Overview

URL heidialbertsen.com/
IP104.27.135.133
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-08-11 08:21:14 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-11 2 heidialbertsen.com/cdn-cgi/apps/head/APqoeipMH-4b1h6cRWelwYYV44c.js Malware
2017-08-11 2 heidialbertsen.com/media/system/js/mootools-core.js Malware
2017-08-11 2 heidialbertsen.com/media/system/js/core.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/javascript/md_stylechanger.js Malware
2017-08-11 2 heidialbertsen.com/media/system/js/caption.js Malware
2017-08-11 2 heidialbertsen.com/ Malware
2017-08-11 2 heidialbertsen.com/media/system/js/mootools-more.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery-1.7.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.easing.1.3.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.transit.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.mousewheel.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.backgroundPosition.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.jscrollpane.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.history.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.tipsy.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.colorbox-min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/greyScale.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/supersized.3.2.7.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/supersized.shutter.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/gallery.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/hoverIntent.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/ajax.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/script.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/superfish.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.jplayer.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/player.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/apng-canvas.min.js Malware
2017-08-11 2 heidialbertsen.com/templates/beez5/js/jquery.form.js Malware
2017-08-11 2 heidialbertsen.com/media/system/js/stat225.php Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 9 reports on IP: 104.27.135.133

Date UQ / IDS / BL URL IP
2018-01-12 22:46:43 +0100
0 - 0 - 1 www.dramafire.info/law-of-the-jungle-episode-248 104.27.135.133
2017-07-27 04:41:51 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-27 00:43:49 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-26 20:55:54 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-26 03:01:11 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 21:58:55 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 21:22:56 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-25 18:25:09 +0200
0 - 2 - 0 jeribilelan.tk/ 104.27.135.133
2017-07-21 01:38:15 +0200
0 - 1 - 33 heidialbertsen.com/ 104.27.135.133

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-04-24 06:56:16 +0200
0 - 0 - 1 https://radiospick.net/d/iphone4/?transaction (...) 104.24.121.221
2018-04-24 06:54:35 +0200
0 - 0 - 5 coinhive.com 104.20.209.59
2018-04-24 06:50:40 +0200
0 - 0 - 1 gf.wiretarget.com/me/me-dtn.rar 104.24.98.233
2018-04-24 06:48:09 +0200
0 - 1 - 0 htps.ml/updates/msicpu.exe 104.24.125.150
2018-04-24 06:47:07 +0200
0 - 0 - 0 loveroms.com 104.17.17.202
2018-04-24 06:42:17 +0200
0 - 0 - 0 x-minus.pro/artist/jessica-rabbit 104.28.20.9
2018-04-24 06:31:37 +0200
0 - 0 - 1 gf.wiretarget.com/me/me-dtn.rar 104.24.99.233
2018-04-24 06:31:28 +0200
0 - 0 - 1 files.theabyss.ru/la2/la2_patch.zip 104.24.24.5
2018-04-24 06:31:17 +0200
3 - 0 - 23 www.modernman.com 104.25.94.27
2018-04-24 06:24:14 +0200
0 - 4 - 0 apdxwlctujqzbtxt.pw 104.27.169.214

No other reports on domain: .



JavaScript

Executed Scripts (7)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (51)


Request Response
                                        
                                            GET /cdn-cgi/apps/head/APqoeipMH-4b1h6cRWelwYYV44c.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 2028
Connection: keep-alive
x-amz-id-2: 1fk3KwfkyIERy5Jk6W4pEDMvrMMhUtNl/fHTg/zseYimR6z4JhkB5psl6O3vsoexEl9bEwQtVZQ=
x-amz-request-id: F6A397E1869554A0
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Last-Modified: Fri, 21 Jul 2017 18:19:07 GMT
x-amz-version-id: uMCqbQ.UfxiirzadM_AJft1vfiOA_Zz2
Etag: "dd3d43b16bd24ef282d3710d9eb9db83"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Sat, 11 Aug 2018 06:20:44 GMT
Server: cloudflare-nginx
CF-RAY: 38c9173a636f4267-OSL


--- Additional Info ---
Magic:  gzip compressed data
Size:   2028
Md5:    dd3d43b16bd24ef282d3710d9eb9db83
Sha1:   00faa87a2a4c1fee1bd61e9c4567a5c18615e387
Sha256: f1336299da8f18f29771a1c4273a570aed3b442db393b7a3adbd477801b1d612

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/mootools-core.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 31097
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:25 GMT
Etag: "1786a-4c3aa6f3da393-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173a95fe42b5-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   31097
Md5:    d6a7b855d3f12d8ff7bf08da13184032
Sha1:   222ea16e437b5b7e309749235f8a488c603c827e
Sha256: 48e010127a9e7ec20ff16c907965bb28582c32ecbc8264d8fb496149ff9626c6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/core.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 1713
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:24 GMT
Etag: "12b0-4c3aa6f3cdc5e-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173aa50a42a9-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1713
Md5:    25be7ea578169b8e7639af55f7e0dd42
Sha1:   39eb44407756da692c31448427fd8906a6bf346c
Sha256: a41f0b35cc370ba2ec66e8a15fdbf8fa4e330a1a37711d562b767154a2223832

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/javascript/md_stylechanger.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 776
Connection: keep-alive
Last-Modified: Mon, 09 Jul 2012 07:28:38 GMT
Etag: "895-4c4608ffa360e-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173aa3804267-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   776
Md5:    209f30fe5a77ec08bd4f49ad6f68b458
Sha1:   1ce7d586a406971620293f2714cadb6f80a35cc8
Sha256: 9d27f63e26a1b8b77b8a753ee984c889eab8d9e92570f767c851689b63da4546

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /l/by/3.0/80x15.png HTTP/1.1 
Host: i.creativecommons.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         104.20.151.16
HTTP/1.1 301 Moved Permanently
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Aug 2017 07:20:44 GMT
Location: https://licensebuttons.net/l/by/3.0/80x15.png
Server: cloudflare-nginx
CF-RAY: 38c9173b20484261-OSL


--- Additional Info ---
                                        
                                            GET /media/system/js/caption.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 403
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:24 GMT
Etag: "2d9-4c3aa6f3ca9c0-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b20e64273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   403
Md5:    2645223569a18f7c0fd1ed2873c976cd
Sha1:   68ed1bffdd4424e84308c9f51ce5fbf121bdd719
Sha256: 08b16a4f25cc2ba1eab88daf16619d36ea89707e6d46e9faba77aa6d3f93f6ae

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; expires=Sat, 11-Aug-18 06:20:43 GMT; path=/; domain=.heidialbertsen.com; HttpOnly c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb; path=/
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-cache
Pragma: no-cache
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38c91732843842c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12604
Md5:    327008f6820612d1c8443375113b493e
Sha1:   c23478cbc56b8ba2e471fc267337450cd7678c56
Sha256: c2f74f32557593fe73448793ac62efd149ebee36366610b2fc57a3c9376a8ef8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /media/system/js/mootools-more.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:44 GMT
Content-Length: 68033
Connection: keep-alive
Last-Modified: Sat, 30 Jun 2012 06:11:25 GMT
Etag: "3a2fb-4c3aa6f3d9006-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:44 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b20e74273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   68033
Md5:    422e07fff8f5493732a2478326093863
Sha1:   790a42a8ad097ba51d840c11f0b8bf0f2ed90d2e
Sha256: b62f20d801c9cd10339382de1e308646f999e0b4e990649db5a84da555016781

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/fonts/stylesheet.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 308
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:33:00 GMT
Etag: "2f6-4c3d57bd81798-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b40f24273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   308
Md5:    3a152c7ed345e6a1f942639f41b461b4
Sha1:   ef0cc8ccdcf9d4e55f63e33bec334c4a054fba3f
Sha256: 5af1be34a2155d14048953209c95eda5d7b98529c6a466428538bddf80253fa4
                                        
                                            GET /templates/beez5/css/colorbox.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 901
Connection: keep-alive
Last-Modified: Thu, 31 Jan 2013 03:18:37 GMT
Etag: "a19-4d48d15325e53-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b252b42a9-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   901
Md5:    b4d2417d848695077bd535a5b923cb68
Sha1:   351211f8af9e771b56a77b39561c40ac11a03f23
Sha256: 01aa44bc9b00670c8eab940134f4b5f62ea03318b56b5f30b026b42b2752929c
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
If-Modified-Since: Fri, 03 Oct 2014 00:48:42 GMT

