ce6f61d6a38c1b9c47f0ce213ac39dccf8a215f2f Loading...

	#7 Eval - 6e1012da35ac71e62de33cb1480312ce	70 B	2023-05-18	2023-06-27
Pretty Observations First Seen2023-05-18 10:32:58 Last Seen2023-06-27 00:09:01 Times Seen2 Hash 6e1012da35ac71e62de33cb1480312ce 2f5f7b3cc05921b5186701a393587fe5bbc1308c 965ab368dae7305dd205be211e5eb84280deba2efb519d103a9cd90bcc63fb74 Loading...

	#8 Eval - d930433500861108b64aca6dd89a0d5a	70 B	2023-05-18	2023-06-27
Pretty Observations First Seen2023-05-18 10:32:58 Last Seen2023-06-27 00:09:01 Times Seen2 Hash d930433500861108b64aca6dd89a0d5a 03613ef1126200ee6b54d96b773997a7b8cfbbc5 a11c80fb0062ef9560c9849674f53bf971040917441d27436d837c1794a84759 Loading...

	#9 Eval - 2a2dec42def0227864d275835a7d6a93	69 B	2023-03-07	2023-06-27
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-06-27 00:09:01 Times Seen5 Hash 2a2dec42def0227864d275835a7d6a93 b3c5fe7f6312d7910f7ab4142f5320295e2fe108 63b1c0ecb5b684e67c9fc03d7d624aafa39a6fabd1ffe7108f77e2e9ab11b623 Loading...

	#10 Eval - eddc10ac266c1fe4d363b98cda663e5e	69 B	2023-03-07	2023-06-27
Pretty Observations First Seen2023-03-07 01:35:05 Last Seen2023-06-27 00:09:02 Times Seen5 Hash eddc10ac266c1fe4d363b98cda663e5e c31146f3f1c4009489f59bf05afbeb86ec0e68b9 8da159a87b17690597f668f259e641f30925835c139dc682dbf026f304d898fe Loading...

HTTP Transactions (51)

	URL	IP	Response	Size
	ocsp.r2m02.amazontrust.com/	143.204.48.16		471 B
URL ocsp.r2m02.amazontrust.com/ IP 143.204.48.16:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 98bb380081994a6f59471874a93b2c17 3590366da2e86e5f1b2e31d0ae496a1eefb83e01 c29457c93d5969fa0432c2d36576c2e6ea01be2ef3620741ab50bd26056065c0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=7200' Date: Thu, 18 May 2023 08:32:38 GMT Server: ECAcc (dcb/7F87) X-Cache: Miss from cloudfront Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: VN45TwhNFLx1TT2RFhEBlAcBzInB1qTfyXZRKBxnGweC7fABNlEEeA==`

	browser.sentry-cdn.com/5.5.0/bundle.min.js	151.101.66.217	200 OK	16 kB
URL GET HTTP/2 browser.sentry-cdn.com/5.5.0/bundle.min.js IP 151.101.66.217:443 ASN #54113 FASTLY Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGlobalSign nv-sa Subject.sentry-cdn.com Fingerprint0C:18:79:DB:E8:AF:7B:12:35:B0:0E:A6:A8:C1:0C:BD:BF:3C:FA:A4 ValidityWed, 28 Sep 2022 14:23:42 GMT - Mon, 30 Oct 2023 14:23:41 GMT File type ASCII text, with very long lines (51441) Size 16 kB (16371 bytes) Hash b1dcc6195d84cf50c3e882d3d515f848 06562c193663a31a3cabeaa18cffeb882084fcb6 8c04755395b8f232c57d062a7669c3c414658299d29c6b6f83f1f30185d94ecb HTTP Headers `GET /5.5.0/bundle.min.js HTTP/1.1 Host: browser.sentry-cdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: public, max-age=31536000 expires: Sat, 03 Feb 2024 18:43:26 GMT last-modified: Fri, 05 Jul 2019 11:17:04 GMT etag: "39339cf627bc67e34d4c623bea4c0b4a" content-type: application/javascript; charset=utf-8 content-encoding: gzip accept-ranges: bytes date: Thu, 18 May 2023 08:32:39 GMT age: 8948954 vary: X-Goog-Allowed-Resources, Accept-Encoding access-control-allow-origin: * server: Fastly strict-transport-security: max-age=31536000; includeSubDomains content-length: 16371 X-Firefox-Spdy: h2

	widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js	143.204.55.101	200 OK	6.7 kB
URL GET HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type Unicode text, UTF-8 (with BOM) text, with very long lines (21661) Size 6.7 kB (6676 bytes) Hash ac0abdc1f9e115bd67375758633d6147 4bd462b3cd5585214826f9958ab02bbd51257481 3cea5994dbfeacf40ac1a561612e7f101c0f3139d13e0c5bf48ddde987677f54 HTTP Headers `GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/x-javascript content-length: 6676 last-modified: Wed, 03 May 2023 13:48:29 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Thu, 18 May 2023 00:49:52 GMT cache-control: max-age=86400 etag: "befec09eb386fc68a0869c8d1b529dd6" x-cache: Hit from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: n537sKjsJ1MCpxO_pieNgUShCDY-xqlvWVzTrsZdpqELrhV5UvdU9Q== age: 27768 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/components/btn-arrow.svg	54.230.111.123	200 OK	412 B
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/components/btn-arrow.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (412), with no line terminators Size 412 B (412 bytes) Hash 2bb20d31732674b19f39721677ee98b0 c009a4436fe0fd3e281dcd9f60ab0f2769f25cb5 b5553f16ea66eab43971c73b4115bbe291b2188dc00d0c5d4f5bb21958e3dda2 HTTP Headers `GET /mk-land/dist/svg/components/btn-arrow.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: image/svg+xml content-length: 412 date: Wed, 17 May 2023 09:37:02 GMT x-amz-replication-status: COMPLETED last-modified: Thu, 18 Feb 2021 12:38:48 GMT etag: "2bb20d31732674b19f39721677ee98b0" cache-control: public, max-age=604800 x-amz-version-id: nukWLapdOnZ6K4hroAQrBv4GKBUk7Zxa accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 6qtv7fgCaGsGoJTo_hdKHsSeswXjjJbdAX9IoheyI7SC0gMMW9oEOg== age: 82538 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/components/logo/mk5-logo-206.svg	54.230.111.123	200 OK	2.1 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/components/logo/mk5-logo-206.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 2.1 kB (2126 bytes) Hash f474fcb3228042705c9994c59b050345 0cc12f4717eea1804485b1f795ca90c1c5908fef 3f2c648c4509ac84676f5a5d225035b19c0c3c96e5af80b759c14e44b5e77de7 HTTP Headers `GET /mk-land/dist/svg/components/logo/mk5-logo-206.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: image/svg+xml date: Wed, 17 May 2023 09:37:01 GMT x-amz-replication-status: COMPLETED last-modified: Tue, 19 Apr 2022 14:50:37 GMT etag: W/"0443bcb5ae8253499f7df7f80c45fc8c" cache-control: public, max-age=604800 x-amz-version-id: nR7t7rVpGS8ZxmXxhcEXMLjpxYfbyxrO server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: vfEOJK8xsWyigr1n_Ul_pJ45RNwuEmJxzosshi2Fzs0_jXi4H16FSA== age: 82539 X-Firefox-Spdy: h2

	app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid=	52.204.186.78	200 OK	11 kB
URL User Request GET HTTP/2 app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= IP 52.204.186.78:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subjectmkaff.com Fingerprint8F:7A:F4:B2:4E:7F:BA:7B:D4:62:F0:73:FA:74:2E:7E:53:57:F2:A5 ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 11 kB (10914 bytes) Hash 51876d5ba01842e65c5f477382f5b8cc e070ff5ade2940a8a68b8cf98bf146128bf9a76b 6adac03fd1e7efb65e1199aec853925d9bdd4dbcb792723f6f8b24dc807dddf9 HTTP Headers GET /land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= HTTP/1.1 Host: app2.mackeeperaff.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Thu, 18 May 2023 08:32:39 GMT content-type: text/html; charset=UTF-8 server: nginx vary: Accept-Encoding cache-control: no-cache, private content-security-policy: default-src 'self' .hotjar.com .mackeeper.com;frame-ancestors 'none';frame-src 'self' 'unsafe-inline' .a.disquscdn.com widget.trustpilot.com .adsage.com .adsitrx.com .analytics.yahoo.com .b2c.com .bing.com .disqus.com .doubleclick.net .facebook.com .facebook.net .flowplayer.org .fqtag.com .google.com .google.com.ua .googleadservices.com .google-analytics.com .googleapis.com .googletagmanager.com .googletagservices.com .gstatic.com .hotjar.com .i.ytimg.com .images.dmca.com .intljs.rmtag.com .linksynergy.com .mackeeper.com .mpnrs.com .msn.com .optimizely.com .yabidos.com .s.yimg.com .secure.ace-tag.advertising.com .secure.leadback.advertising.com .shopperapproved.com .tagmanager.google.com .tribalfusion.com .twimg.com .twitter.com ws://.hotjar.com wss://.hotjar.com .www1.mpnrs.com .youtube.com .lporirxe.com .surveygizmo.com .liadm.com .typeform.com mc.yandex.ru .js.ad-score.com .cdn.onesignal.com .onesignal.com .criteo.com .pinterest.com static-cdn.mackeeper.com;child-src 'self' 'unsafe-inline' .a.disquscdn.com .adsage.com .adsitrx.com .analytics.yahoo.com .b2c.com .bing.com .disqus.com .doubleclick.net .facebook.com .facebook.net .flowplayer.org .fqtag.com .google.com .google.com.ua .googleadservices.com .google-analytics.com .googleapis.com .googletagmanager.com .googletagservices.com .gstatic.com .hotjar.com .i.ytimg.com .images.dmca.com .intljs.rmtag.com .linksynergy.com .mackeeper.com .mpnrs.com .msn.com .optimizely.com .yabidos.com .s.yimg.com .secure.ace-tag.advertising.com .secure.leadback.advertising.com .shopperapproved.com .tagmanager.google.com .tribalfusion.com .twimg.com .twitter.com ws://.hotjar.com wss://.hotjar.com .www1.mpnrs.com .youtube.com .lporirxe.com blob: .cdn.onesignal.com .onesignal.com .liadm.com static-cdn.mackeeper.com;form-action 'self' .mackeeper.com .facebook.com;img-src 'self' 'unsafe-inline' .a.disquscdn.com .adsage.com .adsitrx.com .analytics.yahoo.com .b2c.com .bing.com .disqus.com .doubleclick.net .facebook.com .facebook.net .flowplayer.org .fqtag.com .google.com .google.ad .google.ae .google.com.af .google.com.ag .google.com.ai .google.al .google.am .google.co.ao .google.com.ar .google.as .google.at .google.com.au .google.az .google.ba .google.com.bd .google.be .google.bf .google.bg .google.com.bh .google.bi .google.bj .google.com.bn .google.com.bo .google.com.br .google.bs .google.bt .google.co.bw .google.by .google.com.bz .google.ca .google.cd .google.cf .google.cg .google.ch .google.ci .google.co.ck .google.cl .google.cm .google.cn .google.com.co .google.co.cr .google.com.cu .google.cv .google.com.cy .google.cz .google.de .google.dj .google.dk .google.dm .google.com.do .google.dz .google.com.ec .google.ee .google.com.eg .google.es .google.com.et .google.fi .google.com.fj .google.fm .google.fr .google.ga .google.ge .google.gg .google.com.gh .google.com.gi .google.gl .google.gm .google.gp .google.gr .google.com.gt .google.gy .google.com.hk .google.hn .google.hr .google.ht .google.hu .google.co.id .google.ie .google.co.il .google.im .google.co.in .google.iq .google.is .google.it .google.je .google.com.jm .google.jo .google.co.jp .google.co.ke .google.com.kh .google.ki .google.kg .google.co.kr .google.com.kw .google.kz .google.la .google.com.lb .google.li .google.lk .google.co.ls .google.lt .google.lu .google.lv .google.com.ly .google.co.ma .google.md .google.me .google.mg .google.mk .google.ml .google.com.mm .google.mn .google.ms .google.com.mt .google.mu .google.mv .google.mw .google.com.mx .google.com.my .google.co.mz .google.com.na .google.com.nf .google.com.ng .google.com.ni .google.ne .google.nl .google.no .google.com.np .google.nr .google.nu .google.co.nz .google.com.om .google.com.pa .google.com.pe .google.com.pg .google.com.ph .google.com.pk .google.pl .google.pn .google.com.pr .google.ps .google.pt .google.com.py .google.com.qa .google.ro .google.ru .google.rw .google.com.sa .google.com.sb .google.sc .google.se .google.com.sg .google.sh .google.si .google.sk .google.com.sl .google.sn .google.so .google.sm .google.sr .google.st .google.com.sv .google.td .google.tg .google.co.th .google.com.tj .google.tk .google.tl .google.tm .google.tn .google.to .google.com.tr .google.tt .google.com.tw .google.co.tz .google.com.ua .google.co.ug .google.co.uk .google.com.uy .google.co.uz .google.com.vc .google.co.ve .google.vg .google.co.vi .google.com.vn .google.vu .google.ws .google.rs .google.co.za .google.co.zm .google.co.zw .google.cat .googleadservices.com .google-analytics.com .googleapis.com .googletagmanager.com .googletagservices.com .gstatic.com .hotjar.com .i.ytimg.com .images.dmca.com .intljs.rmtag.com .linksynergy.com .mackeeper.com .mpnrs.com .msn.com .optimizely.com .yabidos.com .s.yimg.com .secure.ace-tag.advertising.com .secure.leadback.advertising.com .shopperapproved.com .tagmanager.google.com .tribalfusion.com .twimg.com .twitter.com ws://.hotjar.com wss://.hotjar.com .www1.mpnrs.com .youtube.com data: .2mdn.net .pagead2.googlesyndication.com .glotgrx.com .lporirxe.com .exelator.com .owox.com .liadm.com .outbrain.com .visualwebsiteoptimizer.com .yahoo.co.jp .apimzb-adserver.cloudmccloud.com .3lift.com .surveygizmo.com .surveygizmolibrary.s3.amazonaws.com mc.yandex.ru cx.atdmt.com .baidu.com .gstatstrk.com .cdn.onesignal.com .onesignal.com .rtmark.net .taboola.com .zoomsupport.com .cloudmccloud.com linkconnector.com .linkconnector.com .linkedin.com https://p.adsymptotic.com .clarity.ms .lfeeder.com static-cdn.mackeeper.com .imcounting.com .pinterest.com https://zchat.account.clario.co/images/ https://files.clario.co/images/ https://zchat.account.sz.clario.co/images/;script-src 'self' 'unsafe-inline' 'unsafe-eval' .a.disquscdn.com widget.trustpilot.com .adsage.com .adsitrx.com .analytics.yahoo.com .b2c.com .bing.com disqus.com .disqus.com .doubleclick.net .facebook.com .facebook.net .flowplayer.org .fqtag.com .google.com .google.com.ua .googleadservices.com .google-analytics.com .googleapis.com .googletagmanager.com .googletagservices.com .gstatic.com .hotjar.com .i.ytimg.com .images.dmca.com .intljs.rmtag.com .linksynergy.com .mackeeper.com .mpnrs.com .msn.com .optimizely.com .yabidos.com s.yimg.com .secure.ace-tag.advertising.com .secure.leadback.advertising.com .shopperapproved.com .tagmanager.google.com .tribalfusion.com .twimg.com .twitter.com ws://.hotjar.com wss://.hotjar.com .www1.mpnrs.com .youtube.com l2.io .inspectlet.com .googlesyndication.com .sagetrc.com .glotgrx.com .lporirxe.com b-code.liadm.com .outbrain.com .visualwebsiteoptimizer.com .cloudfront.net .yimg.jp .addtocalendar.com .yahoo.co.jp blob: .surveygizmo.com .surveygizmolibrary.s3.amazonaws.com .s.ytimg.com .typeform.com .calendly.com .linkconnector.com mc.yandex.ru .js.ad-score.com .baidu.com .cdn.onesignal.com .onesignal.com .rtmark.net .taboola.com .engine.4dsply.com .engine.spotscenered.info .engine.3dspk.com .we3red.com .engine.asadap.com .engine.nictelroalps.com .engine.liondigitalserving.com .engine.addroplet.com .beritapria.com cdnjs.cloudflare.com .clickcease.com .sentry-cdn.com .criteo.net .criteo.com https://snpa.licdn.com linkconnector.com .dwin1.com .awin1.com .zenaps.com .the.sciencebehindecommerce.com .licdn.com .liadm.com .clarity.ms .adcell.com .lfeeder.com .pinimg.com https://zchat.account.sz.mackeeper.com https://zchat.account.mackeeper.com static-cdn.mackeeper.com;style-src 'self' 'unsafe-inline' .doubleclick.net .flowplayer.org .mackeeper.com .twimg.com .twitter.com .a.disquscdn.com .disqus.com .googleapis.com .fonts.gstatic.com .referrer.disqus.com .google.com .google.com.ua .addtocalendar.com .surveygizmo.com .cdn.onesignal.com .onesignal.com https://zchat.account.sz.mackeeper.com https://zchat.account.mackeeper.com static-cdn.mackeeper.com .googletagmanager.com;font-src 'self' data: .doubleclick.net .mackeeper.com .twimg.com .twitter.com fonts.googleapis.com fonts.gstatic.com .surveygizmo.com https://zchat.account.sz.mackeeper.com https://zchat.account.mackeeper.com static-cdn.mackeeper.com;object-src .doubleclick.net .flowplayer.org .mackeeper.com .twimg.com .twitter.com .pagead2.googlesyndication.com .liadm.com static-cdn.mackeeper.com;connect-src 'self' .mackeeper.com .hotjar.com ws://.hotjar.com wss://.hotjar.com .g.doubleclick.net .lcidc.liadm.com .google-analytics.com .api.ipify.org .mc.yandex.ru mc.yandex.ru .data.ad-score.com .baidu.com .pushdata.onesignal.com:* .onesignal.com .taboola.com .hotjar.io .clickcease.com s.yimg.com .facebook.com .google.com bat.bing.com sentry.cloudmccloud.com .liadm.com .macupdate.com https://api.account.mackeeper.com https://api.account.sz.mackeeper.com https://api-ne.mackeeper.com .adcell.com .clarity.ms .lfeeder.com .pinterest.com *.static-cdn.mackeeper.com https://crm.account.clario.co/chat-api/v2/ https://crm.account.mackeeper.com https://chat-crm.account.mackeeper.com static-cdn.mackeeper.com https://cdn.linkedin.oribi.io/ https://crm.mackeeper.com/chat-api/v2/ https://chat-crm.account.clario.co/v2/ https://zchat.account.clario.co/images/ https://files.clario.co/images/ https://zchat.account.sz.clario.co/images/ set-cookie: XSRF-TOKEN=eyJpdiI6Ikx4UFB2NXIraVwvWTRPYlB5S3Mzb2NBPT0iLCJ2YWx1ZSI6IjBDUlNQbldERnBiVWlzRHk5TDA4dUF2aDQrb1Bhbk50d0o2cU9EN01POXJGVGZtMkl0Sm9qTmhRbVhiZXBIRERWNUdpN2RoUXptVzJEZ29JM0NlUHBtNmdBMm9nN1dmQ3dWOFU3QUVmOHlBd1BTcWQ1NUM0TGpcL1lNXC9nQXNsM3IiLCJtYWMiOiIzODNmMjUxZTVjOTI2YjY3OGRhMmQ2ZDEwMThmMGI2YzI0ZGMyZWI1NDUzMDRmZmI5N2U5YTFkMjlmN2M0OGNhIn0%3D; expires=Thu, 18-May-2023 10:32:39 GMT; Max-Age=7200; path=/; secure; samesite=lax mackeeper_session=eyJpdiI6IjVpWXFYT2w4ODNsS0RFd3NGNlY0VVE9PSIsInZhbHVlIjoiUnRhaDN5b25MSFE3b1ZJbHJtWmUzN3BLY2o4QTVYUFwvdlJUVURtUHF3bHBEMVhEeTJhZ25DK2JwMEtzQ1ExOWhxaWZoMEFYVDJLZ091QmNmS2Z2Z0JyUXdUZGRQUFBHVEtQN1VtanNIeDF2ZEVBUGRFdWRUcjNOVDlSTU8zbXNzIiwibWFjIjoiOWIxOGI2NGRkYThlZDQ2NzAyMTA1Y2MyZTkxYjE1ZGFkZDE3Zjg4NTY5Y2UxZDk4ZmRkMGRiNzc4M2EwYzY2MyJ9; expires=Thu, 18-May-2023 10:32:39 GMT; Max-Age=7200; path=/; secure; httponly; samesite=lax get_params_landings=%7B%22rtkcid%22%3A%226465e28a7a07ac0001776994%22%2C%22rtkcmpid%22%3A%22627a315b1b910300011dd3ae%22%2C%22tid%22%3A%22Affiliate%20-%20Increased%20Hybrid%20%28197.11%29%20-%20Shlomi%22%2C%22utm_source%22%3A%22%22%2C%22utm_medium%22%3A%22%22%2C%22pubid%22%3A%22%22%7D; expires=Fri, 19-May-2023 08:32:38 GMT; Max-Age=86399; path=/; domain=.mackeeper.com; secure; samesite=lax guid=mg-f71a127b-7d40-4bd2-8f91-c4ae0ff3079d; expires=Tue, 14-Nov-2023 08:32:39 GMT; Max-Age=15552000; path=/; domain=.mackeeper.com; secure; samesite=lax globalAffid=mc-6465e28ba62efd6f54c460b9; expires=Fri, 17-May-2024 08:32:39 GMT; Max-Age=31536000; path=/; domain=.mackeeper.com; secure; samesite=lax country=NO; expires=Tue, 14-Nov-2023 08:32:39 GMT; Max-Age=15552000; path=/; domain=.mackeeper.com; secure; samesite=lax strict-transport-security: max-age=31536000; includeSubDomains x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: : allow-from https://www.youtube.com https://giphy.com https://vimeo.com https://mackeeper.com https://www.slideshare.net expect-ct: max-age=60 content-encoding: gzip request-id: 27eecf0e0706cbd30ba55258ff2f0e41 X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	143.204.48.16		471 B
URL ocsp.r2m01.amazontrust.com/ IP 143.204.48.16:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash ba2f7f09a79aab4a1013d0adfdf1a0ae 863466454aa76abd715c361387e14984e77a0a4f 8234de307d3145adcdac4f814e58b7182f0aec5025a21c03cfef7491529f05b3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=7200' Date: Thu, 18 May 2023 08:32:39 GMT Server: ECAcc (dcb/7EC2) X-Cache: Miss from cloudfront Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: aXFYB2_tAqr5OJtFlOiSSKZiuX_kSDiQmcL0duX8njfJ_0pk-VMiaA==`

	fonts.googleapis.com/css?family=Roboto:400	142.250.74.138	200 OK	1.0 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400 IP 142.250.74.138:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT File type gzip compressed data, max compression\012- data Size 1.0 kB (1014 bytes) Hash 013cc8be315f576f2becf3d84d736571 75ffe8b29cb5a3cb72e39bbb8b814a4543fee37a c2927db39e8d77728cee4e8cf6651f66923fc46ad67209d5c5af0fd8dc519f04 HTTP Headers `GET /css?family=Roboto:400 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 18 May 2023 08:32:39 GMT date: Thu, 18 May 2023 08:32:39 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 74c738e37dab4dc4af7ae0ed5d6a3859 58b61f9aff4ccd16f5f7d2fb6a08dadbf98e7930 f2aeb01b70e69bc694f3db410a8049039eed0b3f36fed7829cccf3cb5a1d3698 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 18 May 2023 08:32:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/antivirus.webp	54.230.111.123	200 OK	3.9 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/antivirus.webp IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 3.9 kB (3870 bytes) Hash 89957e8f2be4898a8993bad5a4eb8bc9 44217e0030e4d50570ac8d08604e9fbf565672a4 44191bad089954dca074d9fd7547b01bc4e3f27959bc0733f57a9c4247db1297 HTTP Headers GET /mk-land/dist/images/landings/197_13/antivirus.webp HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/octet-stream content-length: 3870 date: Wed, 17 May 2023 09:39:45 GMT x-amz-replication-status: COMPLETED last-modified: Fri, 12 May 2023 11:42:58 GMT etag: "89957e8f2be4898a8993bad5a4eb8bc9" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: HEmYiqI2RCv9k0eyVHgtBkdgdC5A_H4a accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: q5NA3w01-L0-iYYr4DwNqSGqKVhrATvjTL9XOLbzirkC5nMHIQCfFg== age: 82375 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/adware.webp	54.230.111.123	200 OK	2.5 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/adware.webp IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 2.5 kB (2524 bytes) Hash d770a2935cead091a304f47f09584e25 1ad079caf5f7ac6d5db63428acb1119ec96376b3 40f99f4ff67260ee52ab128e94ad3de15b673451aad684d5919098a7e662e167 HTTP Headers GET /mk-land/dist/images/landings/197_13/adware.webp HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/octet-stream content-length: 2524 date: Wed, 17 May 2023 09:39:45 GMT x-amz-replication-status: COMPLETED last-modified: Fri, 12 May 2023 11:42:59 GMT etag: "d770a2935cead091a304f47f09584e25" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: dmubA_XG1L74BCHjit1S.IBwKNtZT0BA accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 8AT4vzFn49lF0mhDrHKucD1mo1l6ndobpXVel8hec6QbLB0Ju3wBlg== age: 82375 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image2.svg	54.230.111.123	200 OK	5.1 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image2.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 5.1 kB (5106 bytes) Hash 98b6078f19191cd3fe399c8aba76ac05 7c42e8c5ac36039706c2ccde66b2db26d289061d c6880d382ce243df255fe29eca98cea285b5ab9d7d5f37af7430be1a579d4dc0 HTTP Headers GET /mk-land/dist/svg/landings/197_12/main-image2.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/svg+xml date: Wed, 17 May 2023 09:37:02 GMT x-amz-replication-status: COMPLETED last-modified: Tue, 04 Apr 2023 13:08:47 GMT etag: W/"541ba360e0aa847b3788de6b471ba3e2" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: UpgyREQ7fX1Pde_XhCa4c8DTqcVKPknl server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 05x2r1YYqw4AxgH-pTPtMQzeczkJFshB9MHbu34T-Xmxx_mA0ZUh_w== age: 82538 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-PVNC4DL	142.250.74.40	200 OK	102 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PVNC4DL IP 142.250.74.40:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type ASCII text, with very long lines (38639) Size 102 kB (101460 bytes) Hash 283f57cd9eac7cbe69aaa0a799e21b24 97f08462dd262ca57d9a10f994e5050e7df0fd0d c202d564505efd0df7f44a0e4cb15122954d1f5f52cc6265a3a3f684b5a8d74b HTTP Headers `GET /gtm.js?id=GTM-PVNC4DL HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 18 May 2023 08:32:40 GMT expires: Thu, 18 May 2023 08:32:40 GMT cache-control: private, max-age=900 last-modified: Thu, 18 May 2023 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 101460 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Bold.otf	54.230.111.123	200 OK	56 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Bold.otf IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type gzip compressed data, from Unix\012- data Size 56 kB (56444 bytes) Hash 81084a64b4f26adf0f504756fd35938d 68e67c56a1d3e05a2ca8738905dde80c8b685eaa 485a4306283b549b20fc43af49cfbd0584ebfb7d6b4224e86c1b1c444a1d08b3 HTTP Headers GET /mk-land/dist/fonts/MarkOT-Bold.otf HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: font/ttf date: Wed, 17 May 2023 09:39:46 GMT access-control-allow-origin: https://app2.mackeeperaff.com access-control-allow-methods: GET access-control-allow-credentials: true x-amz-replication-status: COMPLETED last-modified: Fri, 11 Sep 2020 13:01:12 GMT etag: W/"336e38c18c3ac1666fa496c919b08eca" cache-control: public, max-age=604800 x-amz-version-id: _SyAJ1U0XNp0EgWFZoSm7jR1ZmFIsGhh server: AmazonS3 content-encoding: gzip vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: BSxzdawjxxj9rxiJ4yc1DjC-8MWQmcPHT5KY_Zh9PJrgj1ZtonpLSg== age: 82375 X-Firefox-Spdy: h2

	widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293	143.204.55.101		2.1 kB
URL widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 IP 143.204.55.101:0 ASN #16509 AMAZON-02 Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6826) Size 2.1 kB (2144 bytes) Hash 56a7599b9e77fe4786d628b625e7024b 5c36e8da38b24c64f33d924c788056a0501f0bb2 e7eed928596fc3d1c1180c26f81e1847c6aac858cca19c4a69fd9f1220ef5ff3 HTTP Headers GET /trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: text/html content-length: 2144 last-modified: Mon, 08 May 2023 11:44:09 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Thu, 18 May 2023 07:49:05 GMT cache-control: max-age=86400 etag: "1307e3fd5846bacc989c2fd05996f010" x-cache: Hit from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: pkiJw7492-9mWKJ0kvgh_WwPzD_zZR8i_akM-3jEeTnJUzvgNi94yA== age: 2616 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/default/script.min.js?59d9d7f19a458250ad83	54.230.111.123	200 OK	45 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/default/script.min.js?59d9d7f19a458250ad83 IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Size 45 kB (45431 bytes) Hash 7607185f82beff9fe4de687d9aed0869 f5f85b8cfdd5dfa6c276782ebcd6fb05398023eb dfc7f86784baae47b26cc40fdbffba52d42d06c2455c27d2f3f6016f260558ad HTTP Headers `GET /mk-land/dist/default/script.min.js?59d9d7f19a458250ad83 HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Wed, 17 May 2023 09:37:01 GMT x-amz-replication-status: COMPLETED last-modified: Wed, 17 May 2023 09:17:25 GMT etag: W/"65748e90284ca17e733a0b77b906e79c" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: DZV3Q5fxbTmt6UUjngwEgssydv1FA7nL server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: k8wz5RmiDNrG6iA2YhQ3qS_dFKdlIrhVa_OjDk6tfQF0ryutCj7b8Q== age: 82539 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-GYTXD89N1W&l=dataLayer&cx=c	142.250.74.40	200 OK	76 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-GYTXD89N1W&l=dataLayer&cx=c IP 142.250.74.40:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type ASCII text, with very long lines (3288) Size 76 kB (76503 bytes) Hash a11bc510de3b2f2898ab10d43f26b4bd 52deabc7ce3473320cf6186ba0dd49cdf26ff457 2f806ef01317c2c89a3d4099b56f9514476b58dbc321303f93a7a2f68d2006b8 HTTP Headers `GET /gtag/js?id=G-GYTXD89N1W&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 18 May 2023 08:32:40 GMT expires: Thu, 18 May 2023 08:32:40 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 76503 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	dvcasha2.ocsp-certum.com/	23.36.79.17		1.6 kB
URL dvcasha2.ocsp-certum.com/ IP 23.36.79.17:0 ASN #20940 Akamai International B.V. File type data Size 1.6 kB (1599 bytes) Hash 38d5f83a42db81546c3d44c08d6a0cf1 625c2d1b479130e0f39df88bffca9b8e39897f04 571b9860d8cb30dd811670d222995b8285f37f9133774eab1985a365b41398bb HTTP Headers `POST / HTTP/1.1 Host: dvcasha2.ocsp-certum.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 1599 X-Cached: STALE Strict-Transport-Security: max-age=63072000,includeSubDomains,preload Cache-Control: max-age=128 Date: Thu, 18 May 2023 08:32:40 GMT Connection: keep-alive X-N: S`

	widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=4dbb14ee00006400050fa293&locale=en-US	143.204.55.101	200 OK	418 B
URL GET HTTP/2 widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=4dbb14ee00006400050fa293&locale=en-US IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293#locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (913), with no line terminators Size 418 B (418 bytes) Hash dd5b18460c69ed04c4c64e57755b15bc d4210f819960e49ab4d9cc4f73709d3596c2b436 32e48d1c40168312982c7ebf8978031908cc90fd5d42d2fe552b25b2c7ddaf2b HTTP Headers GET /trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=4dbb14ee00006400050fa293&locale=en-US HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 418 content-encoding: gzip server: Kestrel strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block date: Thu, 18 May 2023 08:32:40 GMT cache-control: public,max-age=1800 etag: "3c78cab4623d48d042a1616a33607d69" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: gcFTwr94xF-V9HLx9bfZrjGNEgu4MW7SG0xxRSrvnsm1UNNJIlJ-GQ== age: 258 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Source+Sans+Pro:400,600	142.250.74.138	200 OK	654 B
URL GET HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:400,600 IP 142.250.74.138:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT File type ASCII text Size 654 B (654 bytes) Hash ca2f50ca538d45d17842debcd1637726 086ee496e57a641709bf0bb898b12dd1e0fc7077 30ece5ac4e330eb0d7d2f0ff3096f914def5a156abfd9f6f0352d03bcf40311b HTTP Headers `GET /css?family=Source+Sans+Pro:400,600 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 18 May 2023 08:32:39 GMT date: Thu, 18 May 2023 08:32:39 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af	143.204.55.101	204 No Content	0 B
URL GET HTTP/2 widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293#locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /stats/TrustboxView?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content cache-control: no-store,no-cache date: Thu, 18 May 2023 08:32:40 GMT pragma: no-cache server: Kestrel strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: ki_19ZNEsL3Ogew__teyAyoeqO8jyhfSMvjcHTJ-D3OFebug-d57qA== X-Firefox-Spdy: h2`

	tr-rc.lfeeder.com/?sid=ywVkO4XWPeW7Z6Bj&data=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	143.204.55.92	200 OK	43 B
URL GET HTTP/2 tr-rc.lfeeder.com/?sid=ywVkO4XWPeW7Z6Bj&data=eyJnYVRyYWNraW5nSWRzIjpbIlVBLTE1NzU5Njc4Mi0xIl0sImdhTWVhc3VyZW1lbnRJZHMiOlsiRy1HWVRYRDg5TjFXIl0sImdhQ2xpZW50SWRzIjpbIjEyMTE1MTA2MzIuMTY4NDM5ODc2MCJdLCJjb250ZXh0Ijp7ImxpYnJhcnkiOnsibmFtZSI6ImxmdHJhY2tlciIsInZlcnNpb24iOiIyLjYxLjAifSwicGFnZVVybCI6Imh0dHBzOi8vYXBwMi5tYWNrZWVwZXJhZmYuY29tL2xhbmQvMTk3LjEzLz9ydGtjaWQ9NjQ2NWUyOGE3YTA3YWMwMDAxNzc2OTk0JnJ0a2NtcGlkPTYyN2EzMTViMWI5MTAzMDAwMTFkZDNhZSZ0aWQ9QWZmaWxpYXRlJTIwLSUyMEluY3JlYXNlZCUyMEh5YnJpZCUyMCgxOTcuMTEpJTIwLSUyMFNobG9taSZ1dG1fc291cmNlPSZ1dG1fbWVkaXVtPSZwdWJpZD0iLCJwYWdlVGl0bGUiOiJNYWNLZWVwZXIiLCJyZWZlcnJlciI6IiJ9LCJldmVudCI6InRyYWNraW5nLWV2ZW50IiwiY2xpZW50RXZlbnRJZCI6Ijk4MzdmYTYwY2VjOTdmOGUiLCJzY3JpcHRJZCI6Inl3VmtPNFhXUGVXN1o2QmoiLCJjb29raWVzRW5hYmxlZCI6dHJ1ZSwiY29uc2VudExldmVsIjoibm9uZSIsImFub255bWl6ZUlwIjpmYWxzZSwibGZDbGllbnRJZCI6IkxGMS4xLjBiMGI5YjViZmYwYWFhNmMuMTY4NDM5ODc2MDQzMyIsImZvcmVpZ25Db29raWVzIjpbXSwicHJvcGVydGllcyI6e30sImF1dG9UcmFja2luZ0VuYWJsZWQiOnRydWUsImF1dG9UcmFja2luZ01vZGUiOiJvbl9zY3JpcHRfbG9hZCJ9 IP 143.204.55.92:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subject.lfeeder.com Fingerprint69:6A:77:EB:4E:49:95:F6:0B:CA:45:E3:DE:88:8A:41:ED:E9:01:4A ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash 325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b HTTP Headers GET /?sid=ywVkO4XWPeW7Z6Bj&data=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 HTTP/1.1 Host: tr-rc.lfeeder.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: image/gif content-length: 43 server: CloudFront date: Thu, 18 May 2023 08:32:40 GMT x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 4HvRDaMmNmPjyZn0VBdWuEwfTZ5HzChZsK9Fe5mB6DADOHcBrCz_pA== X-Firefox-Spdy: h2`

	static-cdn.mackeeper.com/mk-land/dist/images/favicon_ua.webp	54.230.111.123	200 OK	854 B
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/images/favicon_ua.webp IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 854 B (854 bytes) Hash 2fdb32f5144b860b1efeea8ce9f1c92d 6f590f091bc32dbf589de56edd695a9e8bc4568d dae7276d7bd641876e49c1aa8e6db0f0f448d54abf8a5c62720eacffd8ef9eb0 HTTP Headers `GET /mk-land/dist/images/favicon_ua.webp HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: application/octet-stream content-length: 854 date: Wed, 17 May 2023 09:39:47 GMT x-amz-replication-status: COMPLETED last-modified: Mon, 04 Apr 2022 09:52:27 GMT etag: "2fdb32f5144b860b1efeea8ce9f1c92d" cache-control: public, max-age=604800 x-amz-version-id: ol9VlsO2dTwSbBZPzAkjCHloEMn8CD_x accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: LKfA0D1G4_68HbyKcUgbWzWZt73etQORdJLCsAyYOBwlBp3pJUxdRg== age: 82374 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 6055ec3f0bc0cc4ef0c2bedd4efa0853 ab45d3ca7fc239004ad676c2f6230888325a97bc f2beccb8ecee1ba7cbb6b32e6280e1b3da16640cae4c3bb6b346b4530a2e5c2a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 18 May 2023 08:32:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 17086e67872573c91e1961c691e0318c 07a5fd603bd0d7e7b92aabcd214e6902019f16e4 b40f3c428d13b01ec88db0d377a8b32b8c5ef1c4d881f40225e54aaba88d075a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 18 May 2023 08:32:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bat.bing.com/bat.js	204.79.197.200	200 OK	12 kB
URL GET HTTP/2 bat.bing.com/bat.js IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7 ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT File type Unicode text, UTF-8 text, with very long lines (41435), with no line terminators Size 12 kB (12183 bytes) Hash 12b0721aebdc9816a2a99bcce751c1b3 6f01d33b811a39a95dbf0ada288306e1376099e1 679804e244b4127b7ecd99a513b57d6a4f91866410e16da69ce02f98f534051d HTTP Headers `GET /bat.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK cache-control: private,max-age=1800 content-length: 12183 content-type: application/javascript content-encoding: gzip last-modified: Thu, 11 May 2023 18:08:27 GMT accept-ranges: bytes etag: "80df77953384d91:0" vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: D7B00E4048414AA5A595192F04BCC3C0 Ref B: OSL30EDGE0417 Ref C: 2023-05-18T08:32:40Z date: Thu, 18 May 2023 08:32:40 GMT X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GYTXD89N1W&cid=1211510632.1684398760&gtm=45je35a0&aip=1&z=514226595	142.250.74.35	200 OK	42 B
URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GYTXD89N1W&cid=1211510632.1684398760&gtm=45je35a0&aip=1&z=514226595 IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subject.google.no FingerprintDC:04:40:A7:66:FE:43:A4:60:74:CB:F5:05:B7:C5:30:60:15:0E:C8 ValidityMon, 24 Apr 2023 12:02:59 GMT - Mon, 17 Jul 2023 12:02:58 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GYTXD89N1W&cid=1211510632.1684398760&gtm=45je35a0&aip=1&z=514226595 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 18 May 2023 08:32:40 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	app2.mackeeperaff.com/land/api/send-event	52.204.186.78	200 OK	120 B
URL POST HTTP/2 app2.mackeeperaff.com/land/api/send-event IP 52.204.186.78:443 ASN #14618 AMAZON-AES Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectmkaff.com Fingerprint8F:7A:F4:B2:4E:7F:BA:7B:D4:62:F0:73:FA:74:2E:7E:53:57:F2:A5 ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 120 B (120 bytes) Hash 79d51f0cc8d17004ec24b7e54d1306dc e6e10863c3c386dc8cfdee20f36122a91cb1e02e 3e3d2801a71e741fe7502477a807849259abaaf6add16e52378c0e3a60be36a6 HTTP Headers POST /land/api/send-event HTTP/1.1 Host: app2.mackeeperaff.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json X-CSRF-TOKEN: zcgpC7NS2iL6pcAH1eEqQwXO6Emrby5OYa4GKGSG X-XSRF-TOKEN: eyJpdiI6Ikx4UFB2NXIraVwvWTRPYlB5S3Mzb2NBPT0iLCJ2YWx1ZSI6IjBDUlNQbldERnBiVWlzRHk5TDA4dUF2aDQrb1Bhbk50d0o2cU9EN01POXJGVGZtMkl0Sm9qTmhRbVhiZXBIRERWNUdpN2RoUXptVzJEZ29JM0NlUHBtNmdBMm9nN1dmQ3dWOFU3QUVmOHlBd1BTcWQ1NUM0TGpcL1lNXC9nQXNsM3IiLCJtYWMiOiIzODNmMjUxZTVjOTI2YjY3OGRhMmQ2ZDEwMThmMGI2YzI0ZGMyZWI1NDUzMDRmZmI5N2U5YTFkMjlmN2M0OGNhIn0= Content-Length: 103 Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Cookie: XSRF-TOKEN=eyJpdiI6Ikx4UFB2NXIraVwvWTRPYlB5S3Mzb2NBPT0iLCJ2YWx1ZSI6IjBDUlNQbldERnBiVWlzRHk5TDA4dUF2aDQrb1Bhbk50d0o2cU9EN01POXJGVGZtMkl0Sm9qTmhRbVhiZXBIRERWNUdpN2RoUXptVzJEZ29JM0NlUHBtNmdBMm9nN1dmQ3dWOFU3QUVmOHlBd1BTcWQ1NUM0TGpcL1lNXC9nQXNsM3IiLCJtYWMiOiIzODNmMjUxZTVjOTI2YjY3OGRhMmQ2ZDEwMThmMGI2YzI0ZGMyZWI1NDUzMDRmZmI5N2U5YTFkMjlmN2M0OGNhIn0%3D; mackeeper_session=eyJpdiI6IjVpWXFYT2w4ODNsS0RFd3NGNlY0VVE9PSIsInZhbHVlIjoiUnRhaDN5b25MSFE3b1ZJbHJtWmUzN3BLY2o4QTVYUFwvdlJUVURtUHF3bHBEMVhEeTJhZ25DK2JwMEtzQ1ExOWhxaWZoMEFYVDJLZ091QmNmS2Z2Z0JyUXdUZGRQUFBHVEtQN1VtanNIeDF2ZEVBUGRFdWRUcjNOVDlSTU8zbXNzIiwibWFjIjoiOWIxOGI2NGRkYThlZDQ2NzAyMTA1Y2MyZTkxYjE1ZGFkZDE3Zjg4NTY5Y2UxZDk4ZmRkMGRiNzc4M2EwYzY2MyJ9 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Thu, 18 May 2023 08:32:40 GMT content-type: application/json server: nginx vary: Accept-Encoding cache-control: no-cache, private x-ratelimit-limit: 180 x-ratelimit-remaining: 179 strict-transport-security: max-age=31536000; includeSubDomains x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: : allow-from https://www.youtube.com https://giphy.com https://vimeo.com https://mackeeper.com https://www.slideshare.net expect-ct: max-age=60 content-encoding: gzip request-id: 90df64b9554d73ce5a5290489e23b73b X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 17086e67872573c91e1961c691e0318c 07a5fd603bd0d7e7b92aabcd214e6902019f16e4 b40f3c428d13b01ec88db0d377a8b32b8c5ef1c4d881f40225e54aaba88d075a HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 18 May 2023 08:32:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 6d0a91cf763371e6f838a8177251ad16 a74e14bdbbcb911505c587f9d44cffd0e22ea0f2 457881958286b991f5a8656874a075794ff53380195729eedac54af8b5121a55 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 18 May 2023 08:32:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	s.yimg.com/wi/ytc.js	87.248.119.252	200 OK	6.1 kB
URL GET HTTP/2 s.yimg.com/wi/ytc.js IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint6E:2F:30:B9:A3:FC:58:90:E8:A6:E6:0F:B5:08:0E:63:1D:59:94:F0 ValidityMon, 10 Apr 2023 00:00:00 GMT - Wed, 31 May 2023 23:59:59 GMT File type ASCII text, with very long lines (17649), with no line terminators Size 6.1 kB (6104 bytes) Hash e896178ac557f4e393e0a05405c33633 5df2c56160b6ba806cf7d9bf209ed48f3c5ef4ad 72750dc5cdcaa538491728c6a58d6d1d97d28024f227ce7f13e63ddeba908226 HTTP Headers `GET /wi/ytc.js HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK x-amz-id-2: cwClw8Qr6VxdKgH4jT0CtaQRbGIlOBLHw6wEuFrt9IsLlc4EHeW9DzPU6+eOYlhthZIOPrdbo7c= x-amz-request-id: P4GWNRW6WYTQ56VB date: Thu, 18 May 2023 08:32:33 GMT last-modified: Wed, 26 Apr 2023 11:08:30 GMT x-amz-expiration: expiry-date="Fri, 31 May 2024 00:00:00 GMT", rule-id="oath-standard-lifecycle" etag: "e896178ac557f4e393e0a05405c33633-df" x-amz-server-side-encryption: AES256 cache-control: public,max-age=3600 x-amz-version-id: JGW8wXvjjj83MVu5c5k1Bd2u8_DD2rYy accept-ranges: bytes content-type: application/javascript server: ATS referrer-policy: no-referrer-when-downgrade vary: Origin, Accept-Encoding age: 9 content-encoding: gzip strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff X-Firefox-Spdy: h2

