Overview

URL heidialbertsen.com/
IP104.27.135.133
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-07-21 01:38:15 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2017-07-21 01:37:56 CEST 3  Internal IP Client IP SURICATA DNS Unsolicited response


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-21 2 heidialbertsen.com/ Malware
2017-07-21 2 heidialbertsen.com/media/system/js/core.js Malware
2017-07-21 2 heidialbertsen.com/media/system/js/caption.js Malware
2017-07-21 2 heidialbertsen.com/media/system/js/mootools-core.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/javascript/md_stylechanger.js Malware
2017-07-21 2 heidialbertsen.com/media/system/js/mootools-more.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery-1.7.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.transit.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.mousewheel.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.backgroundPosition.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.jscrollpane.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.easing.1.3.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.tipsy.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/greyScale.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.history.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/supersized.3.2.7.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/supersized.shutter.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/gallery.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/hoverIntent.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.colorbox-min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/superfish.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/ajax.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/apng-canvas.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/script.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.form.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/jquery.jplayer.min.js Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/js/player.js Malware
2017-07-21 2 heidialbertsen.com/media/system/js/stat225.php Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/fonts/volter__28goldfish_29-webfont.woff Malware
2017-07-21 2 heidialbertsen.com/templates/beez5/fonts/Dosis-Medium.ttf Malware
2017-07-21 2 www.heidialbertsen.com/templates/beez5/media/audio/fashion-life.ogg Malware
2017-07-21 2 www.heidialbertsen.com/templates/beez5/media/audio/fashion-life.ogg Malware
2017-07-21 2 www.heidialbertsen.com/templates/beez5/media/audio/fashion-life.ogg Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 104.27.135.133

Date UQ / IDS / BL URL IP
2018-01-12 22:46:43 +0100
0 - 0 - 1 www.dramafire.info/law-of-the-jungle-episode-248 104.27.135.133
2017-08-11 08:21:14 +0200
0 - 0 - 29 heidialbertsen.com/ 104.27.135.133
2017-07-27 04:41:51 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-27 00:43:49 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-26 20:55:54 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-26 03:01:11 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 21:58:55 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 21:22:56 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 18:25:09 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-01-21 15:16:41 +0100
0 - 0 - 0 nationalconsumercentral.com 104.27.148.65
2018-01-21 15:16:17 +0100
0 - 0 - 0 www.2-k.site/ 104.31.92.112
2018-01-21 15:13:07 +0100
0 - 0 - 0 apie.reasonsecurity.com/ 104.20.45.197
2018-01-21 15:02:45 +0100
0 - 0 - 0 www.speedvid.net/sn-flxx1u02tz7z-44-61.html 104.27.147.21
2018-01-21 15:01:09 +0100
0 - 0 - 1 4393w.info/ 104.27.134.252
2018-01-21 14:55:50 +0100
1 - 0 - 0 https://rebooting7-server-info.ga/AT-TollFree (...) 104.27.188.189
2018-01-21 14:44:29 +0100
0 - 0 - 1 www.pornomsu.site/video/cilginca-sevisen-lezb (...) 104.28.13.80
2018-01-21 14:42:48 +0100
0 - 0 - 1 https://www.ropadeportemujer.es/mallas-deport (...) 104.28.6.72
2018-01-21 14:42:35 +0100
0 - 0 - 1 www.welkome.net/ 104.27.174.44
2018-01-21 14:37:24 +0100
0 - 0 - 1 pinaysunlimited.com/2016/12/webcam-porn-busty (...) 104.18.37.79

No other reports on domain: .



JavaScript

Executed Scripts (45)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (103)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; expires=Fri, 20-Jul-18 23:37:40 GMT; path=/; domain=.heidialbertsen.com; HttpOnly c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-cache
Pragma: no-cache
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 3819bfedc3274273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13240
Md5:    da83ab448e294b89401065f1e4f7e6ac
Sha1:   9b2a7eccc15cea5a37108cf9210a469c2c2170b4
Sha256: 49ab62723505abea443e472c59fa4581e86eea2a0894e7a70a6e258881aa2ca3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /cdn-cgi/nexp/dok3v=85b614c0f6/cloudflare.min.js HTTP/1.1 
Host: ajax.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         104.19.195.102
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d902c08026014fc6f1bef0e4190fb967b1500593861; expires=Fri, 20-Jul-18 23:37:41 GMT; path=/; domain=.cloudflare.com; HttpOnly
Last-Modified: Fri, 21 Apr 2017 09:27:55 GMT
Vary: Accept-Encoding
Expires: Fri, 20 Jul 2018 23:37:41 GMT
Cache-Control: public, max-age=31536000
Server: cloudflare-nginx
CF-RAY: 3819bff176c576a2-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22190
Md5:    20bc25beaf4058d9008fad422b402478
Sha1:   43572449f60b67d387572334d1149531cab6275c
Sha256: 88b27cf7cbcb17ea4115d59bf5dd5b7337483be99b97e561c591e7418a73dcea
                                        
                                            GET /l/by/3.0/80x15.png HTTP/1.1 
Host: i.creativecommons.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         104.20.151.16
HTTP/1.1 301 Moved Permanently
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 21 Jul 2017 00:37:41 GMT
Location: https://licensebuttons.net/l/by/3.0/80x15.png
Server: cloudflare-nginx
CF-RAY: 3819bff2448f4297-OSL


--- Additional Info ---
                                        
                                            GET /css?family=Dosis:500 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 20 Jul 2017 23:37:41 GMT
Date: Thu, 20 Jul 2017 23:37:41 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   208
Md5:    610b89c3b776384e708d0c08ce12cbb0
Sha1:   b00e1a8c219ce65cc48bca58480d1a447f2f1235
Sha256: a84bda216bf1fd64f14ec73d3eee19e2f77b3ef6a19ec432e6e140fd7448f25c
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 20 Jul 2017 23:32:37 GMT
Expires: Fri, 21 Jul 2017 01:32:37 GMT
Last-Modified: Tue, 06 Jun 2017 00:25:39 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 16022
Age: 304
Cache-Control: public, max-age=7200


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16022
Md5:    09889dfa1a6bf800507b7a6799c45901
Sha1:   51b1c3f117a0874b6e5ea58bf9e8863c918db4aa
Sha256: 1c92948832be823e16d40195f5f66135368b5cb3f8a7833c3e25f558f16fecfb
                                        
                                            GET /templates/beez5/favicon.ico HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2012 18:40:41 GMT
Etag: W/"37e-4c3f1405b474a"
Cache-Control: public, max-age=2592000
Expires: Sat, 19 Aug 2017 23:37:41 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 3819bff163dc4273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   862
Md5:    89e5a44fd980b43857efa89a56d0bcf7
Sha1:   3fb9d6c248b2ca0659132dbf6855afe065cb6006
Sha256: 5a9d95dc29916bb1e90621f858b51f7ce8241cbe3cdf5e9245e9fce07687d514
                                        
                                            GET /ajax/libs/jqueryui/1.8/jquery-ui.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 51653
Date: Fri, 12 May 2017 01:50:39 GMT
Expires: Sat, 12 May 2018 01:50:39 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 6040022


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   51653
Md5:    7de998e158372795b67af9f35ef450b0
Sha1:   94cda3c69db587726f03dd2c1c1119b36ab579e3
Sha256: ca1195477fdfe8363dbe5e2bcd0ae1d62b043324fa1e2e969da04ed2b661cb10
                                        
                                            GET /media/system/js/core.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Content-Length: 1713
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:24 GMT
Etag: "12b0-4c3aa6f3cdc5e-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff227c34267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1713
Md5:    25be7ea578169b8e7639af55f7e0dd42
Sha1:   39eb44407756da692c31448427fd8906a6bf346c
Sha256: a41f0b35cc370ba2ec66e8a15fdbf8fa4e330a1a37711d562b767154a2223832

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/caption.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Content-Length: 403
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:24 GMT
Etag: "2d9-4c3aa6f3ca9c0-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff227c44267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   403
Md5:    2645223569a18f7c0fd1ed2873c976cd
Sha1:   68ed1bffdd4424e84308c9f51ce5fbf121bdd719
Sha256: 08b16a4f25cc2ba1eab88daf16619d36ea89707e6d46e9faba77aa6d3f93f6ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/mootools-core.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Content-Length: 31097
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:25 GMT
Etag: "1786a-4c3aa6f3da393-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff1604042c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   31097
Md5:    d6a7b855d3f12d8ff7bf08da13184032
Sha1:   222ea16e437b5b7e309749235f8a488c603c827e
Sha256: 48e010127a9e7ec20ff16c907965bb28582c32ecbc8264d8fb496149ff9626c6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/javascript/md_stylechanger.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Content-Length: 776
Connection: keep-alive
Last-Modified: Mon, 09 Jul 2012 07:28:38 GMT
Etag: "895-4c4608ffa360e-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff237cb4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   776
Md5:    209f30fe5a77ec08bd4f49ad6f68b458
Sha1:   1ce7d586a406971620293f2714cadb6f80a35cc8
Sha256: 9d27f63e26a1b8b77b8a753ee984c889eab8d9e92570f767c851689b63da4546

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/css/style.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 6040
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:57:18 GMT
Etag: "972f-514ad949a054b-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff3c43f4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6040
Md5:    4a59cbceadf8e56155358f77e70fbf72
Sha1:   187ccf09d30280416d673a47647392c84a7a95f5
Sha256: 931589a27cf0dbd81d79521d7b90221666407604415e492f99bf437d0465e792
                                        
                                            GET /templates/beez5/css/colorbox.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 901
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2013 03:18:37 GMT
Etag: "a19-4d48d15325e53-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff480334267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   901
Md5:    b4d2417d848695077bd535a5b923cb68
Sha1:   351211f8af9e771b56a77b39561c40ac11a03f23
Sha256: 01aa44bc9b00670c8eab940134f4b5f62ea03318b56b5f30b026b42b2752929c
                                        
                                            GET /templates/beez5/css/jquery.jscrollpane.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 759
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:32:41 GMT
Etag: "932-4c3d57ab6c33e-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff4c0444267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   759
Md5:    2d32fe2db3669f2699f88ba4b9c39792
Sha1:   2e318aa837686896d43c20e5224ae8d3910acc4a
Sha256: 62f163592dc43915ab8a6ecd0c3f665b67262239eedb7f3a7160f2362599a9f0
                                        
                                            GET /templates/beez5/fonts/stylesheet.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 308
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:33:00 GMT
Etag: "2f6-4c3d57bd81798-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff520e542c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   308
Md5:    3a152c7ed345e6a1f942639f41b461b4
Sha1:   ef0cc8ccdcf9d4e55f63e33bec334c4a054fba3f
Sha256: 5af1be34a2155d14048953209c95eda5d7b98529c6a466428538bddf80253fa4
                                        
                                            GET /templates/beez5/css/supersized.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 613
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:54:08 GMT
Etag: "57a-4c75c8297133f-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff5c0794267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   613
Md5:    37363bcde20e2df80e4b1dff9394b6bc
Sha1:   33eff60a9d25856cb60c4209ce629fc5406c29b4
Sha256: cfcaa4ffae9c301bb5ba7444aba5f53e6497f7172d1c8951f35f9e5bc5ac1b17
                                        
                                            GET /media/system/js/mootools-more.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:41 GMT
Content-Length: 68033
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:25 GMT
Etag: "3a2fb-4c3aa6f3d9006-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:41 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff22343427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68033
Md5:    422e07fff8f5493732a2478326093863
Sha1:   790a42a8ad097ba51d840c11f0b8bf0f2ed90d2e
Sha256: b62f20d801c9cd10339382de1e308646f999e0b4e990649db5a84da555016781

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/css/supersized.shutter.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 1670
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:54:09 GMT
Etag: "14cb-4c75c829e237a-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff604a04273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1670
Md5:    7ad2e0ce7d54d1ebef0fe742441b9401
Sha1:   4dab76583195cd22cd42a5ad399556aa7968a45e
Sha256: 43d29c5b2d214f8541d770d37fa914dff00dd73e0ec700c05d87fd2e28068230
                                        
                                            GET /templates/beez5/css/tipsy.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 638
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:32:47 GMT
Etag: "96c-4c3d57b16f9da-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff6d0c24267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   638
Md5:    20fa65555bbddda3ed14c768b8dd02fe
Sha1:   952e0449071a81e4e95aabb3040870d9d6b1eb51
Sha256: 98092fb977d5d021ea0b6d322950b7a46f80113d8eb262eedcf5f792bc7f937f
                                        
                                            GET /templates/beez5/css/my_filter.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 813
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 07:45:22 GMT
Etag: "bab-4c3fc36a2d05e-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff7616042c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   813
Md5:    03c7f44ad18c5844f78df722b6d03841
Sha1:   5ff26ef2a20cc43d961b4471556b65942f3c9221
Sha256: df94d71bb588825535b36aec76ddd1750d65c5d89942e1f66a52d4948cb5a3d6
                                        
                                            GET /templates/beez5/js/jquery-1.7.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 33274
Connection: keep-alive
Last-Modified: Tue, 22 Jan 2013 21:37:55 GMT
Etag: "16f44-4d3e764067b90-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff800fe4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33274
Md5:    929b34b42ac409139d3e3e22ebdfdba3
Sha1:   9876aff27cea09ca161ee4fa0d1376042637ea80
Sha256: a426bfa10cc2506dc53d8634b7ffc88c060aab7f33400229f0509c1c49b250a4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /r/__utm.gif?utmwv=5.6.7&utms=1&utmn=1966143509&utmhn=heidialbertsen.com&utmcs=UTF-8&utmsr=1176x885&utmvp=1176x754&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=Heidi%20Albertsen%20-%20Official%20Home%20Page&utmhid=1425417704&utmr=-&utmp=%2F&utmht=1500593862457&utmac=UA-38077303-1&utmcc=__utma%3D186065456.474728967.1500593862.1500593862.1500593862.1%3B%2B__utmz%3D186065456.1500593862.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=539731333&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Thu, 20 Jul 2017 23:37:42 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Server: Apache
Last-Modified: Thu, 20 Jul 2017 08:09:04 GMT
Expires: Thu, 27 Jul 2017 08:09:04 GMT
Etag: 2140CB508A64AD98EB8577B36296D0ED916D2D3E
Cache-Control: max-age=548481,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp22
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    5050166abda8d8631da37d12982b5366
Sha1:   2140cb508a64ad98eb8577b36296d0ed916d2d3e
Sha256: e61e255994c3435b962165b107a105a1ffa61deee9106fa9199773c8c8aabac2
                                        
                                            GET /templates/beez5/js/jquery.transit.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 2212
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:27 GMT
Etag: "168d-4c75c8028ee7a-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffa554b4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2212
Md5:    5a2f4c8d09ba44b0014eac944d6372f4
Sha1:   b6623ca2934fa9e221167f6e58c5012112f4f8f1
Sha256: 530a540fbb457c689f523d80fc617abce1857aec4c69c43d8b7532c64e490a4f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.mousewheel.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 716
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:24 GMT
Etag: "570-4c75c7ff3e8eb-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffa516c4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   716
Md5:    1bb069d9e3a8d110eaf5319b82b26e9b
Sha1:   25921fb49b922ecc44a40550587df5ace5e9a9a9
Sha256: 6975d1b270a0cbbcd4f0a652d6b32bce9eb2344944e1ccde88e5588bf51e71d4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.backgroundPosition.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 806
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:19 GMT
Etag: "7fb-4c75c7faa857a-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffa51dc42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   806
Md5:    8d66e80999887b6a07285fcc0e19708f
Sha1:   a8d32d3ad50a72e24112187dcdda737b20dc9692
Sha256: f3a6bafe3437dccdf7ad4d75c6ea43be60c365799c7de37c203549a28ea0afdc

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.jscrollpane.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 4814
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:22 GMT
Etag: "391d-4c75c7fdb2da0-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffaa1774267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4814
Md5:    806f5c5dca4de9d4003c62f7a607fff7
Sha1:   35958013ebd508649980671ed2c69e3c7d1da44f
Sha256: e863326487000d2e8c9049698c05e9e47437fd988bc41a9325e388ff5081b278

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.easing.1.3.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 794
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:47:32 GMT
Etag: "cfa-514ad71b0aa6e-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffa54c5427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   794
Md5:    2a34826eefe7194efd04675ea95c1c37
Sha1:   d7ab6eb900fc26cd84baada549d74e8acac3d71d
Sha256: c9943c1abd7ee368d13099d38ca3920e32ed46270985691fd3aae06389823235

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/css/layout.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 20 Jul 2017 23:37:42 GMT
Content-Length: 4423
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:56:41 GMT
Etag: "49be-514ad9260b576-gzip"
Cache-Control: public, max-age=432000
Expires: Tue, 25 Jul 2017 23:37:42 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bff700d04267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4423
Md5:    fc6967e74e36e8ab9d7f14b27ba279c7
Sha1:   7100069b44f76206f9ac35acaa424755bc536e30
Sha256: 583fc33b5504f4a651ea3ea7e8ce518b132178e236e70892f49c7e3340e3549a
                                        
                                            GET /templates/beez5/js/jquery.tipsy.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 1471
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:48:18 GMT
Etag: "fc8-514ad7465e3c1-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffca1db4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1471
Md5:    63a1fed479e39e8301fb5cc2642f22fa
Sha1:   0f65f8486efbbacada456aa51e9eb966eb0b0bce
Sha256: cef7ded703b42caf08f8cc0e6cf64901540a8107397fa707d60e22fd73b8e3dd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/greyScale.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 1850
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:49:11 GMT
Etag: "f15-514ad7797d9cb-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffcf1ea4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1850
Md5:    55c8f39cdae7b3d2014bd2aa74fc544c
Sha1:   f1faae8e6fe3a164d342f3e0d251d010b035d9d9
Sha256: a5917ac4745807e34da606eeea2d3d7da6b8549a35295da2b9f243b99456bd77

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.history.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 4365
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:21 GMT
Etag: "398b-4c75c7fc9e827-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffc95bb4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4365
Md5:    b05d043b292904feb9df6fa20772c6ac
Sha1:   d27a2404ca6af538f6c7b827e6b32f7d5cb5953e
Sha256: a5baa565524601d17a118bede32be88fd4459a80cd2e3e13b1edb3a08d930f18

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/supersized.3.2.7.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 3304
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:45:32 GMT
Etag: "4563-514ad6a89081a-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffcf551427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3304
Md5:    d49966280c2d6191db66625e3a870073
Sha1:   63c03af888be4ddf89a807eae28682f15780d1cc
Sha256: d453331ab9b80b1a35bc9dd06eeb7fa1b4fb1c1f59e8d5f00f7237fe068a4726

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/supersized.shutter.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 1890
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:46:10 GMT
Etag: "2165-514ad6ccb6c36-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffea2484267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1890
Md5:    cbd6e40c2590455d09cfa2762d933ff5
Sha1:   7615f7d0a01009df2a0a8031e6951e8a935cccc2
Sha256: 3fe38e6eb98470fa1e633c56bd344834557d8063880a2ec6bf409a0b59758e2c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/gallery.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 359
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:51:14 GMT
Etag: "233-514ad7ee75fe3-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffef2564267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   359
Md5:    596664601f239bf20a648a69946f76c5
Sha1:   03e68fc4b18a36c41cbae79a82f0226ec22b2506
Sha256: 4045b0662aff7c4e26644f33ac6ee149e5be822cf6405abf676e6bcce3ac3c2b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/hoverIntent.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 482
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:49:59 GMT
Etag: "43a-514ad7a6a5ff6-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bfff32644267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   482
Md5:    c979175cf6f2b3fcd261fa36bd55371b
Sha1:   0fe29454d1e2af064c5ac813e31db868aa2da906
Sha256: ebaca45d7ca011c733adee1c94b66bad1fb13e336856bcb1e244632ef8f01e04

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.colorbox-min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 4191
Connection: keep-alive
Last-Modified: Tue, 22 Jan 2013 22:38:55 GMT
Etag: "25ee-4d3e83e29c2f7-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bffcf25b42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4191
Md5:    a4f3e87d73b27288f5a24668d8e7ac5b
Sha1:   c3767442e6e5f2d04a2e52a0e23bdfcd421bff67
Sha256: 454beb91a7b1237f0cafaa84793a019445189739a7cb420ebcf784c8ef78b9e1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/superfish.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 1541
Connection: keep-alive
Last-Modified: Fri, 24 Aug 2012 01:57:09 GMT
Etag: "fc3-4c7f94b3cf9b6-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bfff36374273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1541
Md5:    e2762cf362228bec48449441b36df4b8
Sha1:   132958820ffde52dea13a5dd38cb73e770b3730c
Sha256: 60b3b94677d5fd14fe1f177a461864840a323d28ee2b374b31914d5ffd899a81

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/ajax.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 1220
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2012 10:57:39 GMT
Etag: "f5f-4c9065c1f4090-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819bfff95d5427f-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1220
Md5:    9aefce7784fce7cebea6cac4dbc526e5
Sha1:   8094944a922256a805d278877013aebd9ac02722
Sha256: 5e26f9b6e866b71f3a81d7d9c58ef1ea082edda6b1db5ed070db7b2eef7a5306

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/apng-canvas.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 3929
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:15 GMT
Etag: "2920-4c75c7f6436e2-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c000b31f42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3929
Md5:    476fec8ded4e46209061739326c0164e
Sha1:   aeffabf796673178c49063d67c67748e6e6f1b9f
Sha256: f9292a34118df91fe7d855335af508efcdbcc6e869a5204f3d66154e8f8c0c29

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/script.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 1922
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:50:36 GMT
Etag: "1db9-514ad7c9e6800-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c000028b4267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1922
Md5:    1a14e56395d0eb4a460264bbb26df515
Sha1:   53f70c105f5382583143fe31193ce64b9735e78e
Sha256: 39e71a83a11e95b3160f62e88efb143008b3fbc19779d13c27030babf522a443

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.form.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 2633
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:53:05 GMT
Etag: "1a47-514ad85842fdc-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00176a04273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2633
Md5:    3c6fac3e0c5308ddbdbb64064c8c9733
Sha1:   abc032758194f3a13d7e1d691b2bfc095aa3872e
Sha256: 2908729f8fb7f7d9e49740b960b52cedae48ee8b38a82d35847603eb7a43c7fa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.jplayer.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:43 GMT
Content-Length: 8108
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:22 GMT
Etag: "821b-4c75c7fdae730-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:43 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00042984267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8108
Md5:    cdd9f769b60eb084d82a1ee408568609
Sha1:   27eac8cfecd5f6f5f11d9fd7aef87920bc76fd2c
Sha256: 98df141231ef4a9195bd615b2b0af59bc0a9ccdc8e255f4e9f505be9d4611a92

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/player.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 1513
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:29 GMT
Etag: "14d3-4c75c80441e95-gzip"
Cache-Control: public, max-age=604800
Expires: Thu, 27 Jul 2017 23:37:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00072a34267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1513
Md5:    ecb2c95376eb5fccad969c1b923fe057
Sha1:   f6203255e4383734b107a4b08c109a7757f427e8
Sha256: d0538e8d798802b6d945c186a99acdc8bbde5867f60e37ffbcad9b279d4d29c5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/stat225.php HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 3819c001c638427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   64
Md5:    d85c3b088526c595e1e7ca8d00e60964
Sha1:   74976dd01d11b7d57353cb31f753438029bb78f7
Sha256: a219a299979d46794c9f2b7eb4227277a824703e0182dbcfccade0b4fe54663b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/img/favicon.ico HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2012 18:42:14 GMT
Etag: W/"37e-4c3f145e8dc4c"
Cache-Control: public, max-age=2592000
Expires: Sat, 19 Aug 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 3819c002a6d14273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   862
Md5:    89e5a44fd980b43857efa89a56d0bcf7
Sha1:   3fb9d6c248b2ca0659132dbf6855afe065cb6006
Sha256: 5a9d95dc29916bb1e90621f858b51f7ce8241cbe3cdf5e9245e9fce07687d514
                                        
                                            GET /s/dosis/v6/A4RWZsncmJ25G8iqn2EHN_esZW2xOQ-xsNqO47m55DA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Dosis:500
Origin: http://heidialbertsen.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30712
Date: Tue, 09 May 2017 09:38:19 GMT
Expires: Wed, 09 May 2018 09:38:19 GMT
Last-Modified: Fri, 27 May 2016 01:59:39 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 6271165


--- Additional Info ---
Magic:  data
Size:   30712
Md5:    faf4770edc50e380883d64ab5dc6e962
Sha1:   acd2ec08c9124e948af479d123160502aff7daae
Sha256: 020b294e64d6537cce7557af3e25056054fcf80ea16e9417f7156be4f239cb6f
                                        
                                            GET /templates/beez5/img/logo.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 1345
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:50:30 GMT
Etag: "541-4c3d5ba7a80b1"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00493754267-OSL


--- Additional Info ---
Magic:  PNG image, 190 x 110, 8-bit/color RGBA, non-interlaced
Size:   1345
Md5:    b69a27f1bf8207bbfafcbfedbfc05b98
Sha1:   5075fa9028cd9abb3330823fb4dceb5fdc036fb9
Sha256: 88f300e8ac77a184b444232fcc48c372164cefd6bc05d43c7c645cfee8fdc5f2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Server: Apache
Last-Modified: Wed, 19 Jul 2017 10:05:35 GMT
Expires: Wed, 26 Jul 2017 10:05:35 GMT
Etag: 3D4DDAC5A639F54E2E9D19554FEB6CBA94313B10
Cache-Control: max-age=469070,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp28
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    40bac07d8d6e360e2f98d35dc2540fca
Sha1:   3d4ddac5a639f54e2e9d19554feb6cba94313b10
Sha256: fecfa60ff30d73739245777b74ffe4fc5775b81b32802fbe0ff750ead3a9688b
                                        
                                            GET /images/Heidi-Albertsen_1_cc-by-license.jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 132481
Connection: keep-alive
Last-Modified: Sat, 26 Jan 2013 18:49:32 GMT
Etag: "20581-4d435812788ac"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c002036842c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   132481
Md5:    ca66324915747b71e97c6a98f40aa60f
Sha1:   3b3311b955b2647e14739c5f36da6e54283a666c
Sha256: 22e294ea0d5374eba2d4fd9a559b1b29c2802b1232de96fd9eddab7cd013ed73
                                        
                                            GET /templates/beez5/img/btn_thumbs.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 2856
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:36 GMT
Etag: "b28-4c3fddd6f4389"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c004a6cd427f-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 15, 8-bit/color RGBA, non-interlaced
Size:   2856
Md5:    a64d25e832eb20070d32e2a45b4a716a
Sha1:   80fbf9604fdd4be6122f989bf31c7b3080761b59
Sha256: a61c231fb8d8ab674e6d321c722a3163740aed54d41800c6349e386eb5574a5f
                                        
                                            GET /templates/beez5/img/donate-button.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 15681
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 14:29:58 GMT
Etag: "3d41-4c401dd9c62cf"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00493774267-OSL


--- Additional Info ---
Magic:  PNG image, 128 x 65, 8-bit/color RGBA, non-interlaced
Size:   15681
Md5:    ff27faeb1c200d83af651a1a0cd0fcf5
Sha1:   ca6e23b2c7229867f6b94307e4909e6c717b5a3e
Sha256: 9dcff1b36ef4703d410dea2a859b022b2eb4383e8f6d5ef9a646ceb98715cc89
                                        
                                            GET /templates/beez5/img/socials/ico_twitter.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 3115
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:49:52 GMT
Etag: "c2b-4c3fdf3e17e97"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c006171e427f-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   3115
Md5:    244589381c0ba576ad63d0af45eab092
Sha1:   3b5682a2e53dd5b67f925678e47535c96c9d2d05
Sha256: bbb4ccd4fd2f3531d216514ac9546648afdb337af4dc1bcdf10eb2344af0481b
                                        
                                            GET /templates/beez5/img/socials/ico_facebook.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 2967
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:49:52 GMT
Etag: "b97-4c3fdf3d964da"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00613bb4267-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   2967
Md5:    b9dce6d3882ded9ac828be8cb2f62c91
Sha1:   a1f0b96153c620dfec4a98b9d38d4df476188908
Sha256: de56ca4e1336878c33cbc188375b69e742e3162cf998e08cabc33abbbaffcc87
                                        
                                            GET /templates/beez5/img/progress.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 20995
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:57:59 GMT
Etag: "5203-4c3d5d53c5cf9"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00252fe4267-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   20995
Md5:    1c90c06a04a537be0dd46f07efc6be2b
Sha1:   e0810271280c137cada037825a9e518ae9c1c5c6
Sha256: f7745a7eb68635542aa51272276e311ffb26a8090c5844cf5717d295287b5589
                                        
                                            GET /templates/beez5/img/btn_captions.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 2872
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:34 GMT
Etag: "b38-4c3fddd534c1a"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:44 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c006041442c1-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 15, 8-bit/color RGBA, non-interlaced
Size:   2872
Md5:    cd27a1c844859434cb0ca48c1abd54e8
Sha1:   592552f1bd2d693b5e78d4299fb073ca247dfcfa
Sha256: b887cb455050ea8314aad716571919aa45857ed1de69bcb0c47c1d36cb9594be
                                        
                                            GET /templates/beez5/img/socials/tumblr.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 1215
Connection: keep-alive
Last-Modified: Tue, 01 Oct 2013 20:43:38 GMT
Etag: "4bf-4e7b401de8276"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c0075752427f-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   1215
Md5:    e2f5e3a726244785bff8776d062a8a8b
Sha1:   cbd30bed714858b4176c5b772793929fd06dceb6
Sha256: 8fbdbaec7ed24e961e69f02ab2960a23e0ea572194cb70afc4abf661c55a8b17
                                        
                                            GET /templates/beez5/img/socials/instagram.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 1320
Connection: keep-alive
Last-Modified: Tue, 01 Oct 2013 21:03:46 GMT
Etag: "528-4e7b449dd6ba9"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00784074267-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   1320
Md5:    dd03cd060ccac646ae07e29155d2d222
Sha1:   d45e588253cb3921036e7f92470569ec327907e1
Sha256: bb8a17e32524a19bc4d0a7094f770bf5da575b0602c84c8bdd4b587bd61d7006
                                        
                                            GET /templates/beez5/fonts/volter__28goldfish_29-webfont.woff HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/fonts/stylesheet.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/x-font-woff
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 14856
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:33:12 GMT
Etag: "3a08-4c3d57c94c45b"
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Tue, 25 Jul 2017 23:37:45 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c005e3a54267-OSL


--- Additional Info ---
Magic:  data
Size:   14856
Md5:    a6d45d6ae4085bc706fc7a8f631ee668
Sha1:   b77539fd3de7598241b461e6d20d3452f1648ef2
Sha256: 316acc641eff351261d77a5a65a6dec81642d7ec8eb478f7aa59d38735ca82a2

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/img/socials/ico_linkedin.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 473
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 10:10:12 GMT
Etag: "1d9-4c75f3fc50079"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c007e4164267-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   473
Md5:    7096743cee63304b179d296801c6fb0b
Sha1:   3ba6171aaa1b8d8d7db75df79bdd615b693b9b51
Sha256: 24380f1bf5fa19314fda6d97e22b3dfeaf114d150da560391a47a01194edb17c
                                        
                                            GET /templates/beez5/img/btn_audio.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 2982
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:34 GMT
Etag: "ba6-4c3fddd55ff2a"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c008b44c4267-OSL


--- Additional Info ---
Magic:  PNG image, 34 x 33, 8-bit/color RGB, non-interlaced
Size:   2982
Md5:    09fe6d9ce25805ee43bb2041397f2ed3
Sha1:   d86e9bbe804db745cbd9546243af659bb206d431
Sha256: b040acdab4394f981a9c9f4af84491988d6b4b767474fd4e971d390c9250dcf0
                                        
                                            GET /templates/beez5/fonts/Dosis-Medium.ttf HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/fonts/stylesheet.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/x-font-ttf
                                        
Date: Thu, 20 Jul 2017 23:37:44 GMT
Content-Length: 136444
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:33:27 GMT
Etag: "214fc-4c3d57d821d9a"
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Tue, 25 Jul 2017 23:37:44 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c004f7454273-OSL


--- Additional Info ---
Magic:  TrueType font data\012 raw G3 data, byte-padded
Size:   136444
Md5:    1a7809b30cc0cb7fc96feb3cad2eefb7
Sha1:   46067c93a46fbb4d0b38f9ce7fe0e2c5e4d8c047
Sha256: b59e299b4a25d4b8d64226e232917dc38ca29e071c7b3f8e6e29a80481171fe8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/img/socials/ico_youtube.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 459
Connection: keep-alive
Last-Modified: Thu, 10 Oct 2013 07:57:30 GMT
Etag: "1cb-4e85e5a84853e"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c008978f427f-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   459
Md5:    b6e0b9ee22a12af8728fe1bb1f959db1
Sha1:   5b763290be038d9f7538a489e39c4a70849b7642
Sha256: 2f07401d30fa87f2c63c4f81faeaa2210dbbfc7b68b84c353ab938670d845462
                                        
                                            GET /templates/beez5/img/bg_tracker.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 2800
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:34 GMT
Etag: "af0-4c3fddd51d134"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c009245b4267-OSL


--- Additional Info ---
Magic:  PNG image, 7 x 7, 8-bit/color RGB, non-interlaced
Size:   2800
Md5:    c6c6a43159c885092612b8f2ff1a4dca
Sha1:   6a90f5fda47da9f673338570101545fb40b6f2fc
Sha256: 2adcb7ee88723c02a0ab92f6bd2ce509ab7d3908b84b7fa3d8e40e431ebbfbfc
                                        
                                            GET /templates/beez5/img/socials/ico_pinterest.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 649
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2013 03:13:16 GMT
Etag: "289-4d48d020610a2"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c008547242c1-OSL


--- Additional Info ---
Magic:  PNG image, 16 x 32, 8-bit/color RGBA, non-interlaced
Size:   649
Md5:    30d12f18aaf3ddd37526073512060c94
Sha1:   9e3bf54a59be3c2724f8413722a321fc928922b6
Sha256: 0f9b8279499a7e616ba4e491e79a1de346ffa876ae7714e02776def89520383c
                                        
                                            GET /templates/beez5/img/player_skin.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 2954
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:38 GMT
Etag: "b8a-4c3fddd9404f8"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c008d44f4267-OSL


--- Additional Info ---
Magic:  PNG image, 36 x 27, 8-bit/color RGBA, non-interlaced
Size:   2954
Md5:    03896424ca719f99c4db7cab072ef6bd
Sha1:   91331a9a4ed81abcfb0d882f97e8a9afdd882711
Sha256: 1d104e89fd193a1335f58c0013825b3337fd35051b669fcaab3c43f4d1d4d6ac
                                        
                                            GET /templates/beez5/img/bg_playlist.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 117
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:34:18 GMT
Etag: "75-4c3d58086ab59"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:45 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00a04914267-OSL


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   117
Md5:    f4e571af4f8f877aa4b33c6cff403da4
Sha1:   90219fa516f34dc0203bb262aeaa147eee5242f9
Sha256: 84921372ccd978882e53ed170136167671fc33301a07b81ac67a90a1eb3b5c7c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Server: Apache
Last-Modified: Wed, 19 Jul 2017 10:05:35 GMT
Expires: Wed, 26 Jul 2017 10:05:35 GMT
Etag: E2E33469C91C0EA098DCB64B1E0B7F6202E88797
Cache-Control: max-age=469069,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp28
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    01c74b69279660922f88d045d78e2d5a
Sha1:   e2e33469c91c0ea098dcb64b1e0b7f6202e88797
Sha256: 617a139ed67b6bfcf50d6829f212fd3bab0c59d8797fb7e64332a6759d3d3f38
                                        
                                            GET /l/by/3.0/80x15.png HTTP/1.1 
Host: licensebuttons.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         104.25.7.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 410
Connection: keep-alive
Set-Cookie: __cfduid=d63942a169fac874f9ec20dc998d36b8b1500593866; expires=Fri, 20-Jul-18 23:37:46 GMT; path=/; domain=.licensebuttons.net; HttpOnly
Cf-Bgj: imgq:100
Cf-Polished: pngoptimizer, origSize=640
Etag: "280-4f0c8c2319f40"
Last-Modified: Sat, 25 Jan 2014 10:15:49 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Tue, 25 Jul 2017 23:37:46 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00ee9824261-OSL


--- Additional Info ---
Magic:  PNG image, 80 x 15, 8-bit colormap, non-interlaced
Size:   410
Md5:    7b12917e4649bd774643dd25a32981dc
Sha1:   48218d6a51185f153a76c8ab88a7dfd8ae4cd01c
Sha256: f4694f4974c59e4754e8dac954da9ad2387ca0038ac3bee9915a99b77bb0ab9f
                                        
                                            GET /templates/beez5/img/bg_overlay.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 116
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:34:17 GMT
Etag: "74-4c3d580754a40"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de0a84273-OSL


--- Additional Info ---
Magic:  PNG image, 2 x 2, 8-bit/color RGBA, non-interlaced
Size:   116
Md5:    f6a29f04def2fc8b6c5360198bee8650
Sha1:   9ac56351a929457b3d0f168991c877ee573275bf
Sha256: 6b2b4a52ddea41e50540ac4bc2a9494a6383c9a4499bad50b417ff1fa9cb2c2a
                                        
                                            GET /templates/beez5/img/bg_content.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 115
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:34:14 GMT
Etag: "73-4c3d5804ac877"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de5654267-OSL


--- Additional Info ---
Magic:  PNG image, 2 x 2, 8-bit/color RGBA, non-interlaced
Size:   115
Md5:    1e6a2602a6856269bc62d0b52b8cbcc6
Sha1:   ee9a72c32800cb190a6558891e85ecbdbeef452a
Sha256: 3ec1869e1d1473aa1ca3ecfd3c57788e66e6ed54574d26f4a713cd0b58932944
                                        
                                            GET /templates/beez5/img/gallery_play.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 532
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:40:27 GMT
Etag: "214-4c3d5968965d6"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de57842c1-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   532
Md5:    fd5572cfdf84a39d5ffa2f9a8c08fdca
Sha1:   96a26891ec016319b0539129651617141be55d2e
Sha256: 494d81dc6f90d1db2f5a7c3829aede7b18ea3005e29761761d78a3f1878b8688
                                        
                                            GET /templates/beez5/img/gallery_prev.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 533
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:40:28 GMT
Etag: "215-4c3d5968f2279"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de0bb427f-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   533
Md5:    7bb8fb51510f652da6ae9596df3450fd
Sha1:   f48ce5aebced9d31a228053092b8c9a2d2657212
Sha256: 5a2f3160e1b5816689f56b0e05cab7f67b91332011f47ab9847e4ea772abbe80
                                        
                                            GET /templates/beez5/img/gallery_next.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 532
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:40:23 GMT
Etag: "214-4c3d596493199"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de55f4267-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   532
Md5:    fd5572cfdf84a39d5ffa2f9a8c08fdca
Sha1:   96a26891ec016319b0539129651617141be55d2e
Sha256: 494d81dc6f90d1db2f5a7c3829aede7b18ea3005e29761761d78a3f1878b8688
                                        
                                            GET /templates/beez5/img/btn_close.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/style.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 2933
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 09:43:36 GMT
Etag: "b75-4c3fddd746bbc"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00de5604267-OSL


--- Additional Info ---
Magic:  PNG image, 20 x 40, 8-bit/color RGBA, non-interlaced
Size:   2933
Md5:    141c306d49dbf9f5bf15013694a79e99
Sha1:   fc86fc9ae8a8572bcb313750d14ed8a4e3ab8b25
Sha256: 489d86747dfd33ac8fef2a095c7ffc5bca6a9a381c522ee63d91fd84869f9937
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(01).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 18894
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:13 GMT
Etag: "49ce-4c40c3888986f"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c00f40ee4273-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   18894
Md5:    9ba5c11bff64971ac4c7cfd125073da8
Sha1:   2727bcadb01ddc05b21decb54297ffc11b82cb39
Sha256: 2c4bea36e584f3eb7252671ab0cda560c5073efbf0947577df35998e6befb25f
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(04).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 4541
Connection: keep-alive
Last-Modified: Mon, 26 May 2014 17:08:05 GMT
Etag: "11bd-4fa509f6bf1b8"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c0103140427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4541
Md5:    6e99e3745480931a4ecb3ead0c6c42ed
Sha1:   66c8edab5e33b75403fd6f147710fe3170ee96ca
Sha256: d12e27618920df83102e4186680c5778dd04c9a74ad15d5c1fcd4c1af4ab5b8a
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(02).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 19090
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:13 GMT
Etag: "4a92-4c40c3888176a"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01025e94267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   19090
Md5:    c3b2fb79008cdf58cdf5a8be75eb03db
Sha1:   ddd133c52e2718cffd8cb0c790756d740fa43f22
Sha256: b26cc311fc6f0c8edf8f28f5df37151c5537507aa1f2325d5e465b0c88b9b0c2
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(05).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 20177
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:14 GMT
Etag: "4ed1-4c40c38907f47"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c010a6034267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   20177
Md5:    8d1d23569d8e4e7f983b67790fd2eb5e
Sha1:   5fb9f33c67725c8625a2bdd0eb88372a2168f90e
Sha256: b380ede5f9bd1f20e8b220ad95c10f1ac26d27b95938ab7a01e329ca70038eea
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(03).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 20455
Connection: keep-alive
Last-Modified: Thu, 26 Jun 2014 05:10:33 GMT
Etag: "4fe7-4fcb636693ff7"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01035db42c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   20455
Md5:    a7cf4315ce5bcd5c75438b3115fbf9b9
Sha1:   ba31d37bd90cf5c614a25316744ca1f64266a370
Sha256: f592336bed96591cb9bce0c224e1fe74308c0d7a3c89c177a3e0da6e78773a29
                                        
                                            GET /templates/beez5/media/audio/fashion-life.ogg HTTP/1.1 
Host: www.heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=3694592-
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 206 Partial Content
Content-Type: audio/ogg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 6730
Connection: keep-alive
Content-Location: fashion-life.ogg.oga
Vary: negotiate
TCN: choice
Last-Modified: Wed, 04 Jul 2012 12:26:23 GMT
Etag: "387a4a-4c400239a9fa2;4c411b760322b"
Accept-Ranges: bytes
Content-Range: bytes 3694592-3701321/3701322
Server: cloudflare-nginx
CF-RAY: 3819c00e640a42a9-OSL


--- Additional Info ---
Magic:  data
Size:   6730
Md5:    9f90ff204c5a0491202df0a8f6b94079
Sha1:   419dd5cc1125b342064588f92889ff0ece216c5c
Sha256: 23f7b8f84e8bc4d9682f86aa8476b43a3507fffe749174d427ed34627f22c5d3

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(06).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 23079
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:14 GMT
Etag: "5a27-4c40c3890d92e"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c011212f4273-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   23079
Md5:    18f7ac014dec12509af480558ab746c7
Sha1:   7d569cb9e45317c8068a73e91cb940d8cf561226
Sha256: d5c0ac0a058aa7498d0d995fba170ce5a1839516c1fb0226b69447a8412f995e
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(07).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 18765
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:14 GMT
Etag: "494d-4c40c3893abc3"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c0118187427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   18765
Md5:    704d2dfe1088abdf33e03521a18a46b4
Sha1:   2075dc9d93d4a1c79e442392bc1eac153a968e3d
Sha256: 775f703c64722683ca5a5a075cfa96d4a1ac26aa49a4cb769d2ad0f35260e4c9
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(08).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 17446
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:14 GMT
Etag: "4426-4c40c3896d85c"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c011d6554267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   17446
Md5:    d67d70e573b1b3a38d054de9140a0585
Sha1:   3617ad9892d1559ac4a27100b051934059a01598
Sha256: 71d01fd99bd564bcbc321e11c7d731eb049a382a9a63d73eef17637249f82bae
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(10).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 19927
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "4dd7-4c40c3898a150"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c013767b42c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   19927
Md5:    b23b6027d5ff5a388731ddee9a3b1782
Sha1:   3b962e5347339a172d604ed1ebfb3c48bc21d758
Sha256: 8fb931ee19bc768103cf1fb3a1a87d6e4844a175dd3a3272bfbd03522ce661d9
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(09).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 24429
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:14 GMT
Etag: "5f6d-4c40c38983048"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01336a34267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   24429
Md5:    2629eb0aa1dc7e647d39d018fc3f4804
Sha1:   7e325fc276018d3531f99e61a49c8592d9387dad
Sha256: a6b19a0e32e9fae5676be535ef34453d6242787853e5586f189a6e1e453aabc5
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(13).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 17113
Connection: keep-alive
Last-Modified: Wed, 14 May 2014 18:16:03 GMT
Etag: "42d9-4f9602c5b7f60"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01496e34267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17113
Md5:    a30e26b41e44cccf8661e6c6c6bbbf95
Sha1:   c58e06531b7698333d5835efe35e6084e67ebbfa
Sha256: 1f3d9f02b89c568a4c8791f4e71bf9403548bcd18ba5388e64c18a33277648d3
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(12).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 24044
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "5dec-4c40c389de8ad"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c0146212427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   24044
Md5:    096b89445bd19139b79a5ee4dd1607bd
Sha1:   b906f177a7616f88d00b367b7a1bee3f9dbea5b8
Sha256: 1d9f58d9a56543b2c1c66f56e327e19e0f92052b90d6478a7a44af32078edeed
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(14).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 20460
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "4fec-4c40c389fccfc"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c014f6df42c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   20460
Md5:    04989482a37c7f227075c0e5c6b54017
Sha1:   fde84017398ed6139525c5069d326d341befc316
Sha256: 189c0ddad587b667c668ebcf8595f975f49bb167f0e1d399e75bcb4a11a61e07
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(04.1).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:46 GMT
Content-Length: 18821
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "4985-4c40c38a64171"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:46 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01045ee4267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   18821
Md5:    76e4cbdc31e8f03b65f5cd5433c8ed91
Sha1:   53a34c49d132d4eecd09a853b680aaf32afd0eee
Sha256: 9b9e96947d198bcb9137d88c0d1d31472f56bf98c92c492ea4c5fc757cfbc278
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(16).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 20748
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "510c-4c40c38a42e43"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c017077a4267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   20748
Md5:    cd01d5f2b250538b3dca3b083607ab8e
Sha1:   8d12678427cf27700710da7ca3c49abe80f744f0
Sha256: d936cb9d516d4dbc36d25362f1dcfec883cf4bfaf8edd87ecf311a88957cc81d
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(17).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 26099
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "65f3-4c40c38a5f724"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c017029f427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   26099
Md5:    5fb543b189b74611be608a377bcf8fbd
Sha1:   30d688927e2e84251ecfa6764598fe4a53347273
Sha256: 1ab9b6ce224347ecb17f885c9007e47244b54861e9c923ecd5c7dc4d504dacf3
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(15).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 20674
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "50c2-4c40c38a195fd"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c016c7694267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   20674
Md5:    92e3f61c312522f6bd1433671e6920cd
Sha1:   e571e1fc435491bedb554c8fb30511027b5e34a8
Sha256: 5b973210ba8a983c9748cd3a651078aa873c30a5e1479c606dafd4d298fcae94
                                        
                                            GET /templates/beez5/media/backgrounds/Heidi-Albertsen_Background%20(17).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 239724
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 02:31:57 GMT
Etag: "3a86c-514ab8cc56d4b"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c017776042c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   239724
Md5:    93f12a9e022b2a379668cef92aea3a9b
Sha1:   c3e5c185708a00f94c62c534e8fedfaa47f5b6c2
Sha256: da1c85f583e0f3f52d2614099d8c40ca606286479f3bfacdccccb37767e2965b
                                        
                                            GET /templates/beez5/media/backgrounds/Heidi-Albertsen_Background%20(02).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 81814
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 02:31:54 GMT
Etag: "13f96-514ab8c97a1a4"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c019a0164267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   81814
Md5:    e87acf00b5177299e5e9925a194fd541
Sha1:   ea45576a302cf2e6a0c61b166a03724c914b0b40
Sha256: 273a4a20e38edf48eeb7bce6e9642fd1e7f9eafdc8c7df13fa000bcfb51a7b79
                                        
                                            GET /templates/beez5/media/backgrounds/thmb/thmb_Heidi-Albertsen_Background%20(11).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 17747
Connection: keep-alive
Last-Modified: Thu, 05 Jul 2012 02:51:15 GMT
Etag: "4553-4c40c389a75d5"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01441ae4273-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02
Size:   17747
Md5:    c811f653edf19d07f86a7a5f01350352
Sha1:   ccccc9b579f67acb0c62a26c7cea77d4788e683d
Sha256: 8dd75cb298bd6146dfb1e8931cbfdec8d126097636bb02f7eafa982b6cc9519b
                                        
                                            GET /templates/beez5/media/backgrounds/Heidi-Albertsen_Background%20(01).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:47 GMT
Content-Length: 76391
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 02:31:54 GMT
Etag: "12a67-514ab8c99e3bb"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:47 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c01990134267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   76391
Md5:    58053326455e44efe5ba0133bda44566
Sha1:   c71b47135c218b181ac901235e52e3baa3d07b82
Sha256: 9441563dcb2b5ebdc6d61e49c943702a6a7ad2ac00e7204e8c39a5478ec8ab87
                                        
                                            GET /templates/beez5/img/gallery_pause.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:50 GMT
Content-Length: 534
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:40:27 GMT
Etag: "216-4c3d5967e03f3"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:50 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c028e625427f-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   534
Md5:    c2bebfedc97b4bc18c859235e88e8c8f
Sha1:   d6ed3b02b85132521eaa555fa7090215b180ad16
Sha256: 24fe37cfb340d63939455a521a544b577881171da2cc4f8bbef4db47324ca272
                                        
                                            GET /templates/beez5/img/bg_caption.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/templates/beez5/css/supersized.shutter.css
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 20 Jul 2017 23:37:50 GMT
Content-Length: 117
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:34:13 GMT
Etag: "75-4c3d5803d91ca"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:50 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c02c23af4267-OSL


--- Additional Info ---
Magic:  PNG image, 3 x 3, 8-bit/color RGBA, non-interlaced
Size:   117
Md5:    f4e571af4f8f877aa4b33c6cff403da4
Sha1:   90219fa516f34dc0203bb262aeaa147eee5242f9
Sha256: 84921372ccd978882e53ed170136167671fc33301a07b81ac67a90a1eb3b5c7c
                                        
                                            GET /templates/beez5/media/backgrounds/Heidi-Albertsen_Background%20(03).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:37:58 GMT
Content-Length: 87094
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 02:31:51 GMT
Etag: "15436-514ab8c6c1fdb"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:37:58 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c05ac36442c1-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   87094
Md5:    a307e0deb859ee0309b587aa071b522a
Sha1:   00f11bc436d0ccd4819b95db5d260a1524971bfe
Sha256: 165e96ce82a3bc555827b6a4d4f971940e7dec73aa6c4d8aa95c5b5f52327ad5
                                        
                                            GET /templates/beez5/media/audio/fashion-life.ogg HTTP/1.1 
Host: www.heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=0-
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 206 Partial Content
Content-Type: audio/ogg
                                        
Date: Thu, 20 Jul 2017 23:37:45 GMT
Content-Length: 3701322
Connection: keep-alive
Content-Location: fashion-life.ogg.oga
Vary: negotiate
TCN: choice
Last-Modified: Wed, 04 Jul 2012 12:26:23 GMT
Etag: "387a4a-4c400239a9fa2;4c411b760322b"
Accept-Ranges: bytes
Content-Range: bytes 0-3701321/3701322
Server: cloudflare-nginx
CF-RAY: 3819c009c7034255-OSL


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/media/audio/fashion-life.ogg HTTP/1.1 
Host: www.heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=106496-
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/media/backgrounds/Heidi-Albertsen_Background%20(04).jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=d71d7edb7aa6d163f715838f4796122361500593860; c34dea66a42da87402550a948b8b49b9=cf10222f8856ff3bdf10989ea3764a3b; __utma=186065456.474728967.1500593862.1500593862.1500593862.1; __utmb=186065456.1.10.1500593862; __utmc=186065456; __utmz=186065456.1500593862.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 20 Jul 2017 23:38:07 GMT
Content-Length: 63963
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 02:31:54 GMT
Etag: "f9db-514ab8c97cc91"
Cache-Control: public, max-age=5184000
Expires: Mon, 18 Sep 2017 23:38:07 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3819c09387484267-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   63963
Md5:    3c5e7749f039a6b34020ecdd3f434ced
Sha1:   4fdf4fda2b83dcf96f3dce22ed05849451fea411
Sha256: 20ae38010e26f9f071e8cef7266c5d1e11e0a9f7c52e6081f0052362202a9257