Overview

URL 1stselections.com/index.php
IP50.28.33.173
ASNAS32244 Liquid Web, Inc.
Location United States
Report completed2019-03-20 05:47:03 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-20 2 1stselections.com/index.php Phishing
2019-03-20 2 1stselections.com/ Phishing
2019-03-20 2 1stselections.com/wp-includes/js/jquery/jquery.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/507d6c120e7185969e6f3d518aab1c67.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/e5b2ecd058ad65ce72a0c83107108b (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/aa6182dae71fced7c650937c545da077.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/8cea681f72bd44fed0634894d959a6 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/6992438eb0cac9f1f7cdcf4ba7332ab7.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/3c29b48f02f6f0f1dd70f681ab32d6 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/7ef948823df8bb5996f46bfb70bad4 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/6067d24218622e4742ca51916ac2f480.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/82e7d71ecc9e327b19218b90f81f40 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/08fb79b6852abbe4f7f1c7c76060f56a.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/bdbd4f312baf8c046047fbacc59f4d (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/72cc1a26d7573872858672392dabc6 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/eb16b49548a76345c9f382bf40a7a0 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/fad68cd1de71dd059f46aaa762ae203e.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/1f40fd3d04587b0b235e077d38ed4a (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/bf4428d0d070f1e343f3fb3116512cfb.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/9e06a631727dcb3c830b283c322b1974.js Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/e9ec5e03c3ff3aa045cff694ad2238 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/b894aa11bcca9b85d31310102353e6 (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2019/03/744d14e740c2a491377d511bf58bfb7b.js Phishing
2019-03-20 2 1stselections.com/wp-content/themes/storefront/assets/fonts/fontawesome-web (...) Phishing
2019-03-20 2 1stselections.com/wp-content/uploads/2017/06/pexels-photo-235509.jpeg Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 50.28.33.173

Date UQ / IDS / BL URL IP
2019-06-09 20:33:37 +0200
0 - 0 - 3 kingjahbs.com/admin 50.28.33.173
2019-06-07 08:56:30 +0200
0 - 0 - 29 1stselections.com/product-category/tops/tops-2 50.28.33.173
2019-06-07 08:56:29 +0200
0 - 0 - 29 1stselections.com/color/white 50.28.33.173
2019-06-05 19:43:56 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173
2019-06-03 05:25:58 +0200
0 - 0 - 1 principalscollege.edu.gh/invoice/FileOneDrive.zip 50.28.33.173
2019-05-31 06:03:40 +0200
0 - 0 - 21 1stselections.com/product-tag/strapless 50.28.33.173
2019-05-31 05:39:03 +0200
0 - 0 - 28 1stselections.com/product/short-sleeves-top-s (...) 50.28.33.173
2019-05-31 05:09:24 +0200
0 - 0 - 1 1stselections.com/product-tag/green-2 50.28.33.173
2019-05-31 05:04:09 +0200
0 - 0 - 29 1stselections.com/product-category/tops/offic (...) 50.28.33.173
2019-05-29 20:47:55 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173

Last 10 reports on ASN: AS32244 Liquid Web, Inc.

Date UQ / IDS / BL URL IP
2019-07-01 04:17:30 +0200
0 - 0 - 0 https://masterconsultas.com.ar.carinofloral.c (...) 50.28.10.192
2019-07-01 03:58:20 +0200
0 - 0 - 0 https://masterconsultas.com.ar.carinofloral.com/ 50.28.10.192
2019-07-01 01:30:34 +0200
0 - 0 - 0 secure.dornacoluna.com/ 72.52.249.46
2019-06-30 09:47:02 +0200
0 - 0 - 0 www.libertyxchange.com/blogs/post/164946%20ht (...) 67.225.166.132
2019-06-30 06:41:59 +0200
0 - 0 - 0 lazarusgaming.com 67.227.226.240
2019-06-30 04:40:05 +0200
0 - 0 - 0 lazarusgaming.com 67.227.226.240
2019-06-30 01:26:42 +0200
0 - 0 - 1 https://bwevip.store/index/pdf 69.16.209.21
2019-06-30 01:26:06 +0200
0 - 0 - 0 youngagrarians.org 209.59.170.70
2019-06-30 01:26:01 +0200
0 - 0 - 0 www.novaworkssoftware.com/ 67.227.136.11
2019-06-30 01:18:58 +0200
0 - 0 - 0 gardencrossings.com 72.52.149.75

Last 10 reports on domain: 1stselections.com

Date UQ / IDS / BL URL IP
2019-06-07 08:56:30 +0200
0 - 0 - 29 1stselections.com/product-category/tops/tops-2 50.28.33.173
2019-06-07 08:56:29 +0200
0 - 0 - 29 1stselections.com/color/white 50.28.33.173
2019-06-05 19:43:56 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173
2019-05-31 06:03:40 +0200
0 - 0 - 21 1stselections.com/product-tag/strapless 50.28.33.173
2019-05-31 05:39:03 +0200
0 - 0 - 28 1stselections.com/product/short-sleeves-top-s (...) 50.28.33.173
2019-05-31 05:09:24 +0200
0 - 0 - 1 1stselections.com/product-tag/green-2 50.28.33.173
2019-05-31 05:04:09 +0200
0 - 0 - 29 1stselections.com/product-category/tops/offic (...) 50.28.33.173
2019-05-29 20:47:55 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173
2019-05-29 19:22:10 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173
2019-05-29 19:16:43 +0200
0 - 0 - 1 1stselections.com/ok/3in1auto.zip 50.28.33.173


JavaScript

Executed Scripts (46)


Executed Evals (1)

#1 JavaScript::Eval (size: 72, repeated: 1) - SHA256: 3421c3a2ecc23147c673489b7f93ffa2404a1e924643f20250dc45bf470ad76d

                                        ({
    usePlainJson: true,
    isDebug: false
})
//# sourceURL=data-dojo-config
                                    

Executed Writes (2)

#1 JavaScript::Write (size: 228, repeated: 5) - SHA256: 1c512b9c5ae258dfe931817fe37c340d7213593c68a439811ada0a72d1c94c32

                                        < !DOCTYPE html > < html > < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=utf-8" / > < meta name = "viewport"
content = "width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" / > < /head><body></body > < /html>
                                    

#2 JavaScript::Write (size: 158, repeated: 2) - SHA256: d1167e3b70947916f421c7e95057bdf8910f7ba485e3716107c9fa1cf6403437

                                        < !DOCTYPE html > < html > < head > < meta name = "viewport"
content = "width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no" / > < /head><body></body > < /html>
                                    


HTTP Transactions (106)


Request Response
                                        
                                            GET /index.php HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         50.28.33.173
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 20 Mar 2019 04:46:25 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Powered-By: W3 Total Cache/0.9.6
Set-Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; path=/
Location: http://1stselections.com/
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 20 Mar 2019 04:46:27 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Expires: Wed, 20 Mar 2019 05:46:27 GMT
Pragma: public
Cache-Control: max-age=3600, public
X-Powered-By: W3 Total Cache/0.9.6
Content-Encoding: gzip
Vary: Accept-Encoding
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14221
Md5:    23d018657a310c7775daf8a32d28da2b
Sha1:   29fa4e167319da23101d61bfac79785a34ff1d2e
Sha256: 89e2c78d9a908e571dddfa91391b93e7f6918c3adebc7772e677512da459903a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.8.9 HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 20 Sep 2017 08:54:08 GMT
Accept-Ranges: bytes
Content-Length: 11915
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   11915
Md5:    af2f44df3198cfda9fd515873696ad00
Sha1:   cc583f436ea6bdb172ce36105a676e2081065638
Sha256: dba6b80aceb1267fd1ed564e08a983730d272813e9b3aff85dc365c65333dd66
                                        
                                            GET /wp-content/uploads/2019/03/ca9722ada79e5fa26876a41744d4ec99.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 13 Mar 2019 10:32:52 GMT
Accept-Ranges: bytes
Content-Length: 8695
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   8695
Md5:    f54a92eb969e75234dbac25a8b349eef
Sha1:   ef220dd15b5fafb6aaf60aa6f360cec300775fe6
Sha256: 38c7552360355b7d254373e1062bfb1eb9b8771f496f3176acd1858e4b68e5c7
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    bac4311be6edce885fb1e538ee53fb43
Sha1:   8dffef20bdbd8ff4d247004c48a5795015f8e095
Sha256: dbf4f0f309bb32959175e8414fbe04cee53a9a4dbed7c3c081b71454cfb83e9d
                                        
                                            GET /wp-content/uploads/2019/03/2c50ef7ec3f7cd43b232e181c21d815b.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 13 Mar 2019 10:55:13 GMT
Accept-Ranges: bytes
Content-Length: 3661
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   3661
Md5:    bbdb97969b07159417e78f377ed480da
Sha1:   24a002e0fd9f0c7b0f3798f3131de9220ba7408e
Sha256: dbe853603bdd19fefa4d0fa7b4f5848ebd6c1c9ceb66304c230420838558cbec
                                        
                                            GET /wp-content/uploads/2019/03/eaee7f31812ccee2f8185a8cf902bc4a.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 13 Mar 2019 07:14:32 GMT
Accept-Ranges: bytes
Content-Length: 10969
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   10969
Md5:    9c7803970bf6ca071005422e39b4c4c3
Sha1:   f73d950d94ab620d3180a9e4ac65efa9d05f12ec
Sha256: f02a83fee530289790cdce56ab04ae5db25e7a51469df1fbca721a7147f45b8d
                                        
                                            GET /instant/initjs?ID=59614a0971add8015d30272b&seid=1 HTTP/1.1 
Host: search.omegacommerce.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         138.201.129.71
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 20 Mar 2019 04:46:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-Proxy-Host: s1
X-Request-Host: eu1_s1
X-Request-Id: 5c91c5a4bf7c123a587d2fbc
X-Whom: proxy
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1543
Md5:    b32ff5640a24cf7183fffd58c86a3ac2
Sha1:   ec48959f6bb1e8d787d52664bce08fac3d71b95d
Sha256: 69e9ba2c1e6b8be3eb5ea114dfd22f316f387f712c73f2396fcca56b1559b3b0
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /wp-content/uploads/2019/03/d950792021898d4dfca3181a7180823d.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 13:50:19 GMT
Accept-Ranges: bytes
Content-Length: 6404
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   6404
Md5:    0bd3bf40b69075362b1a1a966b014c53
Sha1:   6a7a33fa104f57b80256209c714a6e1f78f77ba9
Sha256: edf43ce155210c897485dab5975c3f8badb77e2d809bd4bb9e0b1cc1b8467dbc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 16 Mar 2019 14:43:21 GMT
Etag: 86A47724EF9568F830E2FFC394C3CCA01F916A50
X-OCSP-Responder-ID: mcdpcaocsp15
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=294412
Expires: Sat, 23 Mar 2019 14:33:20 GMT
Date: Wed, 20 Mar 2019 04:46:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    6d51b0f112e468f8c009d7a6906f43e2
Sha1:   86a47724ef9568f830e2ffc394c3cca01f916a50
Sha256: 53e2b95bbfcbbe4ad9b0c5853b880931057cec470bc61f891910ebc8edf9e086
                                        
                                            GET /wp-content/uploads/2019/03/cecb4eefd2105a5cea14808dca941aa6-1.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 18:11:36 GMT
Accept-Ranges: bytes
Content-Length: 47743
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   47743
Md5:    62fef892ccd635ef2962fd84479beb0c
Sha1:   91816c81dd8996f9f868edacab444934c700fa4b
Sha256: 8d5f1aa3abdaf06b457598c77853525b6b521ee85b6621db7882c15814efc1ab
                                        
                                            GET /wp-content/uploads/2017/06/1stselections-logo-1474146994.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Thu, 01 Jun 2017 15:07:01 GMT
Accept-Ranges: bytes
Content-Length: 5736
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   5736
Md5:    01c63b9c9e407734e5a0dced25e0108a
Sha1:   818b7455542178644d4c206fd3189bc7b20e55bf
Sha256: beb6a4aa11d844679b03c6940ff11a0bed8d327e566790e31f2b8200ed3806ca
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 14 Mar 2019 11:19:13 GMT
Etag: 7774D0DC9A5E3D2F893608AC51B92FCA90B52934
X-OCSP-Responder-ID: mcdpcaocsp14
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=109408
Expires: Thu, 21 Mar 2019 11:09:56 GMT
Date: Wed, 20 Mar 2019 04:46:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    be0ec32877c61a97d7abc356d7725638
Sha1:   7774d0dc9a5e3d2f893608ac51b92fca90b52934
Sha256: ad5cacf2ce89a5c2814ed570c0f0617266b1c2900b517110fc8b762fd32533e9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 14 Mar 2019 11:19:13 GMT
Etag: 91A3B51CC942A721F34D2FD926581702472F62FB
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=109400
Expires: Thu, 21 Mar 2019 11:09:48 GMT
Date: Wed, 20 Mar 2019 04:46:28 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c88a4046b83d858fb75deafc58d654df
Sha1:   91a3b51cc942a721f34d2fd926581702472f62fb
Sha256: 4d580e57a1de2f80a778a302d925503bcf59c04b03bee4c2c00a49c9c10af34a
                                        
                                            GET /css?family=Source+Sans+Pro:400,300,300italic,400italic,600,700,900&subset=latin%2Clatin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Wed, 20 Mar 2019 04:46:28 GMT
Date: Wed, 20 Mar 2019 04:46:28 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   355
Md5:    b7564f4876c4ef45b503fdc1e880391f
Sha1:   4c6b863b599b0d51a14c747ab9f5a1fa463ebf06
Sha256: d00124d4d02e1b38fd1b237dbc16776ea50be215256dfa09f8431f149a1a8b9c
                                        
                                            GET /sdks/OneSignalSDK.js HTTP/1.1 
Host: cdn.onesignal.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         104.16.206.165
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d09cdd45786b29191be798a7ab921fcaa1553057188; expires=Thu, 19-Mar-20 04:46:28 GMT; path=/; domain=.onesignal.com; HttpOnly
Etag: W/"8875bc06c6bc137b44fe17578e54088f"
CF-Cache-Status: HIT
Expires: Wed, 20 Mar 2019 16:46:28 GMT
Cache-Control: public, max-age=43200
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50ae43f3e42bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5786
Md5:    c966958caae6dfb7d31caa7c2e0dd86e
Sha1:   d150cd9860b6eb213043f785d4a17e841bc1957c
Sha256: 3ec852c63156aa2cb0b0af35d070b1b283247700b87cbb259b48e709c0098863
                                        
                                            GET /wp-content/uploads/2019/03/71a4c4120291c6384d0165d84ff7eaf2.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 13 Mar 2019 15:10:33 GMT
Accept-Ranges: bytes
Content-Length: 36317
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines, with CRLF line terminators
Size:   36317
Md5:    715f442608bd00f6e06019dd3cc560cb
Sha1:   76877e899fa9de10c3847f0b4b963662b327ed75
Sha256: 70b366bb439443efb3788acd395174d64ccada32d03afe2517603bc8447b3936
                                        
                                            GET /wp-content/uploads/2015/06/c-47-25.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Tue, 13 Jun 2017 10:54:50 GMT
Accept-Ranges: bytes
Content-Length: 17375
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17375
Md5:    20aa4d7d1ebdeb5f3ba6c0b1ed8f70fa
Sha1:   32d2f5e9becb58f78ef4b65fce8fb68d49c18693
Sha256: 4403c03122af91413ccb0927e4400e0a293619816f5d7951fb891d6cd37c0ff1
                                        
                                            GET /wp-content/uploads/2015/03/c-33-8.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Tue, 13 Jun 2017 12:11:02 GMT
Accept-Ranges: bytes
Content-Length: 21417
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21417
Md5:    1f146e0011224e0efac8c357973d8803
Sha1:   770cfccc0a4b0e999b6d53bd0f38ef4147cf5f10
Sha256: 5063f3b1af875b662fad9c22c6229afd1da21c6b7998a456a09adcd6adc86c94
                                        
                                            GET /wp-content/uploads/2018/03/MG_0669-450x450.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Thu, 29 Mar 2018 21:05:36 GMT
Accept-Ranges: bytes
Content-Length: 14386
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14386
Md5:    2124cf30293f49ec60cb6af77120526c
Sha1:   db180242bf4ba4626419abd8f98f58543fb335e7
Sha256: 81299ff3b2f67342eabcacb3b63d0c2e0c030d24b35012b9809cd95b0c39cc27
                                        
                                            GET /wp-content/uploads/2015/03/c-29-4.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Tue, 13 Jun 2017 12:10:44 GMT
Accept-Ranges: bytes
Content-Length: 18032
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18032
Md5:    005595b77b53ff5045fb2812787ed1ce
Sha1:   8f789f4b6e601fb9b9cfc505a8ace6ffa42a9415
Sha256: 582e9e8dcd6ce4006730ef50772f21339f1f8d56f08beb713488d5b95dbc8333
                                        
                                            GET /wp-content/uploads/2018/03/MG_0649_01-450x450.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Thu, 29 Mar 2018 20:52:11 GMT
Accept-Ranges: bytes
Content-Length: 15929
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15929
Md5:    7f3bcddcc732e503587e469b217edd71
Sha1:   d5f958ee50f277600c16ae0e3c0ac09ae02f2e67
Sha256: 8852344fb93bd1ffb59caf5e977f6d65581ce30bc230ae52789b7d27ed7822e2
                                        
                                            GET /wp-content/uploads/2018/03/MG_0651_01-1-450x450.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Thu, 29 Mar 2018 20:45:24 GMT
Accept-Ranges: bytes
Content-Length: 9466
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   9466
Md5:    d7dc4e1e63437c8404a1b09e39b78e71
Sha1:   489f0a9c32811c46fca79f56b8b26d6e4e666231
Sha256: c2c18ca03709794d451c0c765e5d1e2d8f3ab808c0edaf5812de4e0155c3c41a
                                        
                                            GET /wp-content/uploads/2018/03/MG_0657_02-450x450.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Thu, 29 Mar 2018 20:19:17 GMT
Accept-Ranges: bytes
Content-Length: 12422
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12422
Md5:    d00ec5f4bc7a9e35680bf3132526bb66
Sha1:   3d5775177e6ebd13fd36ce902ac33d1bb6f8c080
Sha256: c99d95972e6db7bb84818da52399792e70efc9cb7c035e94686884331b748f17
                                        
                                            GET /wp-content/uploads/2019/03/5e2f1940281fc493d0196bc11a0c50f6.css HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 18:12:34 GMT
Accept-Ranges: bytes
Content-Length: 48567
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive


--- Additional Info ---
Magic:  UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
Size:   48567
Md5:    a3689bcf6bb63101217ca320e38b5ad2
Sha1:   659247737a3fbe4a68d16395505b249a000963d0
Sha256: 5f9d6e96ae523aa8e638d2132cfce07d37f1255ef3b919e86397ff3029504cba
                                        
                                            GET /wp-includes/js/jquery/jquery.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Mon, 23 May 2016 09:00:29 GMT
Accept-Ranges: bytes
Content-Length: 97184
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   97184
Md5:    8610f03fe77640dee8c4cc924e060f12
Sha1:   076524186dbbdd4c41afbbd6b260d9e46a095811
Sha256: fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=162883
Date: Wed, 20 Mar 2019 04:46:29 GMT
Etag: "5c918c09-1d7"
Expires: Fri, 22 Mar 2019 02:01:12 GMT
Last-Modified: Wed, 20 Mar 2019 00:40:41 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0172d998b8657bc0069a536ae082219f
Sha1:   74b6068f47f5a6772018bfac5625f81c5683bc95
Sha256: 530350330ec5c19ebba52ca629010716062bc312bc2b4ad2d8e17a4d1ca8a5ed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=119680
Date: Wed, 20 Mar 2019 04:46:29 GMT
Etag: "5c90e334-1d7"
Expires: Thu, 21 Mar 2019 14:01:09 GMT
Last-Modified: Tue, 19 Mar 2019 12:40:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d1bc1c4ff1007d2ab8bae0dd1ddf2458
Sha1:   b2a9b572243f19fefaf0521e6bfc4ababf8b5e53
Sha256: 52e21c8093f87e6f29212f72037753441be5c8024e3121d0e18cbac9359a276a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 17 Mar 2019 12:36:13 GMT
Etag: 0A7B87D2AB100510B76DC11B5E4A0C1954EFE7BF
X-OCSP-Responder-ID: mcdpcaocsp4
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=373183
Expires: Sun, 24 Mar 2019 12:26:12 GMT
Date: Wed, 20 Mar 2019 04:46:29 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    61161dd294093dd35c2fa86a3ec54fe3
Sha1:   0a7b87d2ab100510b76dc11b5e4a0c1954efe7bf
Sha256: a400005fcd13af33b414f1da5cf8fd8d433027b9080a741839fd29433787c2aa
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 14 Mar 2019 11:19:13 GMT
Etag: 3A2B0415779EF21691DFF37A8BA0A93FD99DFA07
X-OCSP-Responder-ID: mcdpcaocsp15
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=109367
Expires: Thu, 21 Mar 2019 11:09:16 GMT
Date: Wed, 20 Mar 2019 04:46:29 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    014e1f894efb071917e6cb0bbd951e29
Sha1:   3a2b0415779ef21691dff37a8ba0a93fd99dfa07
Sha256: d453be37130dcc7cc7e26d118822bcca760d70bde070acf764b7c9fd496c4bde
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:29 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    5a6669715ea07641a6a38db39dc75160
Sha1:   8b43aaef501c30a876bd8fd113452c9d76dca78a
Sha256: 7fd4d1ca31a220629342eb6d38ea4db4499a0442989adc0ca1a435c6bf1ed852
                                        
                                            GET /v/s1/assets/0b4ec2bc59f156555c750f4ca15c2881_index.css HTTP/1.1 
Host: search.omegacommerce.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         138.201.129.71
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 20 Mar 2019 04:46:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin
Last-Modified: Mon, 25 Feb 2019 10:18:42 GMT
X-Request-Host: eu1_s1
X-Request-Id: 5c91c5a5bf7c123a587d2fcd
X-Whom: search1
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6724
Md5:    86b62230331ccfc00148acb6c4a69c1c
Sha1:   8dc2fea4f60ecbf283c9839e67c637e4eb432f2f
Sha256: 690cbf4b678bc48cfbb638ae44ae2257e860bd1044b51aa586a903b6210ea461
                                        
                                            GET /wp-content/uploads/2017/08/IMG_9536.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 16 Aug 2017 13:30:36 GMT
Accept-Ranges: bytes
Content-Length: 340296
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   340296
Md5:    d30b391b8170a7c517e954711c83f2e4
Sha1:   b0bce72b346d002ed462e1edaa2d803ab5c814d4
Sha256: 14595721b539096465d0da329a54a140c94bc80de0728c1d5cb1d6b8bf92e6d9
                                        
                                            GET /wp-content/uploads/2017/08/IMG_9549.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 16 Aug 2017 12:58:56 GMT
Accept-Ranges: bytes
Content-Length: 272301
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   272301
Md5:    02f553fc06f55a00b2bb2a4f793d8e4a
Sha1:   666268d90875c06d1f4e489fe5ff0d0e43af33cd
Sha256: fde1ee0459dca2bbd1b82c43038d19aca5e67f35c64b988dad32a3c77a87f275
                                        
                                            GET /wp-content/uploads/2017/08/IMG_9541-1.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:28 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 16 Aug 2017 13:36:35 GMT
Accept-Ranges: bytes
Content-Length: 296843
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:28 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   296843
Md5:    5db9ed19bfa51505005a1febceab1d45
Sha1:   63d354f19f70cb4aa7ff32088312cf0c33520585
Sha256: f610b52edba4c7e632194962558c84e3e2c072d571ac7584aab4e554aedf3352
                                        
                                            GET /v/s1/assets/search_frontend2/vendor.min.js?8dc751e9a32a891e7277cd5933f4a0f7 HTTP/1.1 
Host: search.omegacommerce.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         138.201.129.71
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 20 Mar 2019 04:46:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin
Last-Modified: Wed, 18 Apr 2018 15:09:11 GMT
X-Request-Host: eu1_s1
X-Request-Id: 5c91c5a5bf7c123a587d2fce
X-Whom: search1
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   59142
Md5:    8e786462c19c7949fbed7ae2b237f4bd
Sha1:   18d57a1bfeff76913d029b644eb483aa6589adfe
Sha256: 2201ac3a635561e20e5f9fa02ebf714f1036c5e3646e5357dcc8c50d00abe992
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Pragma: public
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-Encoding: gzip
content-security-policy: default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 0
X-FB-Debug: Q6sFpYLWLCCTfsJQZLbFovYwW8ja0ZvyGtqguw0e1mjCN7GOlJ5pRy+Aa9qckf2LZk1K5Jy1BpWIpov8NPqVtg==
Date: Wed, 20 Mar 2019 04:46:29 GMT
Connection: keep-alive
Content-Length: 15216


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15216
Md5:    4272fc1b8e1127c0962d9df99d4b2c52
Sha1:   419b30fd126fce98e4ab3eeb5eb789ffb115f447
Sha256: d2e261422737508d12e437de3b47c59897622428aa711fae6c2d63a39106b7f1
                                        
                                            GET /downloads.mailchimp.com/js/signup-forms/popup/embed.js HTTP/1.1 
Host: s3.amazonaws.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         52.216.21.181
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
x-amz-id-2: Ruxrn8SxSjncSLmjMG9EqLfa7+zaQ2bl/bEHqqjwjspGX7RozzK/NhuorUqnUdHLRchoIO0m1lM=
x-amz-request-id: EEF0F21DC480B510
Date: Wed, 20 Mar 2019 04:46:30 GMT
Last-Modified: Mon, 17 Dec 2018 13:27:08 GMT
Etag: "fd8d7baff84af4b889699b7566bd6c74"
Accept-Ranges: bytes
Content-Length: 129454
Server: AmazonS3


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   129454
Md5:    fd8d7baff84af4b889699b7566bd6c74
Sha1:   16537bb22c6585d9ad74c0087fdfa63f2159156d
Sha256: 6462f1f9ae267b0498653412de032cd564ba4a4e727988f4a0dd30887dc48175
                                        
                                            GET /wp-content/uploads/2019/03/507d6c120e7185969e6f3d518aab1c67.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 04:33:56 GMT
Accept-Ranges: bytes
Content-Length: 2680
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=493
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   2680
Md5:    d432f24cac4f0f02cbf5f51ba256ca64
Sha1:   54a9b83dad52c7a7858e5f16c6927574f1e910b5
Sha256: f432157c5e0143deb8cf9d5a92f43458183cf09a8548cebfbec3f472e2b50b2d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/e5b2ecd058ad65ce72a0c83107108b2f-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Mon, 18 Mar 2019 05:25:36 GMT
Accept-Ranges: bytes
Content-Length: 1706
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1706
Md5:    e34604f79b2d5f19a5b1ed043929096d
Sha1:   0c3459550428e5eb32bdd8bc4340f42ce5cb2575
Sha256: 662556fcadf64e6d859c4ebe6f7db5ae5c31c101df1b84eda7ddcd466cceafc5

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/aa6182dae71fced7c650937c545da077.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 09:01:36 GMT
Accept-Ranges: bytes
Content-Length: 9193
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   9193
Md5:    d3b1930f86585bdc7f7aa7bb0528c199
Sha1:   c5e2e312a9d9545108600590c56e28b193192915
Sha256: 6f1219add812b2dc34023c1d96ac9999848a791f76cc3a4e7d6374976939b7b6

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2017/09/IMG_2183.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:29 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Fri, 15 Sep 2017 21:14:42 GMT
Accept-Ranges: bytes
Content-Length: 169739
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:29 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=498
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   169739
Md5:    1a041e9cf8b75ea173801c81d576348b
Sha1:   ccd98dab6c16126d408ad958f11403a93b45dd1a
Sha256: 5462ca4f4b7eb3592c3129317abf6ba4eff83976735704c88c516d8c712756d7
                                        
                                            GET /wp-content/uploads/2019/03/8cea681f72bd44fed0634894d959a6a4-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Mon, 18 Mar 2019 20:54:39 GMT
Accept-Ranges: bytes
Content-Length: 5532
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   5532
Md5:    136b4850fe870a24879b863b17792e10
Sha1:   d4e0b02726b16703e4df289daf6e4d82cf17e70e
Sha256: c96ca82f71c24adf199aadd4863a6fb7b0efb4b966f3e18e4407b308bf0aaa2b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/6992438eb0cac9f1f7cdcf4ba7332ab7.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 00:39:49 GMT
Accept-Ranges: bytes
Content-Length: 589
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=492
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   589
Md5:    cd2c038217beb091e8393ce11cb6f904
Sha1:   6ed6080d0f27238a84b7bf45175ea0b3a188452e
Sha256: bc77e73683ab6b46ef8bad7072a9fef5f873c0830d2b0f1cb3d30d8d90ce06f3

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/3c29b48f02f6f0f1dd70f681ab32d6b4-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Fri, 15 Mar 2019 02:49:34 GMT
Accept-Ranges: bytes
Content-Length: 2589
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   2589
Md5:    e87c560ed65bb57e10ef28c8c7560bd1
Sha1:   6e771c2712ccd16582be133807daac4fcdb6b873
Sha256: da7b87974962bd90645919c478225eded681e2aaf6a21efb5cb1dd4d856d4eb8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/7ef948823df8bb5996f46bfb70bad4d8-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 13 Mar 2019 19:50:15 GMT
Accept-Ranges: bytes
Content-Length: 1181
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=491
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1181
Md5:    d073651be5c636ee107a098a8381d686
Sha1:   37f42ce1ee7d3e40f3c844ad8a5663b90519aa45
Sha256: 5ed3f18349452dece10b9f75df64469d31b394eae635a7c2ae68084febfc15ff

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/6067d24218622e4742ca51916ac2f480.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 19:05:25 GMT
Accept-Ranges: bytes
Content-Length: 1484
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1484
Md5:    9def1ea53dafdae27baa67cf88c0353b
Sha1:   3c9e4372fa92c1a994bf959a89ebe812323dba4a
Sha256: bd356e3fe1c13a2d162768c32a1d78de7c4cf58b8543f8bf92f5d1eed985ac2d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/82e7d71ecc9e327b19218b90f81f40fb-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 18:27:27 GMT
Accept-Ranges: bytes
Content-Length: 493
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=493
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   493
Md5:    efec5edee6db88077ae87590b31fa57a
Sha1:   c81c82a802b981b4602543e30e99b86c303c6310
Sha256: 6b7c4d274856eee0a8cb2f727e3e110c37ab96cc93361d666d20bf6f59d09e28

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/08fb79b6852abbe4f7f1c7c76060f56a.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:30 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 14:03:15 GMT
Accept-Ranges: bytes
Content-Length: 1355
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:30 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1355
Md5:    b113d0c83c8991788ea2325f0ec0b260
Sha1:   1e29edfe1615eab340582930d43a0c9e1029aefe
Sha256: ea1b95953bf8541a7cc9bf99fdd43d8afc304376800c5c9fe22fcef9ad403f8d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Wed, 20 Mar 2019 04:17:15 GMT
Expires: Wed, 20 Mar 2019 06:17:15 GMT
Last-Modified: Tue, 19 Feb 2019 19:44:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 1755
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            GET /wp-content/uploads/2017/10/IMG_1862.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:29 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Tue, 24 Oct 2017 22:04:06 GMT
Accept-Ranges: bytes
Content-Length: 341944
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:29 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=497
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   341944
Md5:    e8929ecf69f6f6fd881cd2b39ae4effb
Sha1:   ef86f6b56efe4c777313c045319c1761ab8722c5
Sha256: 7ceba6037e54e51c660c8d56db1b5fe2f8a75337719c2b76b9337dafaca553e8
                                        
                                            GET /wp-content/uploads/2019/03/bdbd4f312baf8c046047fbacc59f4dd6-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 13:30:39 GMT
Accept-Ranges: bytes
Content-Length: 636
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=490
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   636
Md5:    49b07a5aae5ee9b5d67986ec6a4de569
Sha1:   a1f8d0fe5e85dd4df66dc90596489573eda1032e
Sha256: c653abd5e1ef409bd0e8b2d9eeb8d88231e7b2bf2631a359bdc4b8a54eedf6a6

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/72cc1a26d7573872858672392dabc664-2.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Tue, 19 Mar 2019 01:04:43 GMT
Accept-Ranges: bytes
Content-Length: 26708
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=493
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   26708
Md5:    f81d7147ef682ec117411fec3c6a29f2
Sha1:   55f3e080099672e66029c0f36a6a1f834157909b
Sha256: ae1beb4365ccfe0c1fb34f94c7f3abf0c17c65f2cbc585fe2bcda0fbd8140104

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/eb16b49548a76345c9f382bf40a7a07c-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 02:34:33 GMT
Accept-Ranges: bytes
Content-Length: 1125
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1125
Md5:    2313b166deefd65ab085266bfbec6858
Sha1:   b586c36d72bbe7dc76c48978ff9f706b0ce9cf01
Sha256: f22850e70da008b89c3c29b73fb65877c2c82960806afce75af9de36e20fd4ae

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/fad68cd1de71dd059f46aaa762ae203e.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 04:47:47 GMT
Accept-Ranges: bytes
Content-Length: 1400
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=492
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1400
Md5:    41e75b72cbe9cb2a81f2b21cf20e6206
Sha1:   7f5794b8d8c169d0189a499a792679d454621b7a
Sha256: 60c14a598c44446819ebaacda2c322abf8449bd2cb7ab73a6848af7340085088

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /v/s1/frontend/index.js?lang=en-US&ID=59614a0971add8015d30272b HTTP/1.1 
Host: search.omegacommerce.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         138.201.129.71
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 20 Mar 2019 04:46:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-Request-Host: eu1_s1
X-Request-Id: 5c91c5a7bf7c123a587d2fee
X-Whom: search1
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22056
Md5:    0a3f975e06825a6c4609e56d81aa86f3
Sha1:   bd82164d1b00c059431f7c1522d71a322c759591
Sha256: 029ff988b181d466022a85605170be839cd2bc098b15ad3a9b8937c8958679a5
                                        
                                            GET /wp-content/uploads/2019/03/1f40fd3d04587b0b235e077d38ed4ac0-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Mon, 18 Mar 2019 03:35:34 GMT
Accept-Ranges: bytes
Content-Length: 2216
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=496
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   2216
Md5:    e1bfe68990b911ca88ee4d30dac9c3b6
Sha1:   9e5676d1040d0b6a85f7e141d9cfbaafb9576d34
Sha256: a9cbebceca77a8b976b2301bb789a8b26463bebb0d869060eb02357ad0679f3b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/bf4428d0d070f1e343f3fb3116512cfb.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 08:02:44 GMT
Accept-Ranges: bytes
Content-Length: 1938
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=489
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   1938
Md5:    191a110a5adf753019a796184228a03d
Sha1:   3985e390d24d559452efae4f14f90a11138f9e20
Sha256: 0b6b57a84b840db19a736e7ea3bfdb5be2b4b5fd0066883606be25eeaab06bd8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/9e06a631727dcb3c830b283c322b1974.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 10:33:41 GMT
Accept-Ranges: bytes
Content-Length: 899
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   899
Md5:    9238dad4ecdf5d639f3500f1dc8ac088
Sha1:   2c490cc93322aab918c1660aa8f3e0727af5560a
Sha256: 33992e3c156fda66f0e628675c27d3462e9fe4fcdc3e3e1918a432adb0a9e317

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/e9ec5e03c3ff3aa045cff694ad223874-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sat, 16 Mar 2019 10:08:51 GMT
Accept-Ranges: bytes
Content-Length: 25740
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=491
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   25740
Md5:    5eea69617b76056dc79551a22e2fc025
Sha1:   970062ea635b205c3f96432187b5d4a3a3057f39
Sha256: e3641d5762b93b1c0ed4b5666316d0f18249d7bb546a8be750638dc87c94a971

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/b894aa11bcca9b85d31310102353e62a-1.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 13:34:09 GMT
Accept-Ranges: bytes
Content-Length: 599
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=492
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with CRLF line terminators
Size:   599
Md5:    af581af60d18bc5194017f70c17359a0
Sha1:   384b65c2960e709e6379ca8c44438c99e60ad63d
Sha256: e56b6b99d630fb6cc411e32977245982f0679cdbae6d09ca043efd587202ae4c

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2019/03/744d14e740c2a491377d511bf58bfb7b.js HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:31 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Sun, 17 Mar 2019 15:30:15 GMT
Accept-Ranges: bytes
Content-Length: 9989
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:31 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=495
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines, with CRLF line terminators
Size:   9989
Md5:    b48397c6597b16f4ee006176bacc2868
Sha1:   4d4b0a593ed4a078229919edbc46bb9f6c8bdaf6
Sha256: 3438a9f0cebf383a2f822b493facab59b8e41d0e6b8e104bb8ccd24c9e53f565

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2017/06/IMG_3395.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:29 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Fri, 16 Jun 2017 11:34:55 GMT
Accept-Ranges: bytes
Content-Length: 223118
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:29 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=499
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   223118
Md5:    fe18ad2fdd23779180cb44e626a246c4
Sha1:   1167eeab86e5a92b9989d72faaf1a440b3d48e08
Sha256: c64658a78e5ccf780fb9529f7db1da28e59c630089d7106f819227318ca9c6f9
                                        
                                            GET /r/collect?v=1&_v=j73&a=1699006115&t=pageview&_s=1&dl=http%3A%2F%2F1stselections.com%2F&ul=en-us&de=UTF-8&dt=1stSelections%20%E2%80%93%20Good%20as%20new&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=1790623417&gjid=1988490111&cid=927146047.1553057192&tid=UA-61383911-1&_gid=1905448708.1553057192&_r=1&z=571547078 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         172.217.21.142
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-61383911-1&cid=927146047.1553057192&jid=1790623417&_gid=1905448708.1553057192&gjid=1988490111&_v=j73&z=571547078
Access-Control-Allow-Origin: *
Date: Wed, 20 Mar 2019 04:46:32 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 418
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   418
Md5:    117f24845e4c6b8d677f3283c4b78670
Sha1:   e14b93ea6d0e5cf0b3239bd6f14736b55c5c6cbc
Sha256: 0c436d63adc29319a0f0b96c2fc75e8c5f04cff1347f87101e462e0716807f02
                                        
                                            GET /subscribe/form-settings?u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1 
Host: mc.us1.list-manage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         104.123.137.120
HTTP/1.1 307 Temporary Redirect
                                        
Server: AkamaiGHost
Content-Length: 0
Location: https://mc.us1.list-manage.com/subscribe/form-settings?u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&c=dojo_request_script_callbacks.dojo_request_script0
Cache-Control: max-age=0
Expires: Wed, 20 Mar 2019 04:46:32 GMT
Date: Wed, 20 Mar 2019 04:46:32 GMT
Connection: keep-alive


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:33 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f85ca5fd0aa92b75ba7d927cc91e6042
Sha1:   8bf3f9e8b387fdc72ab95fde8fc5df43d61a5fa2
Sha256: 3b4a41bad48d75f8aa7a9cc854c905364e9ba6665536e05eccf36a9b29a59a70
                                        
                                            GET /wp-content/themes/storefront/assets/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/wp-content/uploads/2019/03/5e2f1940281fc493d0196bc11a0c50f6.css
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; _ga=GA1.2.927146047.1553057192; _gid=GA1.2.1905448708.1553057192; _gat=1

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Wed, 20 Mar 2019 04:46:32 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Accept-Ranges: bytes
Content-Length: 98024
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:32 GMT
Access-Control-Allow-Origin: *
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=491
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   98024
Md5:    fee66e712a8a08eef5805a46892932ad
Sha1:   28b782240b3e76db824e12c02754a9731a167527
Sha256: ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2017/08/IMG_9543.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; _ga=GA1.2.927146047.1553057192; _gid=GA1.2.1905448708.1553057192; _gat=1

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:32 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 16 Aug 2017 12:41:09 GMT
Accept-Ranges: bytes
Content-Length: 266050
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:32 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=488
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   266050
Md5:    1c686cfd74a8f8b1228620946232b9fa
Sha1:   dc69c30275a8d298838bf14fec0794cbcefc4f82
Sha256: 67dd5f8d8475dce0e7ab0a0a62ef62dace4d7bb317750858e37e051f320655bc
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-61383911-1&cid=927146047.1553057192&jid=1790623417&_gid=1905448708.1553057192&gjid=1988490111&_v=j73&z=571547078 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         64.233.165.156
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Wed, 20 Mar 2019 04:46:34 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /wp-content/uploads/2017/06/IMG_3514.jpg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; _ga=GA1.2.927146047.1553057192; _gid=GA1.2.1905448708.1553057192; _gat=1

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:32 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 14 Jun 2017 17:12:44 GMT
Accept-Ranges: bytes
Content-Length: 291974
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:32 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=494
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   291974
Md5:    c24c4b5f1ff1bf598cecd67d686a235d
Sha1:   e4ea91cefa8fa7ac9619210f15173e6d2254de25
Sha256: 831ee3528470f6c68adc8b78f2bb497701eb8ce4ae1ae0fe532fc02e50fae2ee
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=147516
Date: Wed, 20 Mar 2019 04:46:34 GMT
Etag: "5c911220-1d7"
Expires: Thu, 21 Mar 2019 21:45:10 GMT
Last-Modified: Tue, 19 Mar 2019 16:00:32 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    76413259ccc47ca3ae785dd41c0f13e7
Sha1:   3d8d6bbaad186eb49e92fb6db31b33e4a85519b2
Sha256: 8287e2306deaadcccca0c50469eddae25c77a6822ae0ddd8dca28ba37be47a3a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=101767
Date: Wed, 20 Mar 2019 04:46:34 GMT
Etag: "5c909ce5-1d7"
Expires: Thu, 21 Mar 2019 09:02:41 GMT
Last-Modified: Tue, 19 Mar 2019 07:40:21 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a36b9f37745cd8f7c0fd157a6cc0348e
Sha1:   63ad8adf9306444ede506ae6981b21f597f1e753
Sha256: 6347d18a473466b1792316b008941ca97659a9955256d2e23fa814e1ad7ee8a5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.25
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Fri, 15 Mar 2019 19:51:54 GMT
Etag: AB4BF284E4D8ADBD475EC43D59EBBB0752626587
X-OCSP-Responder-ID: mcdpcaocsp13
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=226575
Expires: Fri, 22 Mar 2019 19:42:49 GMT
Date: Wed, 20 Mar 2019 04:46:34 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    aac25c012fad4757dbf1690b1a2d2fc3
Sha1:   ab4bf284e4d8adbd475ec43d59ebbb0752626587
Sha256: 26f6077a5113e46f34ea429f43137cf16e610c533a37aa51216da86bebb610cb
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:34 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2a0e805ed9a4a0e903d2bda0ebeae4d5
Sha1:   821666f8ea8e20145a739e67a1c61dda3e35ef37
Sha256: 1e0e82ba896941a181deb971dcbaca739aea993cbf648c0fe594550c8a0562dc
                                        
                                            GET /s/sourcesanspro/v11/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7psDQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Source+Sans+Pro:400,300,300italic,400italic,600,700,900&subset=latin%2Clatin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 27952
Date: Fri, 08 Mar 2019 05:38:14 GMT
Expires: Sat, 07 Mar 2020 05:38:14 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:49 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1033700
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   27952
Md5:    a11ec90029733fa4cfb8f01c6705ff4c
Sha1:   26559e31456efefe13d895aadb94617bf51ae8f6
Sha256: 068dc4f91d631b93fdd4cc10e4aba7080a0e5c3e36139939ade3a0cb6983351d
                                        
                                            GET /wp-content/uploads/2017/06/pexels-photo-235509.jpeg HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; _ga=GA1.2.927146047.1553057192; _gid=GA1.2.1905448708.1553057192; _gat=1

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 20 Mar 2019 04:46:32 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
Last-Modified: Wed, 14 Jun 2017 21:38:39 GMT
Accept-Ranges: bytes
Content-Length: 364235
Cache-Control: max-age=31536000, public
Expires: Thu, 19 Mar 2020 04:46:32 GMT
Pragma: public
X-Powered-By: W3 Total Cache/0.9.6
Keep-Alive: timeout=2, max=490
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   364235
Md5:    e59ff9be0bc213ebb6396fbc4855a10d
Sha1:   44ca5f84d2c76266cbe9652281a1399f2f3f1640
Sha256: eab69390c163c9815a7ae426001e521a7881943cd976eafe5f69f4f8fc6c1463

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /s/sourcesanspro/v11/6xK3dSBYKcSV-LCoeQqfX1RYOo3qNq7j.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Source+Sans+Pro:400,300,300italic,400italic,600,700,900&subset=latin%2Clatin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 31400
Date: Fri, 08 Mar 2019 04:57:26 GMT
Expires: Sat, 07 Mar 2020 04:57:26 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1036149
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   31400
Md5:    76f9d1f2c4700f8a5c5947f7a2d0eb25
Sha1:   fb36c8136c30dea6f8efbc52294176e1285156c5
Sha256: 441476cd0197bf32e025c94c8a5fbf41c268fb5fbe24b4a01a43df91030374b4
                                        
                                            GET /56ca363939ccc7527558f3e3/default HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Wed, 20 Mar 2019 04:46:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194; expires=Thu, 19-Mar-20 04:46:34 GMT; path=/; domain=.tawk.to; HttpOnly
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=14400
Etag: W/"fulls65315"
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Expires: Wed, 20 Mar 2019 08:46:35 GMT
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b0abc7a4279-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   132045
Md5:    51e433cc7d912a44c3b01d9cf65fcad1
Sha1:   eab3b308e4f80e50950c1ee67ecbe6b53fe94864
Sha256: 6c015bdabd657f419da291cb5572d10883122c09f13656a5673d2eb991299231
                                        
                                            GET /s/sourcesanspro/v11/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwmRdo.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Source+Sans+Pro:400,300,300italic,400italic,600,700,900&subset=latin%2Clatin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 31384
Date: Fri, 08 Mar 2019 06:50:33 GMT
Expires: Sat, 07 Mar 2020 06:50:33 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1029362
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   31384
Md5:    35d2ccf39c5d6dbd5c49205b4853e50b
Sha1:   a1f4ab7373fc13c3ac4db9f88b7545b37e08faed
Sha256: 3918bfdc75e2c2f69c7c08df3a6c6892a3db232e2d81b7d7b8c8e046c48b25ce
                                        
                                            GET /subscribe/form-settings?u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&u=2282e9c8b3f0de471fdbe38f7&id=10b14f678f&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1 
Host: mc.us1.list-manage.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         104.123.137.120
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: openresty
Content-Length: 581
X-UA-Compatible: IE=edge,chrome=1
X-Mc-Customer-Tier: free
Content-Encoding: gzip
X-EdgeConnect-MidMile-RTT: 4
X-EdgeConnect-Origin-MEX-Latency: 587
Cache-Control: max-age=272
Expires: Wed, 20 Mar 2019 04:51:07 GMT
Date: Wed, 20 Mar 2019 04:46:35 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: _AVESTA_ENVIRONMENT=prod; path=/ _mcid=1.91758560060c73897567c94be7cea544; expires=Thu, 19-Mar-2020 04:46:35 GMT; Max-Age=31536000; path=/; domain=.mailchimp.com


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   581
Md5:    cb3ccf945f4d30ba13480866ab7103d1
Sha1:   69621bcba011cec02c952b5156748df1e016714b
Sha256: 7c105b1324d3c5ba13e1ff407a4583893e91410d3d84b1496ea7bca14c283253
                                        
                                            GET /s/sourcesanspro/v11/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwmRdo.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Source+Sans+Pro:400,300,300italic,400italic,600,700,900&subset=latin%2Clatin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 31396
Date: Fri, 08 Mar 2019 02:09:18 GMT
Expires: Sat, 07 Mar 2020 02:09:18 GMT
Last-Modified: Wed, 11 Oct 2017 18:25:40 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1046237
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   31396
Md5:    376131d3c2d4a6e98a83e65fa5a3882c
Sha1:   a659b630111d926d22248d9f93638c40573fa76a
Sha256: 68153642566506b57ef784ac213baf4e55577e1fa4397f4c85840428b2edc6be
                                        
                                            GET /js/signup-forms/popup/1.0/popup.js HTTP/1.1 
Host: downloads.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         143.204.47.24
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 17:46:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 20 Mar 2019 04:45:58 GMT
Cache-Control: public,max-age=2592000
Vary: Accept-Encoding
Age: 39
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 8TfvnuKEOFEd5_Cf15KJxbFl4D3bUPy-8kbdfaiWB3Z3IBvXC8po-Q==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   29808
Md5:    6eb83ad346ad238ac7a67155d618b259
Sha1:   96de16117a1716769686ae7b81d121586a9b6bad
Sha256: de74797b6fbeedb5f84fe082e1ceb1fc32d969715d6a45a806e7beb3397b170a
                                        
                                            GET /css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&subset=latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         172.217.20.42
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Wed, 20 Mar 2019 04:46:36 GMT
Date: Wed, 20 Mar 2019 04:46:36 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   374
Md5:    a529fcce1cae816958c968d3bae70478
Sha1:   691aa52192318b5c7cb3f1ae7ef71ad855898569
Sha256: f756e19f173772447da34edbfd38b7515b2a119405e54548801a98405ec43b2b
                                        
                                            GET /css/signup-forms/popup/1.0/common.css HTTP/1.1 
Host: downloads.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         143.204.47.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 17:45:57 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 20 Mar 2019 04:45:50 GMT
Cache-Control: public,max-age=2592000
Vary: Accept-Encoding
Age: 48
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: glxtSicn4CbXP2aQvke2G8JX9rLhUIGmnOF4Jcg8e5qSQIEF9BsAZQ==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1812
Md5:    7bb6a7dc4924c5ac2c9530ed1f7de5c6
Sha1:   3353f65dae5947ab39bb6ab6e0e834c6f80150f1
Sha256: 288d434d31d50f4d00c37b0562660e727a813f85256d955924b54b35f96dba47
                                        
                                            GET /css/signup-forms/popup/1.0/banner.css HTTP/1.1 
Host: downloads.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         143.204.47.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 708
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 17:45:57 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 20 Mar 2019 04:46:04 GMT
Etag: "d5ac9308f3dae8b854982fe426b2e0db"
Cache-Control: public,max-age=2592000
Age: 48
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190759.cloudfront.net (CloudFront)
X-Amz-Cf-Id: g9F3uVRiIoSqFutl-gvqPRfTQ9AHN99wWmxJRFljEWYKKflZ88pg3g==


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   708
Md5:    d5ac9308f3dae8b854982fe426b2e0db
Sha1:   38db958ff25fe76638876bc9c3931e0634261070
Sha256: 6e1c2a610d019d17bcebd21ba285668e83901f9a5e4e90bab23a6540d18a19d4
                                        
                                            GET /css/signup-forms/popup/1.0/modal.css HTTP/1.1 
Host: downloads.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         143.204.47.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 17:46:00 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 20 Mar 2019 04:46:37 GMT
Cache-Control: public,max-age=2592000
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190759.cloudfront.net (CloudFront)
X-Amz-Cf-Id: FMp-eM7SH83UQXem9xp9txiEB2dznR3fi2k-JbhqJDwary5UGLsfeQ==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   615
Md5:    d6ef327634d61c5f4cc95c670b5fd3d2
Sha1:   89121517243ecd6e500f4f558d9dac3fe6fcce4e
Sha256: 6aadaf1b3f93940e8ff7a6dfbf34fe74c4835ded7c75a8da6a19176f28562533
                                        
                                            GET /css/signup-forms/popup/1.0/layout-2.css HTTP/1.1 
Host: downloads.mailchimp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         143.204.47.24
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 887
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 17:45:58 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 20 Mar 2019 04:45:52 GMT
Etag: "2a53867bee650120f4f867db4a926a40"
Cache-Control: public,max-age=2592000
Age: 46
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 5cybRfkscEbymRejs0NzMd2s6pSCmmh2ykk1utBhY6FOCP9OHFoJUw==


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   887
Md5:    2a53867bee650120f4f867db4a926a40
Sha1:   06d18c8d9bf6edca5add9eda815234b2869edd7b
Sha256: ba67831b3d1a219a2ed3c2f3078d0d21b3ab4b6227f5e7eca24db18327e9febb
                                        
                                            GET /a-v3-47/images/spinner-101.gif HTTP/1.1 
Host: static-v.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 20 Mar 2019 04:46:38 GMT
Content-Length: 48773
Connection: keep-alive
Last-Modified: Wed, 20 Feb 2019 21:51:40 GMT
Etag: "5c6dcbec-be85"
Expires: Sat, 17 Mar 2029 04:46:38 GMT
Cache-Control: public, max-age=315360000
Access-Control-Allow-Origin: *
Pragma: public
CF-Cache-Status: HIT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50b236c0842b5-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 101 x 101
Size:   48773
Md5:    5cdd0fe0b83faa30cc81d9d61e774fa4
Sha1:   79f19e4f1700a6de20e518d57e33a3b60139bec5
Sha256: 37cbdb989b4d63d651f6361569f9c77698a9017004113d4114d1666305158436
                                        
                                            POST /cloudsslsha2g3 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 20 Mar 2019 04:46:38 GMT
Content-Length: 1539
Connection: keep-alive
Set-Cookie: __cfduid=da2fefed889c72c3928f66d693f25f2b61553057198; expires=Thu, 19-Mar-20 04:46:38 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Wed, 20 Mar 2019 03:26:10 GMT
Expires: Sun, 24 Mar 2019 03:26:10 GMT
Etag: "566c53e0be6cff280bacb4484a97bc12137bc5e0"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50b23feea4285-OSL


--- Additional Info ---
Magic:  data
Size:   1539
Md5:    8c1d2dd3a3f1c7f1671b57e2357193db
Sha1:   566c53e0be6cff280bacb4484a97bc12137bc5e0
Sha256: a02ca4de6d70f7943a3717a137dc85542bc770f0bfa7a92501d43316012cd55b
                                        
                                            GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         151.101.194.109
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *
Timing-Allow-Origin: *
Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
Content-Encoding: gzip
Content-Length: 53890
Accept-Ranges: bytes
Date: Wed, 20 Mar 2019 04:46:38 GMT
Connection: keep-alive
X-Served-By: cache-ams21029-AMS, cache-bma1646-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   53890
Md5:    f3c0644b6589a78670d6202880b5f522
Sha1:   ad230c740581253aa3b369a1dc437325bb3f0749
Sha256: 75c31a81e3a4d0e92134f0558719ee8faec80320bde6980a7def5ba76b2a7813
                                        
                                            GET /emojione/2.2.7/assets/css/emojione.min.css HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         151.101.194.109
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *
Timing-Allow-Origin: *
Cache-Control: public, max-age=31536000, s-maxage=31536000, immutable
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Etag: W/"c0-akPwBVON2fKdb1Kdc8vjvcdyWY0"
Content-Encoding: gzip
Content-Length: 152
Accept-Ranges: bytes
Date: Wed, 20 Mar 2019 04:46:38 GMT
Connection: keep-alive
X-Served-By: cache-ams21032-AMS, cache-bma1624-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   152
Md5:    6824ec41d5538ec934a841c51093facf
Sha1:   919c7aacd64e7311e092fb509dbe47f335c8faf0
Sha256: 43388af4376178e349aefbf50737043b47063e70df9ef11e8ad998b56f20a142
                                        
                                            OPTIONS /register/1553057196949 HTTP/1.1 
Host: va.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: http://1stselections.com
Access-Control-Request-Method: POST

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
                                        
Date: Wed, 20 Mar 2019 04:46:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=daa10cba79aa85ab08cf87ea2bb9222a11553057198; expires=Thu, 19-Mar-20 04:46:38 GMT; path=/; domain=.tawk.to; HttpOnly
X-Served-By: visitor-application-preemptive-dgp9
Access-Control-Allow-Origin: http://1stselections.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: origin, content-type
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b243fd54261-OSL


--- Additional Info ---
                                        
                                            POST /register/1553057196949 HTTP/1.1 
Host: va.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: http://1stselections.com/
Content-Length: 107
Origin: http://1stselections.com
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Wed, 20 Mar 2019 04:46:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Served-By: visitor-application-preemptive-j0q4
Access-Control-Allow-Origin: http://1stselections.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: origin, content-type
Set-Cookie: ss=jtgq5o8i1c; Path=/; HttpOnly; Secure tawkUUID=bKZv6aKcCzKwTlMIk6%2B2XXuVNrS5ZfLkwg0o6K8HMvrjuhgUaaJLaDOKgtxmxsg7%7C%7C2; Max-Age=15552000; Path=/; Expires=Mon, 16 Sep 2019 04:46:39 GMT; HttpOnly; Secure tawkUUID=; Path=/register/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly; Secure
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Cache-Control: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b25e93c42a9-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   422
Md5:    08ae3d8279ba3c0a275dd55f1831dfec
Sha1:   4c173cce66cc528676ea58b84820c1031b0f1df7
Sha256: c24e6e68cad6d69ab0385339b483ba725cee5b3150093a7d750160d6c5ac06f3
                                        
                                            GET /emojione/assets/png/26a1.png?v=2.2.7 HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/

                                         
                                         151.101.194.109
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: *
Timing-Allow-Origin: *
Cache-Control: public, max-age=31536000
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Etag: W/"19d-NgetWBBUGNU0Su9xItAjaREfnb0"
Content-Length: 413
Accept-Ranges: bytes
Date: Wed, 20 Mar 2019 04:46:39 GMT
Connection: keep-alive
X-Served-By: cache-ams21038-AMS, cache-bma1646-BMA
X-Cache: HIT, HIT
Vary: Accept-Encoding


--- Additional Info ---
Magic:  PNG image, 64 x 64, 8-bit colormap, non-interlaced
Size:   413
Md5:    f447e2382e69c53923d359d10a2e2898
Sha1:   3607ad58105418d5344aef7122d02369111f9dbd
Sha256: 9f8144ae6f866129aea41bbf694b0c858ef9352a139969e57cd8db73385f52c3
                                        
                                            GET /s/lato/v14/S6uyw4BMUTPHjxAwWA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&subset=latin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30468
Date: Fri, 08 Mar 2019 04:24:57 GMT
Expires: Sat, 07 Mar 2020 04:24:57 GMT
Last-Modified: Wed, 11 Oct 2017 18:22:46 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1038102
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   30468
Md5:    f18cac26f977bb8997aff048107e5f02
Sha1:   2c386a2ddb0176263b6c9c9371b4227434c0bc56
Sha256: 9a2d2446aed552eeea107c727b5f9071e4f27c3b4f9894128853898f058df9bf
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 1stselections.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=2lkvocs2siv41b505c53f3n4f6; _ga=GA1.2.927146047.1553057192; _gid=GA1.2.1905448708.1553057192; _gat=1; TawkConnectionTime=1553057198952

                                         
                                         50.28.33.173
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 20 Mar 2019 04:46:39 GMT
Server: Apache/2.4.38 (cPanel) OpenSSL/1.0.2r mod_bwlimited/1.4
X-Powered-By: PHP/5.6.40
Cache-Control: max-age=31536000
Expires: Thu, 19 Mar 2020 04:46:39 GMT
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
                                        
                                            GET /s/lato/v14/S6u8w4BMUTPHjxsAUi-s.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&subset=latin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 31760
Date: Fri, 08 Mar 2019 00:15:27 GMT
Expires: Sat, 07 Mar 2020 00:15:27 GMT
Last-Modified: Wed, 11 Oct 2017 18:23:02 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1053072
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   31760
Md5:    8e4f1f58c1008cfa95a94655d6be132d
Sha1:   0784888c48d1eb328958113f729269f9643b60f8
Sha256: 7bcf182f9df2732d77f964dc87d71a07a718b304c1cd41414a954843061aa53b
                                        
                                            GET /s/?k=5c91c5af48bfda2d622a194b&u=qc2clpmiWE3GPvjBCgzIHUkEBlgd8e2HRXrVeJf9hjq4RhQNOWKBo3ISUeNBc5gp&uv=2&a=56ca363939ccc7527558f3e3&cver=0&pop=false&w=hMYPJM&jv=653&asver=5497&ust=false&p=1stSelections%20%E2%80%93%20Good%20as%20new&r=&EIO=3&transport=polling&__t=McPR3J3&b64=1 HTTP/1.1 
Host: vs69.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Origin: http://1stselections.com
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         104.17.106.89
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Wed, 20 Mar 2019 04:46:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://1stselections.com
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b28680342bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   122
Md5:    679c4bd42c146f3dabfd0a318360e47c
Sha1:   30017dbbd059ac7c0e5ba6c4ab838f6dbc3e6f24
Sha256: d94d2fdc17e0bea3f9266e64f25f91b6f3665a3d813af73e4f7f5e51297499f8
                                        
                                            GET /s/?k=5c91c5af48bfda2d622a194b&u=qc2clpmiWE3GPvjBCgzIHUkEBlgd8e2HRXrVeJf9hjq4RhQNOWKBo3ISUeNBc5gp&uv=2&a=56ca363939ccc7527558f3e3&cver=0&pop=false&w=hMYPJM&jv=653&asver=5497&ust=false&p=1stSelections%20%E2%80%93%20Good%20as%20new&r=&EIO=3&transport=polling&__t=McPR3T3&b64=1&sid=SJt3NWNGwgExOdNgqHXz HTTP/1.1 
Host: vs69.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Origin: http://1stselections.com
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         104.17.106.89
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
                                        
Date: Wed, 20 Mar 2019 04:46:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://1stselections.com
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b2ba8aa42bb-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   416
Md5:    bf4bbefb19bc90aa2ce121a0863573fb
Sha1:   489d8ad06aaa98d14878e136aee09c47adf55095
Sha256: ab3307f65040149ac6c66caa8a84b7b3eb8850516bfee4d52c4fa53457112e13
                                        
                                            GET /a-v3-47/images/profile-default.png HTTP/1.1 
Host: static-v.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 20 Mar 2019 04:46:40 GMT
Content-Length: 7214
Connection: keep-alive
Last-Modified: Wed, 20 Feb 2019 21:52:06 GMT
Etag: "5c6dcc06-1c2e"
Expires: Sat, 17 Mar 2029 04:46:40 GMT
Cache-Control: public, max-age=315360000
Access-Control-Allow-Origin: *
Pragma: public
CF-Cache-Status: HIT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50b2f1f7942b5-OSL


--- Additional Info ---
Magic:  PNG image, 501 x 501, 8-bit colormap, non-interlaced
Size:   7214
Md5:    9e8a1f88eb7e958d02cc386e5a108e0f
Sha1:   9ef5b3989425a7df1064c7b35dec4349a623c549
Sha256: b5d6930732e872079399cdc8b4a5c6f7ea10f25eacb4fc4abfd2f54845ca91e1
                                        
                                            POST /log-performance/v3 HTTP/1.1 
Host: va.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194; ss=jtgq5o8i1c; tawkUUID=bKZv6aKcCzKwTlMIk6%2B2XXuVNrS5ZfLkwg0o6K8HMvrjuhgUaaJLaDOKgtxmxsg7%7C%7C2

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 20 Mar 2019 04:46:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Served-By: visitor-application-preemptive-j0q4
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ba50b2f0b4f42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   31
Md5:    7e1978356485ff6a94cbb694da40c2bc
Sha1:   d5036883dba204212fb6c901327319a1923ff87e
Sha256: a9e77afd734ad6bbcf9419aa6f6962a837f9a089d2ac8156d7fa2150a95f9a9b
                                        
                                            GET /s/lato/v14/S6u9w4BMUTPHh6UVSwaPHw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&subset=latin-ext
Origin: http://1stselections.com

                                         
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29972
Date: Fri, 08 Mar 2019 03:59:24 GMT
Expires: Sat, 07 Mar 2020 03:59:24 GMT
Last-Modified: Wed, 11 Oct 2017 18:22:45 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1039636
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   29972
Md5:    15f4aa15e35c0055962892a9fa899acc
Sha1:   d95b4d87031597b29d973d67cdc789985c01cc9c
Sha256: ed2e57fdd16dc9e542bcf42e9fddfec65a2bfe4cbfab66d77964c202ffaef3b0
                                        
                                            GET /a-v3-47/fonts/tawk-widget.ttf?yh9epr HTTP/1.1 
Host: static-v.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Origin: http://1stselections.com

                                         
                                         104.17.105.89
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Wed, 20 Mar 2019 04:46:40 GMT
Content-Length: 4604
Connection: keep-alive
Set-Cookie: __cfduid=d306dfde1dee2bef0ac4d68d557c4f03b1553057200; expires=Thu, 19-Mar-20 04:46:40 GMT; path=/; domain=.tawk.to; HttpOnly
Last-Modified: Wed, 20 Feb 2019 21:51:37 GMT
Etag: "5c6dcbe9-11fc"
Expires: Sat, 17 Mar 2029 04:46:40 GMT
Cache-Control: public, max-age=315360000
Access-Control-Allow-Origin: *
Pragma: public
CF-Cache-Status: HIT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50b31a99142a3-OSL


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   4604
Md5:    d86cdfa366b98e4761c7b9a78d712e88
Sha1:   b76727160cf460525abf29ab49453b6cb52827c6
Sha256: 0100276be2491d0f98032e15f9d7585fda3657a861251891ff2e05852ff66d5a
                                        
                                            GET /s/?k=5c91c5af48bfda2d622a194b&u=qc2clpmiWE3GPvjBCgzIHUkEBlgd8e2HRXrVeJf9hjq4RhQNOWKBo3ISUeNBc5gp&uv=2&a=56ca363939ccc7527558f3e3&cver=0&pop=false&w=hMYPJM&jv=653&asver=5497&ust=false&p=1stSelections%20%E2%80%93%20Good%20as%20new&r=&EIO=3&transport=polling&__t=McPR3gI&b64=1&sid=SJt3NWNGwgExOdNgqHXz HTTP/1.1 
Host: vs69.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://1stselections.com/
Origin: http://1stselections.com
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /a-v3-47/audio/chat_sound.wav HTTP/1.1 
Host: static-v.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=0-
Cookie: __cfduid=dfbe9d246838eb0e64d03e47680e0884e1553057194

                                         
                                         104.17.105.89
HTTP/1.1 206 Partial Content
Content-Type: application/octet-stream
                                        
Date: Wed, 20 Mar 2019 04:46:38 GMT
Content-Length: 73806
Connection: keep-alive
Last-Modified: Wed, 20 Feb 2019 21:51:37 GMT
Etag: "5c6dcbe9-1204e"
Expires: Sat, 17 Mar 2029 04:46:38 GMT
Cache-Control: public, max-age=315360000
Access-Control-Allow-Origin: *
Pragma: public
CF-Cache-Status: HIT
Content-Range: bytes 0-73805/73806
Strict-Transport-Security: max-age=0; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ba50b23bcf542c1-OSL


--- Additional Info ---