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 11 Aug 2017 04:50:29 GMT
Expires: Fri, 11 Aug 2017 06:50:29 GMT
Last-Modified: Thu, 10 Aug 2017 14:40:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 13442
Cache-Control: public, max-age=7200
Age: 5415


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   13442
Md5:    e208b2dddc1989c28af32ef376f02854
Sha1:   c2bd6f47c71c94eaeac9fd9d1a6dd0e28203a73a
Sha256: bea0bba2b33e766b4f8b9c3834ea0a44e3715f286a14d1caa546d2c6a5d0f66f
                                        
                                            GET /templates/beez5/css/style.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 6040
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:57:18 GMT
Etag: "972f-514ad949a054b-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b263642b5-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6040
Md5:    4a59cbceadf8e56155358f77e70fbf72
Sha1:   187ccf09d30280416d673a47647392c84a7a95f5
Sha256: 931589a27cf0dbd81d79521d7b90221666407604415e492f99bf437d0465e792
                                        
                                            GET /templates/beez5/css/supersized.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 613
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:54:08 GMT
Etag: "57a-4c75c8297133f-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173b677e42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   613
Md5:    37363bcde20e2df80e4b1dff9394b6bc
Sha1:   33eff60a9d25856cb60c4209ce629fc5406c29b4
Sha256: cfcaa4ffae9c301bb5ba7444aba5f53e6497f7172d1c8951f35f9e5bc5ac1b17
                                        
                                            GET /templates/beez5/js/jquery-1.7.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 33274
Connection: keep-alive
Last-Modified: Tue, 22 Jan 2013 21:37:55 GMT
Etag: "16f44-4d3e764067b90-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173dc04842c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33274
Md5:    929b34b42ac409139d3e3e22ebdfdba3
Sha1:   9876aff27cea09ca161ee4fa0d1376042637ea80
Sha256: a426bfa10cc2506dc53d8634b7ffc88c060aab7f33400229f0509c1c49b250a4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.easing.1.3.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 794
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:47:32 GMT
Etag: "cfa-514ad71b0aa6e-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e206942c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   794
Md5:    2a34826eefe7194efd04675ea95c1c37
Sha1:   d7ab6eb900fc26cd84baada549d74e8acac3d71d
Sha256: c9943c1abd7ee368d13099d38ca3920e32ed46270985691fd3aae06389823235

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.transit.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 2212
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:27 GMT
Etag: "168d-4c75c8028ee7a-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e307142c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2212
Md5:    5a2f4c8d09ba44b0014eac944d6372f4
Sha1:   b6623ca2934fa9e221167f6e58c5012112f4f8f1
Sha256: 530a540fbb457c689f523d80fc617abce1857aec4c69c43d8b7532c64e490a4f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /ajax/libs/jqueryui/1.8/jquery-ui.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.201.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 51653
Date: Thu, 03 Aug 2017 14:04:21 GMT
Expires: Fri, 03 Aug 2018 14:04:21 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 663383


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   51653
Md5:    7de998e158372795b67af9f35ef450b0
Sha1:   94cda3c69db587726f03dd2c1c1119b36ab579e3
Sha256: ca1195477fdfe8363dbe5e2bcd0ae1d62b043324fa1e2e969da04ed2b661cb10
                                        
                                            GET /templates/beez5/js/jquery.mousewheel.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 716
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:24 GMT
Etag: "570-4c75c7ff3e8eb-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e407542c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   716
Md5:    1bb069d9e3a8d110eaf5319b82b26e9b
Sha1:   25921fb49b922ecc44a40550587df5ace5e9a9a9
Sha256: 6975d1b270a0cbbcd4f0a652d6b32bce9eb2344944e1ccde88e5588bf51e71d4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.backgroundPosition.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 806
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:19 GMT
Etag: "7fb-4c75c7faa857a-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e608642c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   806
Md5:    8d66e80999887b6a07285fcc0e19708f
Sha1:   a8d32d3ad50a72e24112187dcdda737b20dc9692
Sha256: f3a6bafe3437dccdf7ad4d75c6ea43be60c365799c7de37c203549a28ea0afdc