	bat.bing.com/action/0?ti=36002432&tm=gtm002&Ver=2&mid=4741ebfa-fb36-4fb2-b1f0-31c6b3b2bd93&sid=8da2e010f55611eda2ad31d6d4dfd117&vid=8da2eb00f55611ed90c71bbf6a11cf6a&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=MacKeeper&p=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&r=&lt=1882&evt=pageLoad&sv=1&rn=602537	204.79.197.200	204 No Content	0 B
URL GET HTTP/2 bat.bing.com/action/0?ti=36002432&tm=gtm002&Ver=2&mid=4741ebfa-fb36-4fb2-b1f0-31c6b3b2bd93&sid=8da2e010f55611eda2ad31d6d4dfd117&vid=8da2eb00f55611ed90c71bbf6a11cf6a&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=MacKeeper&p=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&r=&lt=1882&evt=pageLoad&sv=1&rn=602537 IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7 ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/0?ti=36002432&tm=gtm002&Ver=2&mid=4741ebfa-fb36-4fb2-b1f0-31c6b3b2bd93&sid=8da2e010f55611eda2ad31d6d4dfd117&vid=8da2eb00f55611ed90c71bbf6a11cf6a&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=MacKeeper&p=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&r=&lt=1882&evt=pageLoad&sv=1&rn=602537 HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 204 No Content cache-control: no-cache, must-revalidate pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT set-cookie: MUID=3D1D16676C9760C9136B05726DC061E1; domain=.bing.com; expires=Tue, 11-Jun-2024 08:32:41 GMT; path=/; SameSite=None; Secure; Priority=High; strict-transport-security: max-age=31536000; includeSubDomains; preload access-control-allow-origin: * x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 9CAC5C2D6FE441AC89707ECF697223F7 Ref B: OSL30EDGE0417 Ref C: 2023-05-18T08:32:41Z date: Thu, 18 May 2023 08:32:40 GMT X-Firefox-Spdy: h2

	bat.bing.com/p/action/36002432.js	204.79.197.200	200 OK	1.5 kB
URL GET HTTP/2 bat.bing.com/p/action/36002432.js IP 204.79.197.200:443 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerMicrosoft Corporation Subjectwww.bing.com FingerprintC6:94:6C:D5:87:F6:E9:11:E4:40:13:7F:80:49:D3:4C:A0:04:89:C7 ValidityThu, 16 Feb 2023 03:47:45 GMT - Wed, 16 Aug 2023 03:47:45 GMT File type ASCII text, with CRLF line terminators Size 1.5 kB (1497 bytes) Hash 7242eafecdf0ba297efb8e72bef88bd7 eda00fcaf38325dedb0f33f885b82ef1fabdc50e fea64b1b231f634af9583da1bf6fa5a4c175c5aef0e59fc9c5eeef55bfe20310 HTTP Headers `GET /p/action/36002432.js HTTP/1.1 Host: bat.bing.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK cache-control: private,max-age=60 content-length: 1497 content-type: application/javascript; charset=utf-8 content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-cache: CONFIG_NOCACHE accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version x-msedge-ref: Ref A: 8DC9BCCB50AE46F98CFE92E814EE0B37 Ref B: OSL30EDGE0417 Ref C: 2023-05-18T08:32:41Z date: Thu, 18 May 2023 08:32:40 GMT X-Firefox-Spdy: h2

	s.yimg.com/wi/config/10013499.json	87.248.119.252	200 OK	2 B
URL GET HTTP/2 s.yimg.com/wi/config/10013499.json IP 87.248.119.252:443 ASN #203220 Yahoo! UK Services Limited Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerDigiCert Inc Subject.api.fantasysports.yahoo.com Fingerprint6E:2F:30:B9:A3:FC:58:90:E8:A6:E6:0F:B5:08:0E:63:1D:59:94:F0 ValidityMon, 10 Apr 2023 00:00:00 GMT - Wed, 31 May 2023 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers `GET /wi/config/10013499.json HTTP/1.1 Host: s.yimg.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method x-amz-request-id: 6M0Z7SR8MM1ZVSES x-amz-id-2: YzJeYwtLr8kY1qDBDsPutlIoV43pO4k2AYZBW61ao/ENLRnr2N5jRDiX2n7tzNVQkjtKhUlQazzWvHK7posCufdhE4/zNUgOtxlmktWRciQ= content-type: application/json date: Thu, 18 May 2023 08:27:13 GMT server: ATS referrer-policy: no-referrer-when-downgrade cache-control: public,max-age=3600 content-length: 2 age: 328 strict-transport-security: max-age=31536000 expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only" x-xss-protection: 1; mode=block x-content-type-options: nosniff X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image1-before.svg	54.230.111.123	200 OK	3.3 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image1-before.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3547), with no line terminators Size 3.3 kB (3335 bytes) Hash d752b43bc112d5b72b9737c17d29235b 96826d546fbabd9c0c1e94b835ee99e24285f9f0 10fcd77ea22588f599f601dd04044e6413e42f4b5ad783bc4c494a20a9acfdf0 HTTP Headers GET /mk-land/dist/svg/landings/197_12/main-image1-before.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/svg+xml date: Wed, 17 May 2023 09:37:02 GMT x-amz-replication-status: COMPLETED last-modified: Tue, 04 Apr 2023 13:08:47 GMT etag: W/"041e990158fc63d46bf06564fcd09a1b" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: 9pouhN7wlER1DZI7OSPMh_Q3Uav0C_dp server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: kDaPGbXVeaJeg0Shqzwuw128SocDIzIeaOjSOpcQi1UUBblrtKy1og== age: 82538 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/critical/script.min.js?894b2433ffbc5edeff6d	54.230.111.123	200 OK	70 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/critical/script.min.js?894b2433ffbc5edeff6d IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type Size 70 kB (69734 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /mk-land/dist/critical/script.min.js?894b2433ffbc5edeff6d HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Wed, 17 May 2023 09:37:01 GMT x-amz-replication-status: COMPLETED last-modified: Wed, 17 May 2023 09:18:18 GMT etag: W/"d0854157c5a606ee569ba467cebcaf3d" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: UDZcnPEJLaHKyngGMhl38WOIT8l7xA_H server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: RISOjcjW0C0YYsq5LdcTlU2h6q3pjO5VOxYQy7AVVbYz-bG1awSkXQ== age: 82539 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/safe.webp	54.230.111.123	200 OK	3.9 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/images/landings/197_13/safe.webp IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 3.9 kB (3850 bytes) Hash e5f7ee7a33359ca2df4e0764e62fa3f0 9943612f213446dc254490d5e3e6a2cad1234c5c 703842d4f80fb022aac6641c96b73c70124068add4d8960fb0223a48ee06a85e HTTP Headers GET /mk-land/dist/images/landings/197_13/safe.webp HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/octet-stream content-length: 3850 date: Wed, 17 May 2023 09:39:45 GMT x-amz-replication-status: COMPLETED last-modified: Fri, 12 May 2023 11:42:59 GMT etag: "e5f7ee7a33359ca2df4e0764e62fa3f0" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: FaznWKMVxTIeaeb3OV61Y1KXzRBf.Ape accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: uyOmUR-Q5S3DVQ5oMEKsTAkrDIuHKtjAg01S1qAGvAsNbL7Ij_E8WQ== age: 82375 X-Firefox-Spdy: h2

	t.adcell.com/js/trad.js	185.5.82.77	200 OK	57 kB
URL GET HTTP/2 t.adcell.com/js/trad.js IP 185.5.82.77:443 ASN #20546 SOPRADO GmbH Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerUnizeto Technologies S.A. Subjectadcell.com Fingerprint65:11:29:A4:BE:B9:6A:2B:62:F2:64:FA:FD:49:96:75:E4:AC:DB:26 ValidityMon, 22 Aug 2022 10:29:16 GMT - Tue, 22 Aug 2023 10:29:15 GMT File type Size 57 kB (56872 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /js/trad.js HTTP/1.1 Host: t.adcell.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: myracloud date: Thu, 18 May 2023 08:32:40 GMT content-type: text/javascript strict-transport-security: max-age=15768000 content-encoding: gzip vary: accept-encoding expires: Thu, 18 May 2023 08:42:55 GMT cache-control: max-age=900 etag: "myra-83ece6ed" x-cdn: 1 X-Firefox-Spdy: h2`

	widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js	143.204.55.101	200 OK	56 kB
URL GET HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293#locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type Size 56 kB (55725 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /trustboxes/5419b6ffb0d04a076446a9af/main.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: application/x-javascript content-length: 17136 last-modified: Mon, 08 May 2023 11:44:11 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Wed, 17 May 2023 21:18:30 GMT cache-control: max-age=86400 etag: "dc592904280a455012599b68215eae0f" x-cache: Hit from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: R4JIkxtU7DoYxF1rxCfsTFEVQlC1r9aVZ4Lic878sveEqt7bZDzixQ== age: 40451 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT.otf	54.230.111.123	200 OK	91 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT.otf IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type OpenType font data\012- data Size 91 kB (91144 bytes) Hash 106ae5fa4d0e51fa73ed42c3beecda5e 0da40d6e9caa466739878577e2c00141491f4924 f4f918e40a541c456c98ebdb8ea468bf723f7b43ed9b4b22271bc4c9fe0b49e7 HTTP Headers GET /mk-land/dist/fonts/MarkOT.otf HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: font/ttf date: Wed, 17 May 2023 09:39:46 GMT access-control-allow-origin: https://app2.mackeeperaff.com access-control-allow-methods: GET access-control-allow-credentials: true x-amz-replication-status: COMPLETED last-modified: Fri, 11 Sep 2020 13:01:11 GMT etag: W/"106ae5fa4d0e51fa73ed42c3beecda5e" cache-control: public, max-age=604800 x-amz-version-id: Eju.irxG68JYjYuEi7BGXEsqN0F4MTaA server: AmazonS3 content-encoding: gzip vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: PBsI_7W7czVtGye2reoCNRIYyPC9D_ME7Agl5Zc30EG_7mhLTfVPsg== age: 82375 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image1.svg	54.230.111.123	200 OK	2.9 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image1.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3134), with no line terminators Size 2.9 kB (2942 bytes) Hash 534e12999d991ff6cce67ab5a4c0fe69 d2b627288df6f06f56db3cb031c9bcae3d4ee027 5975d7921262244e99c661adbc557d377508dbe5f54e3fdb793408981f4df6ff HTTP Headers GET /mk-land/dist/svg/landings/197_12/main-image1.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/svg+xml date: Wed, 17 May 2023 09:37:02 GMT x-amz-replication-status: COMPLETED last-modified: Tue, 04 Apr 2023 13:08:47 GMT etag: W/"6010d5d0931aaf483478f23639545069" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: ASB2jYWhrfRsU2p52WorxqbymJlOMnxl server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: UZySzvBPqYyg9kWGLP5HkTOoYo5KPR7lGvzNTatfa6ze6Wwo5biFEg== age: 82538 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image2-before.svg	54.230.111.123	200 OK	2.1 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/svg/landings/197_12/main-image2-before.svg IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2335), with no line terminators Size 2.1 kB (2145 bytes) Hash e4e9181b12e9bb82f71aa9d10012ae8a 66e9e61a7c69a5ee046b98a37512f3d4663abbb7 b7c2a12ce87758209de74b095fc9bb55464ca8a3244517572d5cb790ae7eb0cc HTTP Headers GET /mk-land/dist/svg/landings/197_12/main-image2-before.svg HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: image/svg+xml date: Wed, 17 May 2023 09:37:02 GMT x-amz-replication-status: COMPLETED last-modified: Tue, 04 Apr 2023 13:08:47 GMT etag: W/"1e7734dd58e4e7b4b91acfd8fdd98956" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: PbnevY3aAe.GOB.fVYI.VMdXwe_bQRo_ server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: cUj933cHef6CLoSLzdP-Hn26eLOPKKYJzrIVtFbv1TWoy6MIYbgGNQ== age: 82538 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Light.otf	54.230.111.123	200 OK	90 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Light.otf IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type OpenType font data\012- data Size 90 kB (90440 bytes) Hash 48dd0f49a4207634e9062def9074a038 94bf8e061faee2938c0055f6ec18bc5a3ad56520 35594ae59d6b28c9f62dc24060475126908efc3553f8e22cebee41526b9a06fd HTTP Headers GET /mk-land/dist/fonts/MarkOT-Light.otf HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: font/ttf date: Wed, 17 May 2023 09:39:46 GMT access-control-allow-origin: https://app2.mackeeperaff.com access-control-allow-methods: GET access-control-allow-credentials: true x-amz-replication-status: COMPLETED last-modified: Fri, 11 Sep 2020 13:01:11 GMT etag: W/"48dd0f49a4207634e9062def9074a038" cache-control: public, max-age=604800 x-amz-version-id: 0k6awkdioEQDqMMUsMLLZL0d1S0LNdte server: AmazonS3 content-encoding: gzip vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ESBSZTSGPGFlcoXvIxFJK2wND9kiQQ9F4rFaf98s4NUHcLsojBEW0A== age: 82375 X-Firefox-Spdy: h2

	region1.analytics.google.com/g/collect?v=2&tid=G-GYTXD89N1W&gtm=45je35a0&_p=1582817419&_gaz=1&cid=1211510632.1684398760&ul=en-us&sr=1280x1024&_s=1&sid=1684398760&sct=1&seg=0&dl=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&dt=MacKeeper&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-GYTXD89N1W&gtm=45je35a0&_p=1582817419&_gaz=1&cid=1211510632.1684398760&ul=en-us&sr=1280x1024&_s=1&sid=1684398760&sct=1&seg=0&dl=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&dt=MacKeeper&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.32.36:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03 ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-GYTXD89N1W&gtm=45je35a0&_p=1582817419&_gaz=1&cid=1211510632.1684398760&ul=en-us&sr=1280x1024&_s=1&sid=1684398760&sct=1&seg=0&dl=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&dt=MacKeeper&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://app2.mackeeperaff.com date: Thu, 18 May 2023 08:32:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Medium.otf	54.230.111.123	200 OK	88 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/fonts/MarkOT-Medium.otf IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type OpenType font data\012- data Size 88 kB (87740 bytes) Hash 44a8a536b53be74bb2ebfc4fa3403364 45a6c0fc69f768ee1a05f1b77efb5d0f5a066bf9 66dc6bb66edcdf391272792d6649f23408bfc56f81c7dfdec2719635a481ce71 HTTP Headers GET /mk-land/dist/fonts/MarkOT-Medium.otf HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://app2.mackeeperaff.com DNT: 1 Connection: keep-alive Referer: https://static-cdn.mackeeper.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: font/ttf date: Wed, 17 May 2023 09:39:46 GMT access-control-allow-origin: https://app2.mackeeperaff.com access-control-allow-methods: GET access-control-allow-credentials: true x-amz-replication-status: COMPLETED last-modified: Fri, 11 Sep 2020 13:01:12 GMT etag: W/"44a8a536b53be74bb2ebfc4fa3403364" cache-control: public, max-age=604800 x-amz-version-id: adnRDSe0awZldw3c8I6M4tTQa_wDyvz_ server: AmazonS3 content-encoding: gzip vary: Accept-Encoding,Origin x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Pq0xxoSuw8Y0Pvuem6jw4ZcXEzHjy02msufUiN2KW4vYQpANcorYAg== age: 82375 X-Firefox-Spdy: h2

	widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293	143.204.55.101	200 OK	7.9 kB
URL GET HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8017), with no line terminators Size 7.9 kB (7916 bytes) Hash 082c78d79e5e9041189789deb736f449 68047b36b8f64eb20ecbeea39d8bc461203bcb93 648574b5534b488aefa1a1d5b6ffc80cfa0852db767f98e992130480e9359070 HTTP Headers GET /trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html content-length: 2144 last-modified: Mon, 08 May 2023 11:44:09 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Thu, 18 May 2023 07:49:05 GMT cache-control: max-age=86400 etag: "1307e3fd5846bacc989c2fd05996f010" x-cache: Hit from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: pkiJw7492-9mWKJ0kvgh_WwPzD_zZR8i_akM-3jEeTnJUzvgNi94yA== age: 2616 X-Firefox-Spdy: h2

	sc.lfeeder.com/lftracker_v1_ywVkO4XWPeW7Z6Bj.js	143.204.55.63	200 OK	32 kB
URL GET HTTP/2 sc.lfeeder.com/lftracker_v1_ywVkO4XWPeW7Z6Bj.js IP 143.204.55.63:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subject.lfeeder.com Fingerprint6B:75:32:D8:B3:6F:B3:51:58:8A:0B:32:AC:80:74:D5:DB:FC:89:FD ValidityTue, 28 Feb 2023 00:00:00 GMT - Mon, 07 Aug 2023 23:59:59 GMT File type ASCII text, with very long lines (32188), with no line terminators Size 32 kB (32188 bytes) Hash 5a541ab9cd65ba584fbdb609fb7e6d5c 97ab75c4f46460568ae8c063a0f89a3718696d30 2029b847aa15a583ee4e96bb8020155e4e0ee949b77c6f689f143e7443a6f306 HTTP Headers `GET /lftracker_v1_ywVkO4XWPeW7Z6Bj.js HTTP/1.1 Host: sc.lfeeder.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Wed, 17 May 2023 07:21:10 GMT x-amz-version-id: z_71BUZAAUcX0h_KC8XrZMbQ_zVV9v5A server: AmazonS3 content-encoding: gzip date: Thu, 18 May 2023 08:27:55 GMT cache-control: max-age=3600 etag: W/"5a541ab9cd65ba584fbdb609fb7e6d5c" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: ICXXVPYOKZxPNRIRL84zshtATRtCMeeCv_FwvYYytWlAMtj9UIaIWQ== age: 1433 X-Firefox-Spdy: h2

	www.google.com/pagead/1p-conversion/1010020041/?random=1684398760242&cv=11&fst=1684398760242&bg=ffffff&guid=ON&async=1&gtm=45He35a0&u_w=1280&u_h=1024&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&label=9Uq1COfCvoMDEMndzuED&hn=www.google.com&frm=0&tiba=MacKeeper&value=0&bttype=purchase&auid=1066910107.1684398760&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4	216.58.207.228	302 Found	0 B
URL GET HTTP/2 www.google.com/pagead/1p-conversion/1010020041/?random=1684398760242&cv=11&fst=1684398760242&bg=ffffff&guid=ON&async=1&gtm=45He35a0&u_w=1280&u_h=1024&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&label=9Uq1COfCvoMDEMndzuED&hn=www.google.com&frm=0&tiba=MacKeeper&value=0&bttype=purchase&auid=1066910107.1684398760&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 IP 216.58.207.228:443 ASN #15169 GOOGLE Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8 ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pagead/1p-conversion/1010020041/?random=1684398760242&cv=11&fst=1684398760242&bg=ffffff&guid=ON&async=1&gtm=45He35a0&u_w=1280&u_h=1024&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&label=9Uq1COfCvoMDEMndzuED&hn=www.google.com&frm=0&tiba=MacKeeper&value=0&bttype=purchase&auid=1066910107.1684398760&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 302 Found p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 18 May 2023 08:32:40 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate location: https://www.google.no/pagead/1p-conversion/1010020041/?random=1684398760242&cv=11&fst=1684398760242&bg=ffffff&guid=ON&async=1&gtm=45He35a0&u_w=1280&u_h=1024&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&label=9Uq1COfCvoMDEMndzuED&hn=www.google.com&frm=0&tiba=MacKeeper&value=0&bttype=purchase&auid=1066910107.1684398760&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y content-type: text/javascript; charset=UTF-8 content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 63 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6	54.230.111.123	200 OK	32 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type ASCII text, with very long lines (31730), with no line terminators Size 32 kB (31730 bytes) Hash 97163b0713e93b8bd826698683612971 3d96727054197f9150ac5dc2c4dd39a3b09f20cb ea6fa344265ce62aedc0158a5652103e4555d11f2af3fdbfa57e0c4e7738d48c HTTP Headers `GET /mk-land/dist/197_13/style.webp.min.css?7dd6490fa1ac960477c6 HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css date: Wed, 17 May 2023 09:39:45 GMT x-amz-replication-status: COMPLETED last-modified: Fri, 12 May 2023 11:42:50 GMT etag: W/"97163b0713e93b8bd826698683612971" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: aMGAdnYdkpIeR9U5Il2_zqIWIWrNy_06 server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: aDPzm6svtv0kJMLwLE-1ejpAgUf1xfC3EDu72eFiyEV71ilVMyfINg== age: 82375 X-Firefox-Spdy: h2

	static-cdn.mackeeper.com/mk-land/dist/197_13/script.min.js?814b3e4e68050d7c2627	54.230.111.123	200 OK	65 kB
URL GET HTTP/2 static-cdn.mackeeper.com/mk-land/dist/197_13/script.min.js?814b3e4e68050d7c2627 IP 54.230.111.123:443 ASN #16509 AMAZON-02 Requested by https://app2.mackeeperaff.com/land/197.13/?rtkcid=6465e28a7a07ac0001776994&rtkcmpid=627a315b1b910300011dd3ae&tid=Affiliate%20-%20Increased%20Hybrid%20(197.11)%20-%20Shlomi&utm_source=&utm_medium=&pubid= Certificate IssuerAmazon Subjectstatic-cdn.mackeeper.com FingerprintDA:40:3C:2C:66:78:C8:76:A4:E4:FD:18:69:9D:17:3A:51:AF:2B:E9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Sun, 01 Oct 2023 23:59:59 GMT File type Size 65 kB (65291 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /mk-land/dist/197_13/script.min.js?814b3e4e68050d7c2627 HTTP/1.1 Host: static-cdn.mackeeper.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://app2.mackeeperaff.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript date: Wed, 17 May 2023 09:37:01 GMT x-amz-replication-status: COMPLETED last-modified: Wed, 17 May 2023 09:17:35 GMT etag: W/"32e9ecc19b24396d04ccd376d10a82bb" x-amz-server-side-encryption: AES256 cache-control: public, max-age=604800 x-amz-version-id: g8BlH63qrdBW4ezvDeSR4U5ghWQJki39 server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: -VgQelqo8Avp884Xe1mcWvyPoDlvtBiF-CEZT5pcuCe3adfYZbX1cA== age: 82539 X-Firefox-Spdy: h2

	widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af	143.204.55.101	204 No Content	0 B
URL GET HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af IP 143.204.55.101:443 ASN #16509 AMAZON-02 Requested by https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293#locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light Certificate IssuerAmazon Subject.trustpilot.com FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86 ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /stats/TrustboxImpression?locale=en-US&styleHeight=20px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fapp2.mackeeperaff.com%2Fland%2F197.13%2F%3Frtkcid%3D6465e28a7a07ac0001776994%26rtkcmpid%3D627a315b1b910300011dd3ae%26tid%3DAffiliate%2520-%2520Increased%2520Hybrid%2520(197.11)%2520-%2520Shlomi%26utm_source%3D%26utm_medium%3D%26pubid%3D&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=4dbb14ee00006400050fa293&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded DNT: 1 Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=4dbb14ee00006400050fa293 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content cache-control: no-store,no-cache date: Thu, 18 May 2023 08:32:40 GMT pragma: no-cache server: Kestrel strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 5wU8N9yKpxaUH20_pe_LsEahs6_EVdBOpZxhMxkaM3rSzQHneVUMRg== X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (34)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash