r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5942
Expires: Sat, 03 Dec 2022 17:19:02 GMT
Date: Sat, 03 Dec 2022 15:40:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2883
Cache-Control: max-age=157155
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:00 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:19:15 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4394
Expires: Sat, 03 Dec 2022 16:53:14 GMT
Date: Sat, 03 Dec 2022 15:40:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 15:20:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1200
alt-svc: clear
X-Firefox-Spdy: h2
shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7
23.227.38.65302 Found 0 B URL HTTP/1.1 shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7
IP 23.227.38.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7 HTTP/1.1
Host: shop.getairphysio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 03 Dec 2022 15:40:00 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 151
X-Sorting-Hat-ShopId: 51487244440
X-Frame-Options: DENY
Location: https://shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7
X-Shopify-Stage: production
Content-Security-Policy: frame-ancestors 'none'; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=216e0a49-eff9-47ea-ba6a-7e44d0ea8ef8
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=216e0a49-eff9-47ea-ba6a-7e44d0ea8ef8
X-Dc: gcp-europe-north1,gcp-us-east1,gcp-us-east1
X-Request-ID: 216e0a49-eff9-47ea-ba6a-7e44d0ea8ef8
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nT5tZ6ZVRf41u5btcwKq%2FKFWdOgCTco%2FCqzWAsq7dvr17Wr%2BH0SsRd74xzcVGnhakmwEEgEJchr6vVC%2BeRs4NezEyP5ktMPB4vkbXoRzpqoQX5VFTihdY9aBy8zKqzx2%2BhGMD9lw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: cfRequestDuration;dur=228.999853
Server: cloudflare
CF-RAY: 773d65f49d370af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HI53d0eD+J9Yn7qtsslsxrewMqVHeJ6maw0dN83r9LepWTVl+x0xHMQmHevlLENC11OxdSOV9EA=
x-amz-request-id: 1YB2FV16WZG9SXTE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 14:46:36 GMT
age: 3204
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 15:40:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3078a847eba89e962fd1f1e3505f953f
5ac235b6517bdf6268e2c037f25c1d2024d2fa09
bd061886cb76eec8704d5943f055904d8f1c1d6f55b2276dfaf6f033141e3c47
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD061886CB76EEC8704D5943F055904D8F1C1D6F55B2276DFAF6F033141E3C47"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=697
Expires: Sat, 03 Dec 2022 15:51:37 GMT
Date: Sat, 03 Dec 2022 15:40:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 15:08:58 GMT
cache-control: public,max-age=3600
age: 1862
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3078a847eba89e962fd1f1e3505f953f
5ac235b6517bdf6268e2c037f25c1d2024d2fa09
bd061886cb76eec8704d5943f055904d8f1c1d6f55b2276dfaf6f033141e3c47
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD061886CB76EEC8704D5943F055904D8F1C1D6F55B2276DFAF6F033141E3C47"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=697
Expires: Sat, 03 Dec 2022 15:51:37 GMT
Date: Sat, 03 Dec 2022 15:40:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2874
Cache-Control: max-age=152085
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:00 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:54:45 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z+8PTSVpJekMdLVSuEkayg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8ryWokbpbpZdn+6KiXxFmer6ZpA=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5166a1f33562c404ee7c7955616e195a
634dfc27baf40b30319b51f90b1e43233967447e
1edafa304b2bd1f90a06983db0d529a0b75b3717d71443f1776699bb317aaaf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EDAFA304B2BD1F90A06983DB0D529A0B75B3717D71443F1776699BB317AAAF3"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Sat, 03 Dec 2022 16:32:56 GMT
Date: Sat, 03 Dec 2022 15:40:01 GMT
Connection: keep-alive
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 48b7c99c3de52aa565a8f077727a3ac2
ed353729ed89dd80543269548ec5a4cbbc167984
3248b45611431daa8c9f4911f5cc06e7fbef6287cde21a8e80d75499d61fa627
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 15:40:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 21:54:58 GMT
Expires: Sat, 03 Dec 2022 21:54:58 GMT
ETag: "ed353729ed89dd80543269548ec5a4cbbc167984"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.shopify.com/s/files/1/0514/8724/4440/files/logo.png?21
162.159.134.68200 OK 11 kB URL HTTP/2 cdn.shopify.com/s/files/1/0514/8724/4440/files/logo.png?21
IP 162.159.134.68:0
File type ISO Media, AVIF Image\012- data
Hash c7a448f6b1d4e96d6ac7a4fd40ddd4f4
2e247df26c03736524d131c6451c5dc99c422d26
4cb4f0d7af1dc8f48884699906ed6e88f4bd434faf8d2561c94389aabc475bb9
GET /s/files/1/0514/8724/4440/files/logo.png?21 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: image/avif
content-length: 10985
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/8724/4440/files/logo.png>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 82e820b2-3820-4494-87fb-7c68502f0926
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Fri, 26 Aug 2022 05:59:24 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aOzUB6o0I4Kgq3fCDkUf1TDO6E3CjZcooT9kp%2F4gQKEzCPfG0FjQgPdsLYfZHCWsZwuj%2BhxmfamD209NhxXz16bGHlE0kh1a42kyarymvG6VGsFDk8W4f6hMNgBaj9Sj1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=214.826, imageryFetch;dur=41.824, imageryProcess;dur=172.048;desc="image", cfRequestDuration;dur=148.999929
server: cloudflare
cf-ray: 773d65fd8a6fb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/s/files/1/0514/8724/4440/products/air-physio-shopify-01_small.jpg?v=1608737189
162.159.134.68200 OK 3.7 kB URL HTTP/2 cdn.shopify.com/s/files/1/0514/8724/4440/products/air-physio-shopify-01_small.jpg?v=1608737189
IP 162.159.134.68:0
File type ISO Media, AVIF Image\012- data
Hash 49961d6c23d44e1b1318236f597b874b
4a3762f459faf943855954e050236cba7242ea10
aac4cfe32a8688ea9b2d9ba00db4bea9ae574ec60fb0ee9fc678d6eaaa123896
GET /s/files/1/0514/8724/4440/products/air-physio-shopify-01_small.jpg?v=1608737189 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: image/avif
content-length: 3687
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31557600
link: <https://cdn.shopify.com/s/files/1/0514/8724/4440/products/air-physio-shopify-01_small.jpg>; rel="canonical"
timing-allow-origin: *
vary: Accept, Accept-Encoding
x-content-type-options: nosniff
x-request-id: 0d82eec3-2423-405d-b31b-35f64ba95a76
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 08 Sep 2022 03:43:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8rp3GX0S4bj5BNEJ0PjSaXxGWDXZDrBwivzsOktLTQpU926DMI2YWNuWnYPG8cSFK318Amw7oru95dCRF5NUHHODlBYHv7Ws%2BhG6PUjpi6aIm4hjtte0b8WPIsEOZ6N6iA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=148.635, imageryFetch;dur=36.748, imageryProcess;dur=111.221;desc="image", cfRequestDuration;dur=144.999981
server: cloudflare
cf-ray: 773d65fd8a9db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 48b7c99c3de52aa565a8f077727a3ac2
ed353729ed89dd80543269548ec5a4cbbc167984
3248b45611431daa8c9f4911f5cc06e7fbef6287cde21a8e80d75499d61fa627
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 03 Dec 2022 15:40:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Dec 2022 21:54:58 GMT
Expires: Sat, 03 Dec 2022 21:54:58 GMT
ETag: "ed353729ed89dd80543269548ec5a4cbbc167984"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Sat, 03 Dec 2022 16:33:50 GMT
Date: Sat, 03 Dec 2022 15:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Sat, 03 Dec 2022 16:33:50 GMT
Date: Sat, 03 Dec 2022 15:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Sat, 03 Dec 2022 16:33:50 GMT
Date: Sat, 03 Dec 2022 15:40:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3228
Expires: Sat, 03 Dec 2022 16:33:50 GMT
Date: Sat, 03 Dec 2022 15:40:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tp50A9LYeT1RvSPImBUoQNKtarPryKb8Zacm_nxqDh-gegwdQov7Nw==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:50:52 GMT
age: 42550
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:43:49 GMT
age: 64573
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
162.159.134.68200 OK 17 kB URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js
IP 162.159.134.68:0
File type ASCII text, with very long lines (19843), with no line terminators
Hash 4b685f92f0e62e4fe5876afde055910d
ba7d20ea33921c35d7b8f7f2587704a2daed164a
698088303581efd82af04d099ecfc759f74948e97619f7e3233be18f9d48099e
GET /shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/shop_qr-1f53501e8ad08edc204b781136461a901672e8838b9408142dbd5469245aed63.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 5b28964c-c509-41e5-b026-0518336e1d96
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-east1,us-east1
last-modified: Thu, 25 Aug 2022 22:53:51 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2LzPThdui4ith3XS4U4%2BOhJtKsDZcREhSBqlISNZy3O8X5wVkvFR12WJjlkn4unN9igdWvP%2FIqVaWl2vqxFHm7KimmaOuui5XDNWLaarQjsYaGtsQCg%2FgDCBq39rDh7RCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=27.806, imageryFetch;dur=27.643, cfRequestDuration;dur=180.000067
server: cloudflare
cf-ray: 773d65fd8c02b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 61258
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 34752
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:53:40 GMT
age: 35182
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5R4Z5DW
142.250.74.168200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5R4Z5DW
IP 142.250.74.168:0
File type ASCII text, with very long lines (2748)
Hash 3d1d39979d3197889b7429cdbd3ccb1e
bc418b98c28ab94f439aa9a7f15171b9e0c064b7
5dde96b313b08587d4b33fccd1b5f6b6b0a1eae77f5c500b943e6485491d40fe
GET /gtm.js?id=GTM-5R4Z5DW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 15:40:03 GMT
expires: Sat, 03 Dec 2022 15:40:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47725
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5f0bf755afb1707dfa2067973f9ce5f0
75174b912431c1f6b03530dc080fcdb65ba42140
9301ef3251b618d11273eab5c50d7acc91ccff3d91d32b4ca57cc4f9759fab23
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160078
Date: Sat, 03 Dec 2022 15:40:03 GMT
Etag: "638b2b23-1d7"
Expires: Mon, 05 Dec 2022 12:08:01 GMT
Last-Modified: Sat, 03 Dec 2022 10:55:31 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ydwwZJKW5lsr7SqZvDcCsEI6NFA-AXYHbRhCkumwuNn5GrPfi7eOJg==
Age: 4350
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-P2DJCHW
142.250.74.78200 OK 62 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-P2DJCHW
IP 142.250.74.78:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5e24f367f51daccf484d41dfca278101
0cb418ff6130a55c417d69408d7276219e47f4df
f9184ddb920ce2f7f6ff0b1b918ad665c44132f1665608aec758220146a3bd42
GET /optimize.js?id=OPT-P2DJCHW HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 15:40:03 GMT
expires: Sat, 03 Dec 2022 15:40:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Dec 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43944
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 14:46:55 GMT
expires: Sat, 03 Dec 2022 16:46:55 GMT
cache-control: public, max-age=7200
age: 3189
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?client=gme-shopifyinc1&language=en
172.217.21.170200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?client=gme-shopifyinc1&language=en
IP 172.217.21.170:0
File type ASCII text, with very long lines (2436)
Hash 54646aa3146b5b8a1a7698f82357c3c8
4c1b752ec58072cd3edc3c7ba3c9f77beadd23a2
7147990f101c3160d1794abfc41535ae53c93080d5aac7a6428ad60555083c89
GET /maps/api/js?client=gme-shopifyinc1&language=en HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53394
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=16
date: Sat, 03 Dec 2022 15:30:49 GMT
expires: Sat, 03 Dec 2022 16:00:49 GMT
cache-control: public, max-age=1800
content-type: text/javascript; charset=UTF-8
age: 555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9xuzl3lle5.execute-api.us-west-2.amazonaws.com/prod/orders/pixel-state/shop.getairphysio.io_4495507882136
143.204.55.97200 OK 124 B URL HTTP/2 9xuzl3lle5.execute-api.us-west-2.amazonaws.com/prod/orders/pixel-state/shop.getairphysio.io_4495507882136
IP 143.204.55.97:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1a80c3418cbae8ec11953a928794c969
458827bab417bfa299b5b0a9dcf75a0a5c4033ab
39c0f76ec9c3271bbe12e6f783637a7519b676f1e423aaecd6f4189230fe8fe5
GET /prod/orders/pixel-state/shop.getairphysio.io_4495507882136 HTTP/1.1
Host: 9xuzl3lle5.execute-api.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 124
date: Sat, 03 Dec 2022 15:40:04 GMT
x-amzn-requestid: ac8c082a-ff0f-4378-9c20-9caf9673cf60
access-control-allow-origin: *
content-encoding: gzip
x-amz-apigw-id: ck4ZLHlGvHcFwug=
x-amzn-trace-id: Root=1-638b6dd4-1e230a655de8d54845c87d88
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SW1HDkG1obUJ2kUyC108GDD8_cHqRf0uylSRuiW7OVLRYo79Wwpu5w==
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58307713-53&cid=1116932622.1670082002&jid=1993923475&gjid=639543390&_gid=295498474.1670082002&_u=YGBAgEABRAAAAEgCIAB~&z=1910095049
173.194.222.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58307713-53&cid=1116932622.1670082002&jid=1993923475&gjid=639543390&_gid=295498474.1670082002&_u=YGBAgEABRAAAAEgCIAB~&z=1910095049
IP 173.194.222.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-58307713-53&cid=1116932622.1670082002&jid=1993923475&gjid=639543390&_gid=295498474.1670082002&_u=YGBAgEABRAAAAEgCIAB~&z=1910095049 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Content-Type: text/plain
Content-Length: 0
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://shop.getairphysio.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 15:40:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.3200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.3:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Sat, 03 Dec 2022 15:40:04 GMT
expires: Sat, 03 Dec 2022 15:40:04 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/transparent.png
142.250.74.3200 OK 68 B URL HTTP/2 maps.gstatic.com/mapfiles/transparent.png
IP 142.250.74.3:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Sat, 03 Dec 2022 15:40:04 GMT
expires: Sat, 03 Dec 2022 15:40:04 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://checkout.shopify.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 245168
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ecommplugins-scripts.trustpilot.com/v2.1/js/success.min.js?settings=eyJrZXkiOiJRZGRTbDF1TXBLd0VjOGQ5IiwicyI6IlNLVSIsInQiOlsib3JkZXJzL2Z1bGZpbGxlZCJdLCJ2IjoiIiwiYSI6IlNob3BpZnktMjAyMS0wNCJ9&shop=getairphysio.myshopify.com
54.230.111.95200 OK 915 B URL HTTP/2 ecommplugins-scripts.trustpilot.com/v2.1/js/success.min.js?settings=eyJrZXkiOiJRZGRTbDF1TXBLd0VjOGQ5IiwicyI6IlNLVSIsInQiOlsib3JkZXJzL2Z1bGZpbGxlZCJdLCJ2IjoiIiwiYSI6IlNob3BpZnktMjAyMS0wNCJ9&shop=getairphysio.myshopify.com
IP 54.230.111.95:0
File type ASCII text, with very long lines (874)
Hash c446ae1386f2beb1032cd7a46cd1d353
1811439f901e76cac632e43f780c2d041cd58c44
2b2fc2bbf1ec497162ee2d1529b5f9bbb2a528764d47f1f3467b87f74f8958bc
GET /v2.1/js/success.min.js?settings=eyJrZXkiOiJRZGRTbDF1TXBLd0VjOGQ5IiwicyI6IlNLVSIsInQiOlsib3JkZXJzL2Z1bGZpbGxlZCJdLCJ2IjoiIiwiYSI6IlNob3BpZnktMjAyMS0wNCJ9&shop=getairphysio.myshopify.com HTTP/1.1
Host: ecommplugins-scripts.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 915
last-modified: Fri, 26 Aug 2022 12:03:51 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Dec 2022 03:58:25 GMT
etag: "c446ae1386f2beb1032cd7a46cd1d353"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dUy08JJo5QgCRvM5JzsMiDKsBh8iZj6yQVrAY6OWF9MIkyXNlC66XQ==
age: 42100
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://checkout.shopify.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 245170
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ecommplugins-trustboxsettings.trustpilot.com/getairphysio.myshopify.com.js?settings=1662937323817&shop=getairphysio.myshopify.com
54.230.111.53200 OK 350 B URL HTTP/2 ecommplugins-trustboxsettings.trustpilot.com/getairphysio.myshopify.com.js?settings=1662937323817&shop=getairphysio.myshopify.com
IP 54.230.111.53:0
Hash b1b03019f642d2852950cc9a3ffb8d7e
8f5fdabdb53f7ed48780481bbd3a7165f8e8d9fd
f0e231111b0b64147450e4a8aacb3023dcca8be9a6ff1462478c1d74588c0a47
GET /getairphysio.myshopify.com.js?settings=1662937323817&shop=getairphysio.myshopify.com HTTP/1.1
Host: ecommplugins-trustboxsettings.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 350
last-modified: Tue, 14 Jun 2022 03:15:02 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Dec 2022 05:13:31 GMT
etag: "b1b03019f642d2852950cc9a3ffb8d7e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j6UxQnPcLWZlW6o-3dx6kJ0xeEa2f_AirSXZiaIhp9xeSd4ff3McJw==
age: 37594
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 81ae3fb180a7203841b49077d24d6c76
3caaa9662810aa521c09acd73dfb999ebc4ba47e
2a7bc07863a190dd0d25627e7e4d5da5615970ca52ef83bb0d0e91b6cf0e3f86
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=148147
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 15:40:04 GMT
Etag: "638b0d87-117"
Expires: Mon, 05 Dec 2022 08:49:11 GMT
Last-Modified: Sat, 03 Dec 2022 08:49:11 GMT
Server: nginx
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 6871ac638f521fc61a3a3c4df2435b08
acfefb0f55e44687ed8d5cc1999f65fe9232d31b
a08e51d2af1853b1128b9174b7c289364aa12a21865e21ac984e572234046cba
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136707
Date: Sat, 03 Dec 2022 15:40:04 GMT
Etag: "638ad7f4-1d7"
Expires: Mon, 05 Dec 2022 05:38:31 GMT
Last-Modified: Sat, 03 Dec 2022 05:00:36 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: S_jKdO0kpsnFT7j41Wq9RnjR4wDH6aJlgUx2urKV9xP5sO0mcGTz3Q==
Age: 2275
rum-collector-2.pingdom.net/img/beacon.gif?id=5fe396def4ca1e00110000b7&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=806&cE=806&dLE=806&dLS=806&fS=806&hS=806&rE=-1&rS=-1&reS=811&resS=1438&resE=1552&uEE=-1&uES=-1&dL=1446&dI=3610&dCLES=3647&dCLEE=3700&dC=4449&lES=4449&lEE=4454&s=nt&title=Thank%20you%20Sean!%20-%20AirPhysio%20-%20Checkout&path=https%3A%2F%2Fshop.getairphysio.io%2F51487244440%2Forders%2F6bb9fcede3144af431ba5b2acd6bec5c&ref=&sId=q3sx7o4p&sST=1670082002&sIS=1&rV=0&v=1.4.1
34.242.58.23200 OK 0 B URL HTTP/1.1 rum-collector-2.pingdom.net/img/beacon.gif?id=5fe396def4ca1e00110000b7&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=806&cE=806&dLE=806&dLS=806&fS=806&hS=806&rE=-1&rS=-1&reS=811&resS=1438&resE=1552&uEE=-1&uES=-1&dL=1446&dI=3610&dCLES=3647&dCLEE=3700&dC=4449&lES=4449&lEE=4454&s=nt&title=Thank%20you%20Sean!%20-%20AirPhysio%20-%20Checkout&path=https%3A%2F%2Fshop.getairphysio.io%2F51487244440%2Forders%2F6bb9fcede3144af431ba5b2acd6bec5c&ref=&sId=q3sx7o4p&sST=1670082002&sIS=1&rV=0&v=1.4.1
IP 34.242.58.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/beacon.gif?id=5fe396def4ca1e00110000b7&sAW=1280&sAH=1002&bIW=1280&bIH=939&pD=24&dPR=1&or=landscape-primary&nT=0&rC=0&nS=0&cS=806&cE=806&dLE=806&dLS=806&fS=806&hS=806&rE=-1&rS=-1&reS=811&resS=1438&resE=1552&uEE=-1&uES=-1&dL=1446&dI=3610&dCLES=3647&dCLEE=3700&dC=4449&lES=4449&lEE=4454&s=nt&title=Thank%20you%20Sean!%20-%20AirPhysio%20-%20Checkout&path=https%3A%2F%2Fshop.getairphysio.io%2F51487244440%2Forders%2F6bb9fcede3144af431ba5b2acd6bec5c&ref=&sId=q3sx7o4p&sST=1670082002&sIS=1&rV=0&v=1.4.1 HTTP/1.1
Host: rum-collector-2.pingdom.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache, no-store, must-revalidate
Date: Sat, 03 Dec 2022 15:40:04 GMT
Expires: 0
Pragma: no-cache
Content-Length: 0
Connection: keep-alive
cdn.shopify.com/shopifycloud/shopify/assets/checkout-ed896bd9ba26934f1900c3c0c6012164b6506ab74cc9cc6ceb871bf505edd4f5.js
162.159.134.68200 OK 0 B URL HTTP/2 cdn.shopify.com/shopifycloud/shopify/assets/checkout-ed896bd9ba26934f1900c3c0c6012164b6506ab74cc9cc6ceb871bf505edd4f5.js
IP 162.159.134.68:0
GET /shopifycloud/shopify/assets/checkout-ed896bd9ba26934f1900c3c0c6012164b6506ab74cc9cc6ceb871bf505edd4f5.js HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31556952, immutable
link: <https://cdn.shopify.com/shopifycloud/shopify/assets/checkout-ed896bd9ba26934f1900c3c0c6012164b6506ab74cc9cc6ceb871bf505edd4f5.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 0161c74e-e5d8-4767-995b-a743aceff72b
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-central1
last-modified: Wed, 30 Nov 2022 00:04:02 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wpewcZwNFlbraHZubposvW4ke%2FbcKkML9CGjZrC0ehvO4PzxkFvvP7VXjQptruSTJu5zNfz5lrX07OF14lDBmKimWjeCLWScTrPwe8B5bZHMivWTIkK1gHgxJgw72gkmJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=35.954, imageryFetch;dur=35.617, cfRequestDuration;dur=126.000166
server: cloudflare
cf-ray: 773d65fd8c06b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gu-ecom.com/scripts/sdk/everflow.js
35.244.146.25200 OK 0 B URL HTTP/2 gu-ecom.com/scripts/sdk/everflow.js
IP 35.244.146.25:0
GET /scripts/sdk/everflow.js HTTP/1.1
Host: gu-ecom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: text/javascript
cache-control: max-age=14400
vary: Origin
x-eflow-request-id: 9f997cef-9152-4805-8916-f7569f5922d4
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bsp.pxucdn.com/recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/bootstrap.js?v=202101181611011700&shop=getairphysio.myshopify.com
104.22.79.226200 OK 0 B URL HTTP/2 bsp.pxucdn.com/recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/bootstrap.js?v=202101181611011700&shop=getairphysio.myshopify.com
IP 104.22.79.226:0
GET /recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/bootstrap.js?v=202101181611011700&shop=getairphysio.myshopify.com HTTP/1.1
Host: bsp.pxucdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:05 GMT
content-type: application/javascript
x-amz-id-2: zm7Se2JIb+OmbItT76Tckz7lClHx2uWkdXraE63+Td0Ax7E8ZXWFBtCtVdpkOxevTXt779bSz7o=
x-amz-request-id: MMQYBX3ZA5FQY4KF
cache-control: max-age=31536000
last-modified: Tue, 19 Jan 2021 03:27:01 GMT
x-amz-version-id: Ifzek7UCwnIoLjyiN_Kk5vShlJKzG0AA
etag: W/"1fa77ffed9d3def8fc1734b788cc3322"
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 773d6610996395de-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c
23.227.38.65200 OK 0 B URL HTTP/2 shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c
IP 23.227.38.65:0
Analyzer Verdict Alert fortinet Phishing
GET /51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c HTTP/1.1
Host: shop.getairphysio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVV6WVdKaFpESXdPR1F4WXpBeE9EZ3laakV6TUROaU9HRmxZamxtTjJabE53WTZCa1ZVIiwiZXhwIjoiMjAyMi0xMi0yNFQxNTo0MDowMC42NjBaIiwicHVyIjoiY29va2llLm9yZGVyIn19--55143581ed1f73c129d049a4b636b7f1fa6315a3; _y=4989a297-3d26-4ddb-ba9b-08be18efd5be; _s=481a5611-e555-4492-9dbc-780e5d8d9546; _shopify_y=4989a297-3d26-4ddb-ba9b-08be18efd5be; _shopify_s=481a5611-e555-4492-9dbc-780e5d8d9546
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 151
x-sorting-hat-shopid: 51487244440
vary: Accept-Encoding
x-frame-options: DENY
x-shopid: 51487244440
x-shardid: 151
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en
cache-control: no-cache
strict-transport-security: max-age=7889238
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=9e55a3b2-aeb3-4523-b551-43a7431c6c2a
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=9e55a3b2-aeb3-4523-b551-43a7431c6c2a
x-dc: gcp-europe-north1,gcp-us-east1,gcp-us-east1
set-cookie: _orig_referrer=; Expires=Sat, 17-Dec-22 15:40:01 GMT; Domain=getairphysio.io; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F51487244440%2Forders%2F6bb9fcede3144af431ba5b2acd6bec5c; Expires=Sat, 17-Dec-22 15:40:01 GMT; Domain=getairphysio.io; Path=/; HttpOnly; SameSite=Lax
_y=4989a297-3d26-4ddb-ba9b-08be18efd5be; Expires=Sun, 03-Dec-23 15:40:01 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_s=481a5611-e555-4492-9dbc-780e5d8d9546; Expires=Sat, 03-Dec-22 16:10:01 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_shopify_y=4989a297-3d26-4ddb-ba9b-08be18efd5be; Expires=Sun, 03-Dec-23 15:40:01 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_shopify_s=481a5611-e555-4492-9dbc-780e5d8d9546; Expires=Sat, 03-Dec-22 16:10:01 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
x-request-id: 9e55a3b2-aeb3-4523-b551-43a7431c6c2a
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oQmqzFkQ4jmUkorLTsF%2BN71kzH5d4ql06KkEr58zOP%2B2uqPWDUj4PHIuUBd6HgbQeduwiCn39JXmSze%2FA6PJRuggAHsJuJlkzLN3yebiikEPr0ftYKLxOpsHXP%2BUWe4PRkucMmr9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=621.999979
server: cloudflare
cf-ray: 773d65f8ecb4b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/51487244440/assets/116056588440/checkout_stylesheet/v2-ltr-edge-fae89129e14e1d1356f2f99f330d146d-21
162.159.134.68200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/51487244440/assets/116056588440/checkout_stylesheet/v2-ltr-edge-fae89129e14e1d1356f2f99f330d146d-21
IP 162.159.134.68:0
GET /app/services/51487244440/assets/116056588440/checkout_stylesheet/v2-ltr-edge-fae89129e14e1d1356f2f99f330d146d-21 HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=31556952, public
link: <https://cdn.shopify.com/app/services/51487244440/assets/116056588440/checkout_stylesheet/v2-ltr-edge-fae89129e14e1d1356f2f99f330d146d-21>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 4d7ad9f2-0c26-4866-a125-e2e36fb75ab3
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Fri, 02 Dec 2022 17:14:25 GMT
cf-cache-status: HIT
age: 68161
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qSVAy2BYFTWn%2F9f%2F%2BE7JZsoltbxWhXTjajUA%2F7ml1e7IJ2qBY0MtYIs5zn6GVMHYyYGZ4I3TutYxXIxCNoLrbJqdJHnOTZIoS5FFl6Hml5ekH7QeDbuz2UDlBAIhoVndzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=9522.047, imageryFetch;dur=9521.662, cfRequestDuration;dur=49.000025
server: cloudflare
cf-ray: 773d65fd8a67b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.shopify.com/app/services/51487244440/javascripts/checkout_countries/116056588440/en/countries-9caafe0cea9f26dd51b4fddef7c4442828f5fb6d-1629751773.js?version=edge
162.159.134.68200 OK 0 B URL HTTP/2 cdn.shopify.com/app/services/51487244440/javascripts/checkout_countries/116056588440/en/countries-9caafe0cea9f26dd51b4fddef7c4442828f5fb6d-1629751773.js?version=edge
IP 162.159.134.68:0
GET /app/services/51487244440/javascripts/checkout_countries/116056588440/en/countries-9caafe0cea9f26dd51b4fddef7c4442828f5fb6d-1629751773.js?version=edge HTTP/1.1
Host: cdn.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Origin: https://shop.getairphysio.io
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:03 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache
content-language: en
link: <https://cdn.shopify.com/app/services/51487244440/javascripts/checkout_countries/116056588440/en/countries-9caafe0cea9f26dd51b4fddef7c4442828f5fb6d-1629751773.js>; rel="canonical"
timing-allow-origin: *
x-content-type-options: nosniff
x-request-id: 42ef3fb5-85f1-44a6-9794-0f03104a02a5
x-xss-protection: 1; mode=block
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-dc: gcp-us-central1,us-east1
last-modified: Sat, 03 Dec 2022 15:39:47 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4BJtvMKe79Hd4sH03Amr6LVQTF%2BWUcX%2BIKtod3yiRaE%2BD5%2BTgFjkYHWvige0OwC5%2FMxLIxoXpAF%2FRLGK8Lo3ZmyWeo%2BVMDNbkiRbASidmaz4AbcAkO4iiMFuO6JonPaA7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: imagery;dur=1699.014, imageryFetch;dur=1698.758, cfRequestDuration;dur=1924.999952
server: cloudflare
cf-ray: 773d65fd8c04b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
checkout.shopify.com/51487244440/sandbox/google_maps?locale=en
23.227.38.33200 OK 0 B URL HTTP/2 checkout.shopify.com/51487244440/sandbox/google_maps?locale=en
IP 23.227.38.33:0
GET /51487244440/sandbox/google_maps?locale=en HTTP/1.1
Host: checkout.shopify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:03 GMT
content-type: text/html; charset=utf-8
x-sorting-hat-podid: 151
x-sorting-hat-shopid: 51487244440
vary: Accept-Encoding
x-shopid: 51487244440
x-shardid: 151
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en
cache-control: no-cache
strict-transport-security: max-age=315569520; includeSubdomains
x-shopify-stage: production
content-security-policy: frame-ancestors *; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=8992d76f-f340-4ead-a481-85b7c90796f2
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=google_maps&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Fsandbox&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=8992d76f-f340-4ead-a481-85b7c90796f2
x-dc: gcp-europe-north1,gcp-us-east1,gcp-us-east1
set-cookie: _orig_referrer=https%3A%2F%2Fshop.getairphysio.io%2F; Expires=Sat, 17-Dec-22 15:40:03 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_landing_page=%2F51487244440%2Fsandbox%2Fgoogle_maps%3Flocale%3Den; Expires=Sat, 17-Dec-22 15:40:03 GMT; Domain=shopify.com; Path=/; HttpOnly; SameSite=Lax
_y=5146584e-fa51-4253-bfa4-5da3d9d55e7b; Expires=Sun, 03-Dec-23 15:40:03 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_s=736ccdbb-5aa9-4563-97ca-9dff81c477d6; Expires=Sat, 03-Dec-22 16:10:03 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_y=5146584e-fa51-4253-bfa4-5da3d9d55e7b; Expires=Sun, 03-Dec-23 15:40:03 GMT; Domain=shopify.com; Path=/; SameSite=Lax
_shopify_s=736ccdbb-5aa9-4563-97ca-9dff81c477d6; Expires=Sat, 03-Dec-22 16:10:03 GMT; Domain=shopify.com; Path=/; SameSite=Lax
x-request-id: 8992d76f-f340-4ead-a481-85b7c90796f2
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U6ZjzjWBhLsE5%2BfIVldLy9ufNErMzG8%2BIh6c%2Fvm0KjXHXLzbN%2BZPrk15bJvetCO%2BxDaGEiLuznJJOLWZvApMhYsfV%2BfXx51eoXkL84k0UjSuCnNsLeih3rePGgSu3wHYv9pPiwfO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=253.000021
server: cloudflare
cf-ray: 773d660acb950b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rum-static.pingdom.net/pa-5fe396def4ca1e00110000b7.js
104.22.54.104200 OK 0 B URL HTTP/2 rum-static.pingdom.net/pa-5fe396def4ca1e00110000b7.js
IP 104.22.54.104:0
GET /pa-5fe396def4ca1e00110000b7.js HTTP/1.1
Host: rum-static.pingdom.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:03 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 14 Oct 2022 06:22:28 GMT
vary: Accept-Encoding
etag: W/"63490024-1852"
expires: Sat, 03 Dec 2022 15:45:03 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 773d660bcdb0b523-OSL
X-Firefox-Spdy: h2
cdn.recovermycart.com/scripts/CartJS_v2.min.js?shop=getairphysio.myshopify.com&shop=getairphysio.myshopify.com
143.204.55.85200 OK 0 B URL HTTP/2 cdn.recovermycart.com/scripts/CartJS_v2.min.js?shop=getairphysio.myshopify.com&shop=getairphysio.myshopify.com
IP 143.204.55.85:0
GET /scripts/CartJS_v2.min.js?shop=getairphysio.myshopify.com&shop=getairphysio.myshopify.com HTTP/1.1
Host: cdn.recovermycart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 03 Dec 2022 11:19:10 GMT
last-modified: Fri, 19 Feb 2021 02:26:28 GMT
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
content-encoding: br
etag: W/"0a281a0666d71:0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dpiv6ZV6Gvpy9qz_28fDPW0_A9gPAfLsZ1ghHpVy4nBx3MKicZ_d0A==
age: 15654
X-Firefox-Spdy: h2
invitejs.trustpilot.com/tp.min.js
54.230.111.53200 OK 0 B URL HTTP/2 invitejs.trustpilot.com/tp.min.js
IP 54.230.111.53:0
GET /tp.min.js HTTP/1.1
Host: invitejs.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 28 Nov 2022 07:41:17 GMT
content-encoding: gzip
cache-control: public, max-age=86400
date: Sat, 03 Dec 2022 01:06:29 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g6d8j0x6B1_bISMqMegF1_NoCsDbMBxzvCTvOdxXX252r-bz9AIHRw==
age: 52415
X-Firefox-Spdy: h2
bsp.pxucdn.com/recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/events.js?t=1670082040
104.22.79.226200 OK 0 B URL HTTP/2 bsp.pxucdn.com/recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/events.js?t=1670082040
IP 104.22.79.226:0
GET /recent-sales/ebd0fb46f6cddcccd3db77f57887a7c7/events.js?t=1670082040 HTTP/1.1
Host: bsp.pxucdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://shop.getairphysio.io/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 15:40:05 GMT
content-type: application/javascript
x-amz-id-2: bcJG5c1JeLlx0+NgkX60ZSOzKHLGo4kuzAzqLaAMgrALRYVuBO8GFqNDyTxeyQbZ0bfiGj/zVo4=
x-amz-request-id: FMHCXXTQ0X4QJ7QJ
cache-control: max-age=31536000
last-modified: Sat, 03 Dec 2022 15:35:08 GMT
x-amz-version-id: qp9oEw2qAen3OIAytg6ieJveqxe8Ylrb
etag: W/"0279d7d1d828fe037bfc3299136d74d8"
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 773d66139c7c95de-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7
23.227.38.65302 Found 0 B URL HTTP/2 shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7
IP 23.227.38.65:0
Analyzer Verdict Alert fortinet Phishing
GET /51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c/authenticate?key=3abad208d1c01882f1303b8aeb9f7fe7 HTTP/1.1
Host: shop.getairphysio.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 03 Dec 2022 15:40:00 GMT
content-type: text/html; charset=utf-8
location: https://shop.getairphysio.io/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c
x-sorting-hat-podid: 151
x-sorting-hat-shopid: 51487244440
x-frame-options: DENY
x-shopid: 51487244440
x-shardid: 151
x-robots-tag: none
referrer-policy: origin-when-cross-origin
content-language: en
cache-control: no-cache
strict-transport-security: max-age=7889238
set-cookie: order=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaEpJaVV6WVdKaFpESXdPR1F4WXpBeE9EZ3laakV6TUROaU9HRmxZamxtTjJabE53WTZCa1ZVIiwiZXhwIjoiMjAyMi0xMi0yNFQxNTo0MDowMC42NjBaIiwicHVyIjoiY29va2llLm9yZGVyIn19--55143581ed1f73c129d049a4b636b7f1fa6315a3; path=/51487244440/orders/6bb9fcede3144af431ba5b2acd6bec5c; expires=Sat, 24 Dec 2022 15:40:00 GMT; secure; HttpOnly; SameSite=Lax
_y=4989a297-3d26-4ddb-ba9b-08be18efd5be; Expires=Sun, 03-Dec-23 15:40:00 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_s=481a5611-e555-4492-9dbc-780e5d8d9546; Expires=Sat, 03-Dec-22 16:10:00 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_shopify_y=4989a297-3d26-4ddb-ba9b-08be18efd5be; Expires=Sun, 03-Dec-23 15:40:00 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
_shopify_s=481a5611-e555-4492-9dbc-780e5d8d9546; Expires=Sat, 03-Dec-22 16:10:00 GMT; Domain=getairphysio.io; Path=/; SameSite=Lax
x-shopify-stage: production
content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=6d20fe23-d4d3-416d-8945-9cb23075077c
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block; report=/xss-report?source%5Baction%5D=authenticate&source%5Bapp%5D=Shopify&source%5Bcontroller%5D=checkouts%2Fweb%2Forders&source%5Bsection%5D=checkout&source%5Bshop_id%5D=51487244440&source%5Buuid%5D=6d20fe23-d4d3-416d-8945-9cb23075077c
x-dc: gcp-europe-north1,gcp-us-east1,gcp-us-east1
x-request-id: 6d20fe23-d4d3-416d-8945-9cb23075077c
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jT4vu5%2FihM8CyC2ZDCWAZqSM9QqqcWsHajnqRVG6YK827sbCRbz5TCpqH%2BZFmgPdhHYI5xPm%2BO%2BtZT3DstIE2XB%2FOGNaghO43S8OTw4QaLtoc6HhVkBgsI6UAXTer6PZAALo6NEQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server-timing: cfRequestDuration;dur=381.000042
server: cloudflare
cf-ray: 773d65f72ac8b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2