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.jscrollpane.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 4814
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:22 GMT
Etag: "391d-4c75c7fdb2da0-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e709142c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4814
Md5:    806f5c5dca4de9d4003c62f7a607fff7
Sha1:   35958013ebd508649980671ed2c69e3c7d1da44f
Sha256: e863326487000d2e8c9049698c05e9e47437fd988bc41a9325e388ff5081b278

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.history.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 4365
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:21 GMT
Etag: "398b-4c75c7fc9e827-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173e90a042c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4365
Md5:    b05d043b292904feb9df6fa20772c6ac
Sha1:   d27a2404ca6af538f6c7b827e6b32f7d5cb5953e
Sha256: a5baa565524601d17a118bede32be88fd4459a80cd2e3e13b1edb3a08d930f18

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/css/tipsy.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 638
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:32:47 GMT
Etag: "96c-4c3d57b16f9da-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173d81bf4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   638
Md5:    20fa65555bbddda3ed14c768b8dd02fe
Sha1:   952e0449071a81e4e95aabb3040870d9d6b1eb51
Sha256: 98092fb977d5d021ea0b6d322950b7a46f80113d8eb262eedcf5f792bc7f937f
                                        
                                            GET /templates/beez5/js/jquery.tipsy.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1471
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:48:18 GMT
Etag: "fc8-514ad7465e3c1-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ea0a442c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1471
Md5:    63a1fed479e39e8301fb5cc2642f22fa
Sha1:   0f65f8486efbbacada456aa51e9eb966eb0b0bce
Sha256: cef7ded703b42caf08f8cc0e6cf64901540a8107397fa707d60e22fd73b8e3dd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.colorbox-min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 4191
Connection: keep-alive
Last-Modified: Tue, 22 Jan 2013 22:38:55 GMT
Etag: "25ee-4d3e83e29c2f7-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173eb2334273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4191
Md5:    a4f3e87d73b27288f5a24668d8e7ac5b
Sha1:   c3767442e6e5f2d04a2e52a0e23bdfcd421bff67
Sha256: 454beb91a7b1237f0cafaa84793a019445189739a7cb420ebcf784c8ef78b9e1

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/greyScale.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1850
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:49:11 GMT
Etag: "f15-514ad7797d9cb-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173eb0ae42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1850
Md5:    55c8f39cdae7b3d2014bd2aa74fc544c
Sha1:   f1faae8e6fe3a164d342f3e0d251d010b035d9d9
Sha256: a5917ac4745807e34da606eeea2d3d7da6b8549a35295da2b9f243b99456bd77

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/supersized.3.2.7.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 3304
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:45:32 GMT
Etag: "4563-514ad6a89081a-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ec23c4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3304
Md5:    d49966280c2d6191db66625e3a870073
Sha1:   63c03af888be4ddf89a807eae28682f15780d1cc
Sha256: d453331ab9b80b1a35bc9dd06eeb7fa1b4fb1c1f59e8d5f00f7237fe068a4726

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/supersized.shutter.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1890
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:46:10 GMT
Etag: "2165-514ad6ccb6c36-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ed0b242c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1890
Md5:    cbd6e40c2590455d09cfa2762d933ff5
Sha1:   7615f7d0a01009df2a0a8031e6951e8a935cccc2
Sha256: 3fe38e6eb98470fa1e633c56bd344834557d8063880a2ec6bf409a0b59758e2c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/gallery.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 359
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:51:14 GMT
Etag: "233-514ad7ee75fe3-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ee2464273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   359
Md5:    596664601f239bf20a648a69946f76c5
Sha1:   03e68fc4b18a36c41cbae79a82f0226ec22b2506
Sha256: 4045b0662aff7c4e26644f33ac6ee149e5be822cf6405abf676e6bcce3ac3c2b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/hoverIntent.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 482
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:49:59 GMT
Etag: "43a-514ad7a6a5ff6-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ee0be42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   482
Md5:    c979175cf6f2b3fcd261fa36bd55371b
Sha1:   0fe29454d1e2af064c5ac813e31db868aa2da906
Sha256: ebaca45d7ca011c733adee1c94b66bad1fb13e336856bcb1e244632ef8f01e04

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/ajax.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1220
Connection: keep-alive
Last-Modified: Thu, 06 Sep 2012 10:57:39 GMT
Etag: "f5f-4c9065c1f4090-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ef0c342c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1220
Md5:    9aefce7784fce7cebea6cac4dbc526e5
Sha1:   8094944a922256a805d278877013aebd9ac02722
Sha256: 5e26f9b6e866b71f3a81d7d9c58ef1ea082edda6b1db5ed070db7b2eef7a5306

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/script.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1922
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:50:36 GMT
Etag: "1db9-514ad7c9e6800-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f10ce42c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1922
Md5:    1a14e56395d0eb4a460264bbb26df515
Sha1:   53f70c105f5382583143fe31193ce64b9735e78e
Sha256: 39e71a83a11e95b3160f62e88efb143008b3fbc19779d13c27030babf522a443

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/superfish.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1541
Connection: keep-alive
Last-Modified: Fri, 24 Aug 2012 01:57:09 GMT
Etag: "fc3-4c7f94b3cf9b6-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173ef2534273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1541
Md5:    e2762cf362228bec48449441b36df4b8
Sha1:   132958820ffde52dea13a5dd38cb73e770b3730c
Sha256: 60b3b94677d5fd14fe1f177a461864840a323d28ee2b374b31914d5ffd899a81

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/jquery.jplayer.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 8108
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:22 GMT
Etag: "821b-4c75c7fdae730-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f20d142c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8108
Md5:    cdd9f769b60eb084d82a1ee408568609
Sha1:   27eac8cfecd5f6f5f11d9fd7aef87920bc76fd2c
Sha256: 98df141231ef4a9195bd615b2b0af59bc0a9ccdc8e255f4e9f505be9d4611a92

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/player.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1513
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:29 GMT
Etag: "14d3-4c75c80441e95-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f32674273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1513
Md5:    ecb2c95376eb5fccad969c1b923fe057
Sha1:   f6203255e4383734b107a4b08c109a7757f427e8
Sha256: d0538e8d798802b6d945c186a99acdc8bbde5867f60e37ffbcad9b279d4d29c5

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/js/apng-canvas.min.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 3929
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:53:15 GMT
Etag: "2920-4c75c7f6436e2-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f50e642c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3929
Md5:    476fec8ded4e46209061739326c0164e
Sha1:   aeffabf796673178c49063d67c67748e6e6f1b9f
Sha256: f9292a34118df91fe7d855335af508efcdbcc6e869a5204f3d66154e8f8c0c29

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /templates/beez5/css/supersized.shutter.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 1670
Connection: keep-alive
Last-Modified: Thu, 16 Aug 2012 06:54:09 GMT
Etag: "14cb-4c75c829e237a-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173d219e4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1670
Md5:    7ad2e0ce7d54d1ebef0fe742441b9401
Sha1:   4dab76583195cd22cd42a5ad399556aa7968a45e
Sha256: 43d29c5b2d214f8541d770d37fa914dff00dd73e0ec700c05d87fd2e28068230
                                        
                                            GET /templates/beez5/js/jquery.form.js HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 2633
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:53:05 GMT
Etag: "1a47-514ad85842fdc-gzip"
Cache-Control: public, max-age=604800
Expires: Fri, 18 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f627f4273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2633
Md5:    3c6fac3e0c5308ddbdbb64064c8c9733
Sha1:   abc032758194f3a13d7e1d691b2bfc095aa3872e
Sha256: 2908729f8fb7f7d9e49740b960b52cedae48ee8b38a82d35847603eb7a43c7fa

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Dosis:500 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 11 Aug 2017 06:20:44 GMT
Date: Fri, 11 Aug 2017 06:20:44 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   208
Md5:    610b89c3b776384e708d0c08ce12cbb0
Sha1:   b00e1a8c219ce65cc48bca58480d1a447f2f1235
Sha256: a84bda216bf1fd64f14ec73d3eee19e2f77b3ef6a19ec432e6e140fd7448f25c
                                        
                                            GET /templates/beez5/favicon.ico HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2012 18:40:41 GMT
Etag: W/"37e-4c3f1405b474a"
Cache-Control: public, max-age=2592000
Expires: Sun, 10 Sep 2017 06:20:45 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38c9173f82874273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   862
Md5:    89e5a44fd980b43857efa89a56d0bcf7
Sha1:   3fb9d6c248b2ca0659132dbf6855afe065cb6006
Sha256: 5a9d95dc29916bb1e90621f858b51f7ce8241cbe3cdf5e9245e9fce07687d514
                                        
                                            GET /templates/beez5/css/layout.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 4423
Connection: keep-alive
Last-Modified: Mon, 27 Apr 2015 04:56:41 GMT
Etag: "49be-514ad9260b576-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173d95fa42a9-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4423
Md5:    fc6967e74e36e8ab9d7f14b27ba279c7
Sha1:   7100069b44f76206f9ac35acaa424755bc536e30
Sha256: 583fc33b5504f4a651ea3ea7e8ce518b132178e236e70892f49c7e3340e3549a
                                        
                                            GET /templates/beez5/css/my_filter.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 813
Connection: keep-alive
Last-Modified: Wed, 04 Jul 2012 07:45:22 GMT
Etag: "bab-4c3fc36a2d05e-gzip"
Cache-Control: public, max-age=432000
Expires: Wed, 16 Aug 2017 06:20:45 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173db75742b5-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   813
Md5:    03c7f44ad18c5844f78df722b6d03841
Sha1:   5ff26ef2a20cc43d961b4471556b65942f3c9221
Sha256: df94d71bb588825535b36aec76ddd1750d65c5d89942e1f66a52d4948cb5a3d6
                                        
                                            GET /media/system/js/stat225.php HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38c9173f70ec42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   64
Md5:    d85c3b088526c595e1e7ca8d00e60964
Sha1:   74976dd01d11b7d57353cb31f753438029bb78f7
Sha256: a219a299979d46794c9f2b7eb4227277a824703e0182dbcfccade0b4fe54663b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /r/collect?v=1&_v=j59&a=562126442&t=pageview&_s=1&dl=http%3A%2F%2Fheidialbertsen.com%2F&ul=en-us&de=UTF-8&dt=Heidi%20Albertsen%20-%20Official%20Home%20Page&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQAI~&jid=933371052&gjid=364992944&cid=515934355.1502432446&tid=UA-38077303-1&_gid=1523033641.1502432446&_r=1&z=1501674286 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 11 Aug 2017 06:20:45 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /images/Heidi-Albertsen_1_cc-by-license.jpg HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 11 Aug 2017 06:20:45 GMT
Content-Length: 132481
Connection: keep-alive
Last-Modified: Sat, 26 Jan 2013 18:49:32 GMT
Etag: "20581-4d435812788ac"
Cache-Control: public, max-age=5184000
Expires: Tue, 10 Oct 2017 06:20:45 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9173f82864273-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   132481
Md5:    ca66324915747b71e97c6a98f40aa60f
Sha1:   3b3311b955b2647e14739c5f36da6e54283a666c
Sha256: 22e294ea0d5374eba2d4fd9a559b1b29c2802b1232de96fd9eddab7cd013ed73
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Server: Apache
Last-Modified: Thu, 10 Aug 2017 04:42:23 GMT
Expires: Thu, 17 Aug 2017 04:42:23 GMT
Etag: 61CD9EEFB19E62BF7E0359D209E5F7C629D003A7
Cache-Control: max-age=511896,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp24
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    08b7f1ad0ce40aeacf11567d8fe0e6cc
Sha1:   61cd9eefb19e62bf7e0359d209e5f7c629d003a7
Sha256: bbc07d96a5befcf7cf01f4ddcae0f9bf3197e1cf4ae57d02e8dc4e33e9301d82
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Server: Apache
Last-Modified: Wed, 09 Aug 2017 10:05:35 GMT
Expires: Wed, 16 Aug 2017 10:05:35 GMT
Etag: F50A8BDEF051E47D88135C0C07A0F378573296DD
Cache-Control: max-age=444888,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp24
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    24ef973dddf03bee126c49f9cb405406
Sha1:   f50a8bdef051e47d88135c0c07a0f378573296dd
Sha256: 7cc5bc9689af9a1d4e74f48bc27044391e1ccf5f2a3b2b6c1f411168deda8347
                                        
                                            GET /templates/beez5/img/progress.png HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb; _ga=GA1.2.515934355.1502432446; _gid=GA1.2.1523033641.1502432446; _gat=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Content-Length: 20995
Connection: keep-alive
Last-Modified: Mon, 02 Jul 2012 09:57:59 GMT
Etag: "5203-4c3d5d53c5cf9"
Cache-Control: public, max-age=5184000
Expires: Tue, 10 Oct 2017 06:20:46 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c9174444274273-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 30, 8-bit/color RGBA, non-interlaced
Size:   20995
Md5:    1c90c06a04a537be0dd46f07efc6be2b
Sha1:   e0810271280c137cada037825a9e518ae9c1c5c6
Sha256: f7745a7eb68635542aa51272276e311ffb26a8090c5844cf5717d295287b5589
                                        
                                            GET /templates/beez5/img/favicon.ico HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb; _ga=GA1.2.515934355.1502432446; _gid=GA1.2.1523033641.1502432446; _gat=1

                                         
                                         104.27.134.133
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Jul 2012 18:42:14 GMT
Etag: W/"37e-4c3f145e8dc4c"
Cache-Control: public, max-age=2592000
Expires: Sun, 10 Sep 2017 06:20:46 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38c91744903342a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   862
Md5:    89e5a44fd980b43857efa89a56d0bcf7
Sha1:   3fb9d6c248b2ca0659132dbf6855afe065cb6006
Sha256: 5a9d95dc29916bb1e90621f858b51f7ce8241cbe3cdf5e9245e9fce07687d514
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Server: Apache
Last-Modified: Wed, 09 Aug 2017 10:05:35 GMT
Expires: Wed, 16 Aug 2017 10:05:35 GMT
Etag: 9FF263C01F80A9A9E136208D01EB79373C737274
Cache-Control: max-age=444888,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp24
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9224e9d5327b5b48b1e080296b7793e6
Sha1:   9ff263c01f80a9a9e136208d01eb79373c737274
Sha256: 805900e12bed3ba3283de5b395c0d2e96913515ef1e002215a4a964f60aa060f
                                        
                                            GET /l/by/3.0/80x15.png HTTP/1.1 
Host: licensebuttons.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/

                                         
                                         104.25.6.12
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 11 Aug 2017 06:20:46 GMT
Content-Length: 410
Connection: keep-alive
Set-Cookie: __cfduid=d75f206cce495360b5f14581e46c025931502432446; expires=Sat, 11-Aug-18 06:20:46 GMT; path=/; domain=.licensebuttons.net; HttpOnly
Cf-Bgj: imgq:100
Cf-Polished: pngoptimizer, origSize=640
Etag: "280-4f0c8c2319f40"
Last-Modified: Sat, 25 Jan 2014 10:15:49 GMT
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expires: Wed, 16 Aug 2017 06:20:46 GMT
Cache-Control: public, max-age=432000
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 38c91746bd2f42b5-OSL


--- Additional Info ---
Magic:  PNG image, 80 x 15, 8-bit colormap, non-interlaced
Size:   410
Md5:    7b12917e4649bd774643dd25a32981dc
Sha1:   48218d6a51185f153a76c8ab88a7dfd8ae4cd01c
Sha256: f4694f4974c59e4754e8dac954da9ad2387ca0038ac3bee9915a99b77bb0ab9f
                                        
                                            GET /templates/beez5/css/jquery.jscrollpane.css HTTP/1.1 
Host: heidialbertsen.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://heidialbertsen.com/
Cookie: __cfduid=dd68b6959f3642bb3fc866f94d1ada3f41502432443; c34dea66a42da87402550a948b8b49b9=e834141425d1c2a886fee6f27bb664fb

                                         
                                         0.0.0.0
                                        


--- Additional Info ---