Report - 1stplace.sale/72515

Report Overview

Submitted URL
1stplace.sale/72515
IP
52.72.49.79
ASN
#14618 AMAZON-AES
Submitted
2022-11-22 16:42:26
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.88.220.109
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	454 B	23 kB	104.18.10.207
tracker.personizely.net	189122	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	382 kB	172.67.210.146
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	733 B	349 B	157.240.200.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	32 kB	142.250.74.106
assets.1stplacespiritwear.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.1 kB	329 kB	104.22.2.201
1stplacespiritwear.com	992324	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	99 kB	104.22.2.201
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	618 B	717 B	142.251.1.154
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	8.1 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	9.8 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	143.204.42.158
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	444 B	7.2 kB	104.17.24.14
cdn.foxycart.com	45249	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.3 kB	54.230.111.72
cart.1stplacespiritwear.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	779 B	672 B	54.230.111.62
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	106 kB	216.58.207.195
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	521 B	694 B	142.250.74.164
1stplace.sale	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	448 B	376 B	52.72.49.79
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	76 kB	142.250.74.168
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	518 B	2.8 kB	142.250.74.10
spiritwear1dss.herokuapp.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	4.7 kB	54.159.116.102
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	21 kB	142.250.74.174
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
static.olark.com	12270	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	765 B	23 kB	192.229.233.34
log.olark.com	13244	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	573 B	208 B	34.96.127.16
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	28 kB	157.240.200.14
static.personizely.net	114554	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	775 B	172.67.210.146

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	454 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:42 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 731ba2a4ebbf6ec0fe665f2c2f3f9ead 5869f620d9aa40f849a23ce33bffafb75be1786d d2d67669592f36ce19c82495064c0c76d2616453df148f44f4c21ad7c27e8b0a Loading...

	assets.1stplacespiritwear.com/js/modernizr-custom.js	3.4 kB	2023-03-07	2024-04-25
Pretty URL assets.1stplacespiritwear.com/js/modernizr-custom.js IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:03 Last Seen2024-04-25 12:50:48 Times Seen341 Hash 925b1cfb3ff415d8a781c0a026a8f096 c7b3e086a5789ca2f8df8ea8b11148c23a5c785a 0db8807e1b34fff0005dfd2ee5e01e4467aa208a9e63f3291eeed6c2f1c47de9 Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	821 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:42 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 40be7bed6a477567f6d45538cde523a8 4ff32713129dff73d9d7a9c21233de5644b6eef5 f44f6da888ecee0c16130b205ea047c1535fc0997b3f3f98654a15d50dea9378 Loading...

	static.personizely.net/8e4107abb5.js	149 kB	2023-03-11	2023-03-11
Pretty URL static.personizely.net/8e4107abb5.js IP 172.67.210.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:42 Last Seen2023-03-11 15:47:42 Times Seen1 Hash 9db97f15734a2644c1f1822ee8615698 0a65fa71a278eaa9b7adcd060c44d50b6eb7b511 adb2e5738f078e97707c515d52e31f1ade5f83aba21e8bf49a27762fce27d3b8 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/signals/config/300313241076835?v=2.9.89&r=stable	300 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/300313241076835?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash 0e1593fb328762780837788a4cde4e99 38e36c48f56929d3433cbbed16b5e4e606f4042a 9b3480fed787c1f030c7b8955313406fe34af4f8ae5d02f02b57b86f34a2f93c Loading...

	cdn.foxycart.com/cart.1stplacespiritwear.com/foxycart.jsonp.sidecart.with-jquery.min.1668732105.js	473 kB	2023-03-11	2023-03-11
Pretty URL cdn.foxycart.com/cart.1stplacespiritwear.com/foxycart.jsonp.sidecart.with-jquery.min.1668732105.js IP 54.230.111.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash 92ddf4ec33829f33cf95ffb6f592b7bd 22a5d034c1bb9c66bb76525b923d096ef6908d9f 160f2ab739ef55519cf96496554af8b2da9947d47e6deae7aa0d75bc6ac8eb2e Loading...

	cdn.foxycart.com/cart.1stplacespiritwear.com/loader.js	1.0 kB	2023-03-11	2023-03-11
Pretty URL cdn.foxycart.com/cart.1stplacespiritwear.com/loader.js IP 54.230.111.72 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash dd8cc31ece5e932a2d57131c7e6d454a daa5ba5fee14d06d51c3400e204b43c3386c62cc 43bc3d3422d85b2312225b8facd0889d30a044d7084972ce0611b73123bb59b3 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-P4Z3GWH	232 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-P4Z3GWH IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash 68db5eebbab5371ad3066af8b9d19260 a9dc856abfaa9284768ea902b83a23c972a41528 fbbb8ba76db91a095e8f98fb23710d9b60086eeb7c9822507f04ea2facf058d9 Loading...

	www.googletagmanager.com/gtag/js?id=G-QNZ27SSWW4&l=dataLayer&cx=c	227 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-QNZ27SSWW4&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash 3a42ab29bf2c9d270ac9d5ea48e01e7d 53348d1df709cac568d216cd943e4b6c4b9a3eb0 c08657233a11ae274a7728ae3a1aefac4d1c2e2646c10b827e80780d3b25b6a5 Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	118 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash f8694a362968172c2eed30a4f414bb91 78e31fea9bbedf28cfb694cd34d2f0da115ce89d 2c2023bc04e8e8597348a7bf5a60e89c235e42998989b771c01055f1f34d6472 Loading...

	static.olark.com/jsclient/app.js	56 kB	2023-03-11	2023-03-11
Pretty URL static.olark.com/jsclient/app.js IP 192.229.233.34 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:36:11 Last Seen2023-03-11 22:20:20 Times Seen1 Hash e8da5f8b431ed94ce31258bb84564983 bd12f3b751cdb3ee0561aabffcc57e1c3aa1bd03 9b335e2c7e951a358bb54e8272ca4ea85c13b74ec387155d50fd0ac221f200c2 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.200.14 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	cart.1stplacespiritwear.com/cart?cart=get&callback=jQuery1111049683947792095384_1669135339069&output=json&_=1669135339070	3.2 kB	2023-03-11	2023-03-11
Pretty URL cart.1stplacespiritwear.com/cart?cart=get&callback=jQuery1111049683947792095384_1669135339069&output=json&_=1669135339070 IP 54.230.111.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash 51fae905eae4c72e4ea323c94e49c7eb 6a2f5dbad7edea100bc32633f1ca0f3380bddefd 20b56c40d5e7fe8f3de5979394d96aa711cd3c743d9cc30670cc5ec863ee647a Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-26 16:26:24 Times Seen139394 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	99 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 181abbe70eb28222feed25575db4f06c 60191b4b234f972fd5159c136e6dda6cd750a1cf fa4411d1796bcb32c4fbbe85f5f999bec9afe071e8356f211eec6995e36f7ca7 Loading...

	assets.1stplacespiritwear.com/js/bootstrap.min.js	60 kB	2023-03-07	2024-04-26
Pretty URL assets.1stplacespiritwear.com/js/bootstrap.min.js IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:23 Last Seen2024-04-26 15:44:23 Times Seen8005 Hash 61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548 Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	1.4 kB	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 879f2f401fb516563d1269e1ca81683a 8e9f00408ac7f1733e9b2621a9c0f6e4b3be0d69 68056bc86587727e4242e60c8b3350acbaf7871f07f481eed3607c9dccb0f916 Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	1.2 kB	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 37968b455edd82f02f4e9708e0191041 16b1cdc6c56a57b80adfcdb29e63fe9e044ad23d af062c323208eed7a8e3394212295f85529043f6f034e73394b2fffcf4fb4c18 Loading...

	static.olark.com/jsclient/loader.js	8.7 kB	2023-03-07	2024-04-26
Pretty URL static.olark.com/jsclient/loader.js IP 192.229.233.34 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:46 Last Seen2024-04-26 10:11:00 Times Seen809 Hash c2c65f4c68f82e7e01757569ff8f6bb6 4cd1d48db910506f82bf66286ecf0030cfdcf8fd afd2d099307fc78c161dc1574920c7268ad8c0e8b6a896f58dae6b61d48c5a9d Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	349 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash e5d261b65c526628e98b249fbe1277b7 704d21281fc01fa90131dae2f258434686287fc3 fcea71130d09c1845564b628e956e61f6e6fbcb3bb7c8b7a012574cbb9abff88 Loading...

	assets.1stplacespiritwear.com/vendor/slick/slick.js	89 kB	2023-03-07	2024-04-26
Pretty URL assets.1stplacespiritwear.com/vendor/slick/slick.js IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 10:40:42 Times Seen8141 Hash 5f8f4aed010e1afe499184d8197309f9 097f6a1b4f115e9b6ebefa70d76d830733bcc9ba 0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4 Loading...

	assets.1stplacespiritwear.com/js/main-js.js	2.4 kB	2023-03-11	2023-11-10
Pretty URL assets.1stplacespiritwear.com/js/main-js.js IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash c3646acd10b3b4db0578479d95b8e8cc 192cc20e33e4243a3d46ed474d471b7a143542e0 9f0a075e25060db2712edbe01caaf32c9ba7e851ce65ea999ab5a8563fa249f0 Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	257 B	2023-03-11	2023-03-11
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-03-11 15:47:43 Times Seen1 Hash c5252f125ce7345cf10620336f8d865c c382bf8cd74003b921c549c554b0f1bbbec23382 af3fc88d84ff75f582c0247de67824493ce8f6d8a1ce4e62bcb82aeb48a4456d Loading...

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	480 B	2023-03-11	2023-11-10
Pretty URL 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:47:43 Last Seen2023-11-10 15:43:10 Times Seen2 Hash 55c2d96ed839405d1051c17fc22ba095 862b312c66dd82dd5321b66cedc9c52f50380dc7 df577c10c3ae9c0e8099e4576e5036cd8bab0e3182b342f9ed3834efaab179bf Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	19 kB	2023-03-07	2024-04-26
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-26 17:12:05 Times Seen111943 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

HTTP Transactions (93)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dfb72f04bd7a4410640c0543bb4bd402 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794" Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4862 Expires: Tue, 22 Nov 2022 18:03:17 GMT Date: Tue, 22 Nov 2022 16:42:15 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b59d95402dfb464c176610284ba13f65 1a6c62fb0d48654dd204b66161bb03fefe60f71a 40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6240 Cache-Control: max-age=156780 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:15 GMT Etag: "637ca4f3-1d7" Expires: Thu, 24 Nov 2022 12:15:15 GMT Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 054ff0d1a0a43f7cb1d78dbd34e27f99 3caf54f3de1d6a8c6f6454083f8b8e7dec77db54 fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634" Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19058 Expires: Tue, 22 Nov 2022 21:59:53 GMT Date: Tue, 22 Nov 2022 16:42:15 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 22 Nov 2022 16:09:23 GMT cache-control: public,max-age=3600 content-type: application/json age: 1972 alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: ZldPA3kQ8KI0wzMAyHIH4t9bSdKPBCC2WZuxOciPRPxAZutSMZUQYUtV/CKp5ohVOMPU6x6pVNs= x-amz-request-id: 7ZX7BPR4JW2TX006 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 22 Nov 2022 15:42:37 GMT age: 3578 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0bc3221670055df47829f496ede69074 c6f085122d6e14ab7cd35701d348332808eff6ea 044712387c9463bb909b2267ee3846d4c9ef6487b78d4aaa7bc3951f2aa5c383 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "044712387C9463BB909B2267EE3846D4C9EF6487B78D4AAA7BC3951F2AA5C383" Last-Modified: Mon, 21 Nov 2022 13:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21543 Expires: Tue, 22 Nov 2022 22:41:18 GMT Date: Tue, 22 Nov 2022 16:42:15 GMT Connection: keep-alive`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 22 Nov 2022 16:42:15 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	1stplace.sale/72515	52.72.49.79	301 Moved Permanently	0 B
URL HTTP/1.1 1stplace.sale/72515 IP 52.72.49.79:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /72515 HTTP/1.1 Host: 1stplace.sale User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved Permanently Date: Tue, 22 Nov 2022 16:42:15 GMT Content-Length: 0 Cache-Control: no-cache, no-store Expires: -1 Location: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Engine: Rebrandly.redirect, version 2.1 Strict-Transport-Security: max-age=15552000`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 1730925755c60ba85de2ed53ff134c51 5bd9e0d713943f93ca8241e40487ceac82e0171f e108d709a91ab8afee82f619d25dfc033f1157771d3b5d3168f14861c043d69a HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=163483 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637cd783-117" Expires: Thu, 24 Nov 2022 14:06:59 GMT Last-Modified: Tue, 22 Nov 2022 14:06:59 GMT Server: nginx Content-Length: 279`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 22 Nov 2022 16:08:53 GMT cache-control: public,max-age=3600 age: 2003 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 8a181d95550cfdf3b1fc4deb71631e40 37866f7293c41fbfb817e321754cae5c5bf59f93 6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3004 Cache-Control: max-age=148483 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637c912f-1d7" Expires: Thu, 24 Nov 2022 09:56:59 GMT Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	52.88.220.109	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.88.220.109:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: kIzcwFlJveKGGDSJU5SQaA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: XFTO/tYvD9oGomAJUgZsZoC4vYY=`

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	104.17.24.14	200 OK	6.2 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (19015) Size 6.2 kB (6157 bytes) Hash 7b4114faa411d059a9a5ac4b5b4d9dee 277da4486916fa3a4ab3375f47bc98f58dbf90f6 60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9 HTTP Headers `GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:16 GMT content-type: application/javascript; charset=utf-8 content-length: 6157 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03fa9-4af4" last-modified: Mon, 04 May 2020 16:15:37 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 947879 expires: Sun, 12 Nov 2023 16:42:16 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hNb6szaheiwjeGEwnqTJ7QQvHXkdka2mgoCCXpW53MEUEpmXzGgfZIqfO%2FLQASgPMNFSYga9ybmfggT6ztaOxCI3%2FCBCOZoi0iVPj8KOkp6g%2F6nbtSe46roVAlv32LCYgXniJVrX"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 76e31e0e2da50b61-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 42fedb1a86b94c6b3b99fa650fd664e4 d1b2afb56e53a525a0eaeb99aea6338df256db49 1b5d3eb1928da6304b8a8ee0084390c521ad5c35521054c3961dbe316b914aa1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4683 Cache-Control: max-age=142637 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637c73ca-116" Expires: Thu, 24 Nov 2022 08:19:33 GMT Last-Modified: Tue, 22 Nov 2022 07:01:30 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 278`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 585eab785e44953b9e6d7c389024ff3e 57582825e9a285177f38cd2fa868ad3a8eab85d1 f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 681dc33f21be246bf1f24e4947ccd945 e87a3adccb947f5160aa90f3300e189e79fd8f69 e57292ba6e8450a9a595b0943306c8892189e11822eb28b00f9995cf2aee7333 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=169633 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637cef89-118" Expires: Thu, 24 Nov 2022 15:49:29 GMT Last-Modified: Tue, 22 Nov 2022 15:49:29 GMT Server: nginx Content-Length: 280`

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	142.250.74.106	200 OK	31 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65451) Size 31 kB (31021 bytes) Hash 903bc7a7e510f87aa5d0201eb59a0832 ac9aa4dd94cde1bcba9037e94087138b127e41fc 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f HTTP Headers `GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31021 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 18 Nov 2022 08:46:23 GMT expires: Sat, 18 Nov 2023 08:46:23 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 374153 last-modified: Fri, 08 May 2020 07:05:03 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 42fedb1a86b94c6b3b99fa650fd664e4 d1b2afb56e53a525a0eaeb99aea6338df256db49 1b5d3eb1928da6304b8a8ee0084390c521ad5c35521054c3961dbe316b914aa1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4683 Cache-Control: max-age=142637 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637c73ca-116" Expires: Thu, 24 Nov 2022 08:19:33 GMT Last-Modified: Tue, 22 Nov 2022 07:01:30 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 681dc33f21be246bf1f24e4947ccd945 e87a3adccb947f5160aa90f3300e189e79fd8f69 e57292ba6e8450a9a595b0943306c8892189e11822eb28b00f9995cf2aee7333 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 0 Cache-Control: max-age=169633 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Etag: "637cef89-118" Expires: Thu, 24 Nov 2022 15:49:29 GMT Last-Modified: Tue, 22 Nov 2022 15:49:29 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 280`

	www.googletagmanager.com/gtm.js?id=GTM-P4Z3GWH	142.250.74.168	200 OK	75 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P4Z3GWH IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (34364) Size 75 kB (75376 bytes) Hash 1e90e23da7995dab4a806607fff3016a 90af897bc6c47354d7449813c844457805737c42 ff1afbc5febff09eac6cd84e2e91b678e4108f10a1780f7012ce3547625afe9d HTTP Headers `GET /gtm.js?id=GTM-P4Z3GWH HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 22 Nov 2022 16:42:16 GMT expires: Tue, 22 Nov 2022 16:42:16 GMT cache-control: private, max-age=900 last-modified: Tue, 22 Nov 2022 15:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 75376 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Nunito+Sans:200i,300,300i,400,400i,600,600i,700,700i,800,800i,900\|Roboto:100i,300,300i,400,400i,500,500i,700,700i,900&display=swap	142.250.74.10	200 OK	2.1 kB
URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans:200i,300,300i,400,400i,600,600i,700,700i,800,800i,900\|Roboto:100i,300,300i,400,400i,500,500i,700,700i,900&display=swap IP 142.250.74.10:0 ASN #15169 GOOGLE File type data Size 2.1 kB (2092 bytes) Hash 601808c36d718c693cc0df031c2e85ce fe330b9dcc5897a027b45e081d61b4588dbe9e7d 2ac148e73ad14be11149c6b3f49c4d9707bee231aa7ee834faf75fcf558532e8 HTTP Headers GET /css?family=Nunito+Sans:200i,300,300i,400,400i,600,600i,700,700i,800,800i,900\|Roboto:100i,300,300i,400,400i,500,500i,700,700i,900&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 22 Nov 2022 16:42:16 GMT date: Tue, 22 Nov 2022 16:42:16 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 585eab785e44953b9e6d7c389024ff3e 57582825e9a285177f38cd2fa868ad3a8eab85d1 f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	assets.1stplacespiritwear.com/img/transparent_group.png	104.22.2.201	200 OK	4.0 kB
URL HTTP/2 assets.1stplacespiritwear.com/img/transparent_group.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 850 x 500, 8-bit/color RGBA, non-interlaced\012- data Size 4.0 kB (3975 bytes) Hash 0fc2c0f534e784f9ed89126c23696280 49b5c29d807e18bfdeda30fa9a087cdcc2be1521 8cec98c475ee354238d9c43b122d0af715474454b8aa068f1fa1cf4f6e994d7c HTTP Headers GET /img/transparent_group.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: image/png content-length: 3975 last-modified: Wed, 12 May 2021 16:58:22 GMT etag: "f87-5c224eb14f2c4" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0e2f06b529-OSL X-Firefox-Spdy: h2`

	assets.1stplacespiritwear.com/logo-red-black.png	104.22.2.201	200 OK	128 kB
URL HTTP/2 assets.1stplacespiritwear.com/logo-red-black.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 3540 x 1525, 8-bit/color RGBA, non-interlaced\012- data Size 128 kB (128371 bytes) Hash 869d05e3fb896d51ee4f7d6c41ade7d3 791db1e5299d2f7cd972dde0461f5a4161074a71 b63c3b895e9840e8588d41e5f7ca79ee2f53fbeff836a48704893396c05bcfa9 HTTP Headers GET /logo-red-black.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: image/png content-length: 128371 last-modified: Mon, 09 Aug 2021 12:29:28 GMT etag: "1f573-5c91f894e43cf" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0e0ee6b529-OSL X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6 e4d08dc74fa84a3bcc9d442e225e8f7a6c124822 e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6 e4d08dc74fa84a3bcc9d442e225e8f7a6c124822 e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css	104.18.10.207	200 OK	22 kB
URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65325) Size 22 kB (22295 bytes) Hash 77cb53c011487844d19d5b46f5132f80 2935b19cd0e0027838418d1b4a533ddcc50156fa 01baa753a94cce19a54b56be9d1deb4b5b94446b63060a5ff85a43ebf2421efc HTTP Headers `GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:16 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:04 GMT cdn-cachedat: 06/09/2022 14:01:47 cdn-edgestorageid: 756 cdn-requestpullcode: 200 cdn-requestpullsuccess: True timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-proxyver: 1.02 cdn-requestid: f267c4ffad97d5b2a471f65044a22aac cdn-cache: HIT cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 76e31e0e6884b51b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6 e4d08dc74fa84a3bcc9d442e225e8f7a6c124822 e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6 e4d08dc74fa84a3bcc9d442e225e8f7a6c124822 e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2	216.58.207.195	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data Size 17 kB (17324 bytes) Hash 51ca5ce70497b58a8cc96b2b26ce2e19 7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042 6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3 HTTP Headers `GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17324 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 17 Nov 2022 16:44:29 GMT expires: Fri, 17 Nov 2023 16:44:29 GMT cache-control: public, max-age=31536000 age: 431868 last-modified: Mon, 09 May 2022 18:31:14 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2	216.58.207.195	200 OK	18 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17684, version 1.0\012- data Size 18 kB (17684 bytes) Hash 67f5e167a73df331cd54701561965cd0 5c6e5ca963553c516240156bcdca131b2d0ac87e 6637ea3139ffb01e240829717a4f8c195d7be6b81780ed643000b49833d8d6d1 HTTP Headers `GET /s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17684 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 21 Nov 2022 22:02:40 GMT expires: Tue, 21 Nov 2023 22:02:40 GMT cache-control: public, max-age=31536000 age: 67177 last-modified: Mon, 09 May 2022 18:32:01 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2	216.58.207.195	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data Size 17 kB (16980 bytes) Hash 8a97f720d330e75ccdbda9ae0e9f5e90 8e4fee916581ab48d385187705667cebc7500afe 97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787 HTTP Headers `GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16980 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 16 Nov 2022 08:32:12 GMT expires: Thu, 16 Nov 2023 08:32:12 GMT cache-control: public, max-age=31536000 age: 547805 last-modified: Mon, 09 May 2022 18:33:54 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	216.58.207.195	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 16 Nov 2022 18:53:49 GMT expires: Thu, 16 Nov 2023 18:53:49 GMT cache-control: public, max-age=31536000 age: 510508 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2	216.58.207.195	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data Size 17 kB (17116 bytes) Hash bcf3a3fb620dfbee774f84e2c8e71530 40a79d240acdd7e5a95e165515ac7c0958a37971 280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5 HTTP Headers `GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17116 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 21 Nov 2022 21:55:35 GMT expires: Tue, 21 Nov 2023 21:55:35 GMT cache-control: public, max-age=31536000 age: 67602 last-modified: Mon, 09 May 2022 18:31:19 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6 e4d08dc74fa84a3bcc9d442e225e8f7a6c124822 e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.olark.com/jsclient/loader.js	192.229.233.34	200 OK	3.1 kB
URL HTTP/2 static.olark.com/jsclient/loader.js IP 192.229.233.34:0 ASN #15133 EDGECAST File type ASCII text, with very long lines (8743), with no line terminators Size 3.1 kB (3120 bytes) Hash c3db2c7f16e7d813ab6bd966916ef1e7 5d3d0b9068af947ace03be616dcf1c140aae5ec1 e0531101b793ced6aec5019c77fd29288752fde96714f9796345c8543b31a63b HTTP Headers `GET /jsclient/loader.js HTTP/1.1 Host: static.olark.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * age: 6181 cache-control: max-age=10800 content-type: application/javascript; charset=utf-8 date: Tue, 22 Nov 2022 16:42:17 GMT etag: "63728183-2227" expires: Tue, 22 Nov 2022 19:42:17 GMT last-modified: Mon, 14 Nov 2022 17:57:23 GMT server: ECS (ska/F706) vary: Accept-Encoding via: 1.1 google x-cache: HIT content-length: 3120 X-Firefox-Spdy: h2`

	static.olark.com/jsclient/app.js	192.229.233.34	200 OK	19 kB
URL HTTP/2 static.olark.com/jsclient/app.js IP 192.229.233.34:0 ASN #15133 EDGECAST File type ASCII text, with very long lines (32002) Size 19 kB (18635 bytes) Hash c5dd4b3cb9118ff35573fa6142ae195d 907c62e92b4a4305278bc3f18096ad89a45b5ba6 aaba1e91de2a96d9de3e426476e1d5e5806c5c1f54e5e3eccb6beb27c42639b6 HTTP Headers `GET /jsclient/app.js HTTP/1.1 Host: static.olark.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-encoding: gzip accept-ranges: bytes access-control-allow-origin: * age: 6181 cache-control: max-age=10800 content-type: application/javascript; charset=utf-8 date: Tue, 22 Nov 2022 16:42:17 GMT etag: "63728183-db29" expires: Tue, 22 Nov 2022 19:42:17 GMT last-modified: Mon, 14 Nov 2022 17:57:23 GMT server: ECS (ska/F706) vary: Accept-Encoding via: 1.1 google x-cache: HIT content-length: 18635 X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.195	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 16 Nov 2022 19:34:08 GMT expires: Thu, 16 Nov 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 508089 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	727 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 727 B (727 bytes) Hash cf606ae6b97f487447a3a617a460071b 38cb84858dcd6a28fc289d7274d9f3c89d48b9e2 b0dcb4ea79b3dbeaf591e8ba1ddfc0f3f0513cb9166f6e9b724dbb336e4c3a78 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5786 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Last-Modified: Tue, 22 Nov 2022 15:05:51 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 727`

	1stplacespiritwear.com/assets/css/font-awesome/css/font-awesome.min.css	104.22.2.201	200 OK	8.9 kB
URL HTTP/2 1stplacespiritwear.com/assets/css/font-awesome/css/font-awesome.min.css IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type data Size 8.9 kB (8873 bytes) Hash 412eab591847b2aa7967c15c26119c5b 6c8833e9bd4f9796db01c493676c7345ea1087c6 5486b93ad7c86ccfb5a746835bcb109508e1ff577ff77296c0202c842bda1681 HTTP Headers GET /assets/css/font-awesome/css/font-awesome.min.css HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: lastSchool=72515; isPartner=true Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/css content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 last-modified: Tue, 04 Aug 2020 19:21:20 GMT etag: W/"7918-5ac1229025014" cache-control: max-age=14400 vary: Accept-Encoding content-encoding: gzip via: 1.1 vegur cf-cache-status: MISS server: cloudflare cf-ray: 76e31e0dee9db529-OSL X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B" Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18222 Expires: Tue, 22 Nov 2022 21:45:59 GMT Date: Tue, 22 Nov 2022 16:42:17 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B" Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18222 Expires: Tue, 22 Nov 2022 21:45:59 GMT Date: Tue, 22 Nov 2022 16:42:17 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B" Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18222 Expires: Tue, 22 Nov 2022 21:45:59 GMT Date: Tue, 22 Nov 2022 16:42:17 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg	34.120.237.76	200 OK	4.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.6 kB (4639 bytes) Hash dafd9e17dc0023e71ae513c6025e4b80 12e2654db1f384bb04f5c5042848b25dda86b710 e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4639 x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-I6oELooAMFWFw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA== via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 22:05:18 GMT age: 67019 etag: "12e2654db1f384bb04f5c5042848b25dda86b710" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp	34.120.237.76	200 OK	7.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.8 kB (7751 bytes) Hash 472ceca597feefba355fbd65998977b7 f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a e201f706ba38f04ef07d74a67eec187ad8b882027b96b0e4e700162f96da422f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7751 x-amzn-requestid: 577947ab-4fbe-4b07-944a-2b65cf5ed6d7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b4UE9GJ9IAMFVtA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63799a1f-1a26961e20c88cd54a613ddb;Sampled=0 x-amzn-remapped-date: Sun, 20 Nov 2022 03:08:15 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: QB2RJo7NR7FMDRC7fC9eLMW99KR7andopIeu4qi0yp_tihE0vtpkXw== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google date: Tue, 22 Nov 2022 04:49:03 GMT age: 42794 etag: "f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg	34.120.237.76	200 OK	6.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.0 kB (6031 bytes) Hash 4f3fad7453f45dfa617243c8beac64e1 56414a905340e1b1478a0a40a52b25365a724524 7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6031 x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b3cV0GC-oAMF5hA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0 x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: VabInML1mfcQLIp29OWRNsixwfSWt0Wv9l7I-Ak7TdUHlNt2ZEVtPg== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google date: Tue, 22 Nov 2022 15:21:36 GMT age: 4841 etag: "56414a905340e1b1478a0a40a52b25365a724524" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10556 bytes) Hash 0ab62c5a7c3296600de924eb0b283bc1 bc4a2dc43898e3fb78ba7301d8b09b280991d221 f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10556 x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-Iq0GPVoAMF9bg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: sBNLrVAl4G6pJ-OBZ6aJZC64MrkkGQdsuZKITQwcqgYgP6-GJiblfA== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 21:59:20 GMT age: 67377 etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7589 bytes) Hash 06c6e720bc9900b38e88cd72f739603e 22884cbc78622d6f78c1c3397c9b440946144a99 8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7589 x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: brr5zH4qoAMF79Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0 x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: nwXP5jm9A2Cl3_-Lm194ycXkeClig1L9hwgUgE8i8NF-Vv2gNfj_4Q== via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google date: Tue, 22 Nov 2022 15:03:51 GMT age: 5906 etag: "22884cbc78622d6f78c1c3397c9b440946144a99" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8685 bytes) Hash 2ed6b76d15fc8d6295acdb6fb47461d3 b8c928f93a8d82b48491448d811a95ad99dc6aef de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8685 x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-IrAHwKoAMFUHQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Mon, 21 Nov 2022 21:58:29 GMT age: 67428 etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/school/dark-cart.png	104.22.2.201	200 OK	2.9 kB
URL HTTP/2 assets.1stplacespiritwear.com/school/dark-cart.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 122 x 122, 8-bit/color RGBA, non-interlaced\012- data Size 2.9 kB (2933 bytes) Hash df17f01133146615415d7003417150a5 c022c744f5bdcd9e1bebfb6224290295cc512049 788172254f7b845992787335c8966369ffdb49cf3e65445772199ca788595e9e HTTP Headers GET /school/dark-cart.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/css/style.css Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: image/png content-length: 2933 last-modified: Fri, 25 Sep 2020 15:45:47 GMT etag: "b75-5b02535e4722b" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e12ad6bb529-OSL X-Firefox-Spdy: h2`

	tracker.personizely.net/8e4107abb5/events	172.67.210.146	200 OK	350 B
URL HTTP/2 tracker.personizely.net/8e4107abb5/events IP 172.67.210.146:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (596), with no line terminators Size 350 B (350 bytes) Hash fd21b90ebbd0b008b76be9c212d51cb2 70f5b7528866b01fb79195728a9cd7b486e41ad1 2bc71e193fd2489291450c441e2a16531fed3807d291d4e7b0ff15f94cd11222 HTTP Headers `POST /8e4107abb5/events HTTP/1.1 Host: tracker.personizely.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 365 Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/json cache-control: no-cache, private allow: POST access-control-allow-origin: https://1stplacespiritwear.com cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bdeIuAPqVhxfgy2qUYgUVsfIj1Wuuw5x%2FFb5xdkHDXJzrhVNaorSDGM2aDRndL0sWuFnlqrRtQKoRs%2BcmzHyJicxX9hi9cAUKYLNkwrZtJorGL%2FeyAPR7JojyGe%2BS0IVt2GX0%2FC0mpgeOQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 76e31e13ef2c0b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	log.olark.com/jslog/log.png?version=framestore&location=about%3Asrcdoc&message=cannot%20set%20any%20cookies&tabname=oktab6166373909344215&level=error&timestamp=1669135337461&properties=%7B%7D&recent_logs=%5B%5D	34.96.127.16	200 OK	2 B
URL HTTP/2 log.olark.com/jslog/log.png?version=framestore&location=about%3Asrcdoc&message=cannot%20set%20any%20cookies&tabname=oktab6166373909344215&level=error&timestamp=1669135337461&properties=%7B%7D&recent_logs=%5B%5D IP 34.96.127.16:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash e0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3 HTTP Headers GET /jslog/log.png?version=framestore&location=about%3Asrcdoc&message=cannot%20set%20any%20cookies&tabname=oktab6166373909344215&level=error&timestamp=1669135337461&properties=%7B%7D&recent_logs=%5B%5D HTTP/1.1 Host: log.olark.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: nginx date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/plain content-length: 2 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	727 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 727 B (727 bytes) Hash cf606ae6b97f487447a3a617a460071b 38cb84858dcd6a28fc289d7274d9f3c89d48b9e2 b0dcb4ea79b3dbeaf591e8ba1ddfc0f3f0513cb9166f6e9b724dbb336e4c3a78 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5786 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:17 GMT Last-Modified: Tue, 22 Nov 2022 15:05:51 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 727`

	ocsp.sca1b.amazontrust.com/	143.204.42.158	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.158:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 5eb14850b35ca9d228a1acd6d96c47dc a1edb2f2c09eb329e7e79279bf3465d02e099c33 2c0b7839fedcfe877bc8e24481104337c78bc338f4b3a9b8cbe96782e13cc820 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=97400 Date: Tue, 22 Nov 2022 16:42:17 GMT Etag: "637bbf99-1d7" Expires: Wed, 23 Nov 2022 19:45:37 GMT Last-Modified: Mon, 21 Nov 2022 18:12:41 GMT Server: ECS (bsa/EB14) X-Cache: Miss from cloudfront Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: kiBF_fxHjQtIfAah44DP4KGAcATepTFpFN4EFbbL0PXIlEzGEODosw== Age: 5576

	1stplacespiritwear.com/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	104.22.2.201	200 OK	77 kB
URL HTTP/2 1stplacespiritwear.com/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77 kB (77160 bytes) Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers GET /assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://1stplacespiritwear.com/assets/css/font-awesome/css/font-awesome.min.css Connection: keep-alive Cookie: lastSchool=72515; isPartner=true; _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:18 GMT content-length: 77160 content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 last-modified: Tue, 04 Aug 2020 19:21:21 GMT etag: "12d68-5ac12290decd3" cache-control: max-age=14400 vary: Accept-Encoding via: 1.1 vegur cf-cache-status: MISS accept-ranges: bytes server: cloudflare cf-ray: 76e31e12cd9cb529-OSL X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/school/homepage_banner_bg.jpg	104.22.2.201	200 OK	98 kB
URL HTTP/2 assets.1stplacespiritwear.com/school/homepage_banner_bg.jpg IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2311x807, components 3\012- data Size 98 kB (97531 bytes) Hash 711313415d8d7a15eb6effa404455fff ff2c4e7fec0aa073deefe8db4cf094c6bbb900c8 6a745f0e819e67df0f588550fc0f3d134ec9bf16c8e97988d97ada38cc352947 HTTP Headers GET /school/homepage_banner_bg.jpg HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/css/style.css Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:18 GMT content-type: image/jpeg content-length: 97531 last-modified: Thu, 08 Jul 2021 21:50:10 GMT etag: "17cfb-5c6a3a39a471c" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e12bd73b529-OSL X-Firefox-Spdy: h2`

	spiritwear1dss.herokuapp.com/api/group/72515/121	54.159.116.102	302 Found	2.2 kB
URL HTTP/1.1 spiritwear1dss.herokuapp.com/api/group/72515/121 IP 54.159.116.102:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document, ASCII text, with very long lines (2167), with no line terminators Size 2.2 kB (2167 bytes) Hash c6e793a42031c7a60dba615cab2dd404 a360efe476763fe1883f39337a885b86b1ea5add 50ae70af2a91b66597c66c9dbe29a7fa8e46829d03a69dc55a48fb7d79da6dad HTTP Headers `GET /api/group/72515/121 HTTP/1.1 Host: spiritwear1dss.herokuapp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 302 Found Server: Cowboy Date: Tue, 22 Nov 2022 16:42:18 GMT Connection: keep-alive X-Frame-Options: SAMEORIGIN X-Xss-Protection: 0 X-Content-Type-Options: nosniff X-Download-Options: noopen X-Permitted-Cross-Domain-Policies: none Referrer-Policy: strict-origin-when-cross-origin Location: https://cache.1stplacespiritwear.com/1dss/tile?width=850&height=500&hj=right&vj=top&stf=true&vv=0.01&operc=0.57&opolicy=leftbottom&vpolicy=downup&p1=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&p2=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&p3=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 Content-Type: text/html; charset=utf-8 Cache-Control: no-cache X-Request-Id: c9e4aa74-e03a-4fa7-ba43-a46effe6d322 X-Runtime: 0.102448 Transfer-Encoding: chunked Via: 1.1 vegur

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (20039 bytes) Hash 47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Tue, 22 Nov 2022 16:41:08 GMT expires: Tue, 22 Nov 2022 18:41:08 GMT cache-control: public, max-age=7200 age: 70 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/img/button.png	104.22.2.201	200 OK	86 kB
URL HTTP/2 assets.1stplacespiritwear.com/img/button.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 397 x 94, 8-bit/color RGBA, non-interlaced\012- data Size 86 kB (86039 bytes) Hash d918e8eea9eeed0135b3e0ed48a474dc c39b1b32d09a9fed25ff3301749689ccacc3cfdd a8fae3f91b9200db02071bc9165a6b3069e35100bb643461c4d5b1a6f5ac91f9 HTTP Headers GET /img/button.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/css/style.css Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:18 GMT content-type: image/png content-length: 86039 last-modified: Tue, 04 Aug 2020 19:21:35 GMT etag: "15017-5ac1229e7665b" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e12bd7bb529-OSL X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 0be3e3b6a55789993d7a1a175bb8e335 70e1b2ef23731397872aa67d3da9f97d40e4fad4 155e55bec061fd76dc2a73b570ebbac9ad17f22e95394c7bf96094a0729a7a54 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4779 Cache-Control: max-age=148098 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:18 GMT Etag: "637c88c1-1d7" Expires: Thu, 24 Nov 2022 09:50:36 GMT Last-Modified: Tue, 22 Nov 2022 08:30:57 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 0be3e3b6a55789993d7a1a175bb8e335 70e1b2ef23731397872aa67d3da9f97d40e4fad4 155e55bec061fd76dc2a73b570ebbac9ad17f22e95394c7bf96094a0729a7a54 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4779 Cache-Control: max-age=148098 Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:18 GMT Etag: "637c88c1-1d7" Expires: Thu, 24 Nov 2022 09:50:36 GMT Last-Modified: Tue, 22 Nov 2022 08:30:57 GMT Server: ECS (ska/F70A) X-Cache: HIT Content-Length: 471`

	connect.facebook.net/en_US/fbevents.js	157.240.200.14	200 OK	27 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 157.240.200.14:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 27 kB (27340 bytes) Hash 44ecaa3c2a4929a40141edc4540aaf84 f29a573182333b2500d41bfc389d6c5232dfb348 6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396 HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: GqHyyaZgP+6daKmAHs4MwYNJBNjcBd84EA2XgL6SVscGatyv3sD88Kvt1VMcBmulpH9fC/VmaJ3oNJXRvzC/cg== content-length: 27340 x-fb-trip-id: 1679558926 date: Tue, 22 Nov 2022 16:42:18 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 461760f30678f8aa3ad801eb88dc59d9 7b3c33ec99c429ad19918895014e309ca947f31a fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:18 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&gjid=1936346597&_gid=895636699.1669135338&_u=YCDACEAABAAAACAAI~&z=1230197967	142.251.1.154	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&gjid=1936346597&_gid=895636699.1669135338&_u=YCDACEAABAAAACAAI~&z=1230197967 IP 142.251.1.154:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&gjid=1936346597&_gid=895636699.1669135338&_u=YCDACEAABAAAACAAI~&z=1230197967 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://1stplacespiritwear.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Tue, 22 Nov 2022 16:42:18 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/apple-touch-icon.png	104.22.2.201	200 OK	5.7 kB
URL HTTP/2 assets.1stplacespiritwear.com/apple-touch-icon.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 5.7 kB (5693 bytes) Hash 03608e0bfc1c9c52612e41a36d42807e bc13d13aefe3846625c253907e0b152de9d4e17c 1841cbee13c7270e46a8d52dba7592bdee395f10c7771228be880b23c562ea35 HTTP Headers GET /apple-touch-icon.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:18 GMT content-type: image/png content-length: 5693 last-modified: Tue, 04 Aug 2020 19:21:15 GMT etag: "163d-5ac1228ac1535" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e193e5ab529-OSL X-Firefox-Spdy: h2`

	assets.1stplacespiritwear.com/favicon-16x16.png	104.22.2.201	200 OK	368 B
URL HTTP/2 assets.1stplacespiritwear.com/favicon-16x16.png IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size 368 B (368 bytes) Hash 1ce36d00ba61b39faacc80b5c895b6a3 c37bf87415dc21d606e3d37bc297073827d67db3 aebd72f45ba17d4d5c51946fe5a662c2734a07ff9e0f1ff7bd11004e22685701 HTTP Headers GET /favicon-16x16.png HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:18 GMT content-type: image/png content-length: 368 last-modified: Tue, 04 Aug 2020 19:21:15 GMT etag: "170-5ac1228aad8ca" cache-control: max-age=14400 cf-cache-status: MISS accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 76e31e193e5fb529-OSL X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 461760f30678f8aa3ad801eb88dc59d9 7b3c33ec99c429ad19918895014e309ca947f31a fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:18 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash fab2cb3bd48a955d89176110d75459e4 8e642591b32f0095b8302d23b2aa3d4849352c56 71e3ae0dd72335874bd1e42e216d72a6185fb21786e55efbf3012ee0094692a0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:18 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&_u=YCDACEAABAAAACAAI~&z=121171211	142.250.74.164	200 OK	42 B
URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&_u=YCDACEAABAAAACAAI~&z=121171211 IP 142.250.74.164:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-23474683-2&cid=260044054.1669135337&jid=320662014&_u=YCDACEAABAAAACAAI~&z=121171211 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 22 Nov 2022 16:42:19 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9ef11a2d1e232b4b45e40ff0c29fa8b0 0966963f13e3b149e3e3c8c2c81e7986d1d8a07b 9ce8b9ab5f1dfdc0686d1660ed64c6eff5cc3d1492d82aa769ac58e3a159dd1b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 22 Nov 2022 16:42:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	tracker.personizely.net/8e4107abb5/widget/events	172.67.210.146	200 OK	378 kB
URL HTTP/2 tracker.personizely.net/8e4107abb5/widget/events IP 172.67.210.146:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (588), with no line terminators Size 378 kB (378165 bytes) Hash 9cea8a33d06ab4cb7ddd582ecbc69d42 fc1e332e58b2cb2179a61e34a65a837cca0b4411 315842c27599af2f67836be521e661b45c0e22fc205c4b723b0a0269561c68f5 HTTP Headers `POST /8e4107abb5/widget/events HTTP/1.1 Host: tracker.personizely.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 374 Origin: https://1stplacespiritwear.com Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/json cache-control: no-cache, private allow: POST access-control-allow-origin: https://1stplacespiritwear.com cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D1gpA6W2JklS3jfdVWj%2FD%2Fi8AOPJjaA7A43dV0eJVWuZV9X6c%2B9R%2Bg8FP4VaOyxHDNngVR8EcIZP7my6MkdQRA9eXbH%2FbAYSwaxBSVTqxxdWZXWoMFfdJoRDK5cWwhINd9MrQocBv3ZIlA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 76e31e15a8e40b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	www.facebook.com/tr/?id=300313241076835&ev=PageView&dl=https%3A%2F%2F1stplacespiritwear.com%2Fschools%2FOH%2FCincinnati%2FSummit%2BElementary%2BSchool%3Futm_source%3D72515%26utm_medium%3Daffiliate%26utm_campaign%3Dschool-direct&rl=&if=false&ts=1669135338786&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669135338785.1092133077&it=1669135338411&coo=false&rqm=GET	157.240.200.35	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id=300313241076835&ev=PageView&dl=https%3A%2F%2F1stplacespiritwear.com%2Fschools%2FOH%2FCincinnati%2FSummit%2BElementary%2BSchool%3Futm_source%3D72515%26utm_medium%3Daffiliate%26utm_campaign%3Dschool-direct&rl=&if=false&ts=1669135338786&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669135338785.1092133077&it=1669135338411&coo=false&rqm=GET IP 157.240.200.35:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /tr/?id=300313241076835&ev=PageView&dl=https%3A%2F%2F1stplacespiritwear.com%2Fschools%2FOH%2FCincinnati%2FSummit%2BElementary%2BSchool%3Futm_source%3D72515%26utm_medium%3Daffiliate%26utm_campaign%3Dschool-direct&rl=&if=false&ts=1669135338786&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669135338785.1092133077&it=1669135338411&coo=false&rqm=GET HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400 date: Tue, 22 Nov 2022 16:42:19 GMT X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	143.204.42.158	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.158:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 3db4a93901f738112ce8ded1c9b677ff c892b73add3625e723232b3fb7884c24aa4003a5 fd813cb55513de9fb3812f51a3ddd0a303ff02f2d64aa905d147b20136ff75e7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=115980 Date: Tue, 22 Nov 2022 16:42:19 GMT Etag: "637c1df7-1d7" Expires: Thu, 24 Nov 2022 00:55:19 GMT Last-Modified: Tue, 22 Nov 2022 00:55:19 GMT Server: nginx X-Cache: Miss from cloudfront Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: CvB8uR2UZn4H2fgJoeOOOS1ycRVukMghbhPrIb0-XbtbU1PuWKcRlg==`

	assets.1stplacespiritwear.com/vendor/slick/slick.js	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/vendor/slick/slick.js IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /vendor/slick/slick.js HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/javascript last-modified: Tue, 04 Aug 2020 19:21:36 GMT etag: W/"15b7b-5ac1229f30ae9" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0e0ed0b529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	1stplacespiritwear.com/css/elegent-icons/style.css	104.22.2.201	200 OK	0 B
URL HTTP/2 1stplacespiritwear.com/css/elegent-icons/style.css IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /css/elegent-icons/style.css HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: lastSchool=72515; isPartner=true Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/css; charset=UTF-8 content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 cache-control: public, max-age=14400 last-modified: Thu, 10 Nov 2022 19:57:01 GMT etag: W/"6316-184631dfec8" via: 1.1 vegur cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0dfeb2b529-OSL content-encoding: gzip X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/js/main-js.js	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/js/main-js.js IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/main-js.js HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/javascript last-modified: Wed, 30 Sep 2020 15:34:51 GMT etag: W/"952-5b089a3fb9596" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0e0ee1b529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	1stplacespiritwear.com/css/style.css	104.22.2.201	200 OK	0 B
URL HTTP/2 1stplacespiritwear.com/css/style.css IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /css/style.css HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: lastSchool=72515; isPartner=true Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/css; charset=UTF-8 content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 cache-control: public, max-age=14400 last-modified: Thu, 10 Nov 2022 19:57:01 GMT etag: W/"10629-184631dfec8" via: 1.1 vegur cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0deea8b529-OSL content-encoding: gzip X-Firefox-Spdy: h2

	1stplacespiritwear.com/assets/css/elegent-icons/fonts/ElegantIcons.woff	104.22.2.201	200 OK	0 B
URL HTTP/2 1stplacespiritwear.com/assets/css/elegent-icons/fonts/ElegantIcons.woff IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /assets/css/elegent-icons/fonts/ElegantIcons.woff HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://1stplacespiritwear.com/css/elegent-icons/style.css Connection: keep-alive Cookie: lastSchool=72515; isPartner=true; _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.1.260044054.1669135337 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/font-woff content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 last-modified: Tue, 04 Aug 2020 19:21:20 GMT etag: W/"f8b0-5ac1228f7c0e0" cache-control: max-age=14400 vary: Accept-Encoding via: 1.1 vegur cf-cache-status: MISS server: cloudflare cf-ray: 76e31e12fdd7b529-OSL X-Firefox-Spdy: h2

	cdn.foxycart.com/cart.1stplacespiritwear.com/foxycart.jsonp.sidecart.with-jquery.min.1668732105.js	54.230.111.72	200 OK	0 B
URL HTTP/2 cdn.foxycart.com/cart.1stplacespiritwear.com/foxycart.jsonp.sidecart.with-jquery.min.1668732105.js IP 54.230.111.72:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cart.1stplacespiritwear.com/foxycart.jsonp.sidecart.with-jquery.min.1668732105.js HTTP/1.1 Host: cdn.foxycart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript date: Fri, 18 Nov 2022 08:06:06 GMT server: nginx cache-control: max-age=2592000, public foxy: app content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: C8w1SjmYnOwScCiAo0ZagIPuvacmaonK0iDLw0eYiyRhwZSkMoCoBw== age: 376572 X-Firefox-Spdy: h2`

	1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct	104.22.2.201	200 OK	0 B
URL HTTP/2 1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct HTTP/1.1 Host: 1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:16 GMT content-type: text/html; charset=utf-8 content-security-policy: default-src 'self' cdn.foxycart.com maxcdn.bootstrapcdn.com cart.1stplacespiritwear.com ajax.googleapis.com fonts.googleapis.com fonts.gstatic.com blog.1stplacespiritwear.com 54.83.234.214 www.googletagmanager.com;img-src https://spiritwear1dss.herokuapp.com 'self' data: cache.1stplacespiritwear.com pulseid.1stplacespiritwear.com log.olark.com cdn.foxycart.com cart.1stplacespiritwear.com blog.1stplacespiritwear.com www.facebook.com www.google.com www.google-analytics.com www.googletagmanager.com assets.1stplacespiritwear.com www.paypalobjects.com www.google.co.in;script-src 'unsafe-inline' 'self' static.personizely.net cdn.foxycart.com ajax.googleapis.com cart.1stplacespiritwear.com cdnjs.cloudflare.com static.olark.com assets.olark.com api.olark.com knrpc.olark.com blog.1stplacespiritwear.com www.googletagmanager.com connect.facebook.net static.hotjar.com script.hotjar.com www.google-analytics.com api.cartstack.com assets.1stplacespiritwear.com www.googleadservices.com;style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com fonts.googleapis.com cdn.foxycart.com static.olark.com blog.1stplacespiritwear.com assets.1stplacespiritwear.com;frame-src static.olark.com vars.hotjar.com;media-src assets.1stplacespiritwear.com static.olark.com;connect-src https://spiritwear1dss.herokuapp.com 'self' tracker.personizely.net knrpc.olark.com www.google-analytics.com in.hotjar.com stats.g.doubleclick.net api.cartstack.com;font-src 'self' assets.1stplacespiritwear.com fonts.gstatic.com static.olark.com cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin x-dns-prefetch-control: off expect-ct: max-age=0 x-frame-options: SAMEORIGIN x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: unsafe-url x-xss-protection: 0 set-cookie: lastSchool=72515; Max-Age=311040000; Path=/ isPartner=true; Max-Age=311040000; Path=/ vary: accept-encoding via: 1.1 vegur cf-cache-status: DYNAMIC server: cloudflare cf-ray: 76e31e0a38c2b529-OSL content-encoding: gzip X-Firefox-Spdy: h2

	assets.1stplacespiritwear.com/vendor/slick/slick.css	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/vendor/slick/slick.css IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /vendor/slick/slick.css HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/css last-modified: Tue, 04 Aug 2020 19:21:36 GMT etag: W/"6f0-5ac1229f2bcc9" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0dfec5b529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	assets.1stplacespiritwear.com/vendor/slick/slick-theme.css	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/vendor/slick/slick-theme.css IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /vendor/slick/slick-theme.css HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/css last-modified: Tue, 04 Aug 2020 19:21:36 GMT etag: W/"c49-5ac1229f46a7c" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0dfec3b529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	assets.1stplacespiritwear.com/js/modernizr-custom.js	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/js/modernizr-custom.js IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/modernizr-custom.js HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/javascript last-modified: Tue, 04 Aug 2020 19:21:15 GMT etag: W/"d49-5ac1228b49cdd" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0dfec8b529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	assets.1stplacespiritwear.com/js/bootstrap.min.js	104.22.2.201	200 OK	0 B
URL HTTP/2 assets.1stplacespiritwear.com/js/bootstrap.min.js IP 104.22.2.201:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/bootstrap.min.js HTTP/1.1 Host: assets.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: application/javascript last-modified: Tue, 04 Aug 2020 19:21:16 GMT etag: W/"ea6a-5ac1228c01673" cache-control: max-age=14400 cf-cache-status: MISS vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0e0ecdb529-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	tracker.personizely.net/8e4107abb5/events	172.67.210.146	200 OK	0 B
URL HTTP/2 tracker.personizely.net/8e4107abb5/events IP 172.67.210.146:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `OPTIONS /8e4107abb5/events HTTP/1.1 Host: tracker.personizely.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://1stplacespiritwear.com/ Origin: https://1stplacespiritwear.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/html; charset=UTF-8 cache-control: no-cache, private vary: Origin access-control-allow-methods: POST, PUT, GET, DELETE access-control-allow-headers: content-type access-control-max-age: 3600 access-control-allow-origin: https://1stplacespiritwear.com cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RyjUUxTATVm3C5Flbno8rNEecOwOGbm1bDdulypTP0yMlPOQjdh4WjIRmqhqFuTzX3V6jRYhWDEyUeL39sWrZbHnfDF85yFXQ7mqJvMQ4jAU4TqxfA%2F13eb%2BTlCNaHpIp%2F%2Fkc2zHR7Z7FQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 76e31e137ea50b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	static.personizely.net/8e4107abb5.js	172.67.210.146	200 OK	0 B
URL HTTP/2 static.personizely.net/8e4107abb5.js IP 172.67.210.146:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /8e4107abb5.js HTTP/1.1 Host: static.personizely.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:16 GMT content-type: application/javascript access-control-allow-origin: * cf-bgj: minify etag: W/"636e9b50-244c4" last-modified: Fri, 11 Nov 2022 18:58:24 GMT cache-control: max-age=60 cf-cache-status: HIT age: 82046 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RKZvN3H%2BNANX5eru6Nlym%2Bt%2FaMmjZSRER9XzyjGDbCsG2wjfwNFAADYSvGgV2PNgRT8P3bLHXi0Az9YqE%2BIqkyj6qlLWPsOsjN9ZZ2EdF3kWQEDpfNN76iPnEqghiEfoCQ57PjL%2BwWGk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 76e31e0eef450b49-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdn.foxycart.com/cart.1stplacespiritwear.com/responsive_styles.1668889147.css	54.230.111.72	200 OK	0 B
URL HTTP/2 cdn.foxycart.com/cart.1stplacespiritwear.com/responsive_styles.1668889147.css IP 54.230.111.72:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cart.1stplacespiritwear.com/responsive_styles.1668889147.css HTTP/1.1 Host: cdn.foxycart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: text/css;charset=UTF-8 date: Sun, 20 Nov 2022 01:31:40 GMT server: nginx cache-control: max-age=2592000, public foxy: app content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: uGvhfpE9oxg4n52O3G3k6l2ML9cN5c_B1iK-6qZbXPd1gSwwMX6EuA== age: 227439 X-Firefox-Spdy: h2`

	cart.1stplacespiritwear.com/cart?cart=get&callback=jQuery1111049683947792095384_1669135339069&output=json&_=1669135339070	54.230.111.62	200 OK	0 B
URL HTTP/2 cart.1stplacespiritwear.com/cart?cart=get&callback=jQuery1111049683947792095384_1669135339069&output=json&_=1669135339070 IP 54.230.111.62:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /cart?cart=get&callback=jQuery1111049683947792095384_1669135339069&output=json&_=1669135339070 HTTP/1.1 Host: cart.1stplacespiritwear.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1stplacespiritwear.com/schools/OH/Cincinnati/Summit+Elementary+School?utm_source=72515&utm_medium=affiliate&utm_campaign=school-direct Connection: keep-alive Cookie: _ga_QNZ27SSWW4=GS1.1.1669135336.1.0.1669135336.0.0.0; _ga=GA1.2.260044054.1669135337; _gid=GA1.2.895636699.1669135338; _gat_UA-23474683-2=1; _gat_UA-0000000-1=1; _fbp=fb.1.1669135338785.1092133077 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Tue, 22 Nov 2022 16:42:19 GMT server: nginx vary: Accept-Encoding set-cookie: fcsid=2hr7lt9q88dmdpmb1efd15jirp; path=/; SameSite=None; secure expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate pragma: no-cache p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" x-content-type-options: nosniff foxy: app content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ZDMwcW7_FbtcYpqSWVUZneEAEeNCheV6wvjw2LsD38yVzwaXEL0EXQ== X-Firefox-Spdy: h2

	tracker.personizely.net/8e4107abb5/widget/events	172.67.210.146	200 OK	0 B
URL HTTP/2 tracker.personizely.net/8e4107abb5/widget/events IP 172.67.210.146:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers OPTIONS /8e4107abb5/widget/events HTTP/1.1 Host: tracker.personizely.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://1stplacespiritwear.com/ Origin: https://1stplacespiritwear.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Tue, 22 Nov 2022 16:42:17 GMT content-type: text/html; charset=UTF-8 cache-control: no-cache, private vary: Origin access-control-allow-methods: POST, PUT, GET, DELETE access-control-allow-headers: content-type access-control-max-age: 3600 access-control-allow-origin: https://1stplacespiritwear.com cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O4QTUxJIxiSceqReDVzqv%2B4eqPux38e6trkQBnF5N7ZSKncAfgyodP3h%2FmRGlDmIFGuUZfiuzC6w%2Bl3jFNt0oOijJ7GEPPr8QBIb1sFil9cGJkW7yqN%2BYcY3Yb3JjpzvDLBKAITEPy0RbA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 76e31e15387c0b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdn.foxycart.com/cart.1stplacespiritwear.com/loader.js	54.230.111.72	200 OK	0 B
URL HTTP/2 cdn.foxycart.com/cart.1stplacespiritwear.com/loader.js IP 54.230.111.72:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cart.1stplacespiritwear.com/loader.js HTTP/1.1 Host: cdn.foxycart.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://1stplacespiritwear.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: application/x-javascript date: Tue, 22 Nov 2022 13:43:50 GMT server: nginx cache-control: max-age=90, s-maxage=21600, public foxy: app content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: CLBVTtEz-pl3e1ePZUyvfvEoRkgJC0wnZOn5IK_ipOlwNuWi_xVX0w== age: 10706 X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations