Overview

URL mtanfrottosa.tk/
IP104.27.141.64
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-07-19 14:37:20 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-07-19 14:36:55 CEST 2 Client IP  104.27.140.64 ET POLICY HTTP Request to a *.tk domain
2018-07-19 14:36:55 CEST 2 Client IP  104.27.140.64 ET POLICY HTTP Request to a *.tk domain
2018-07-19 14:36:53 CEST 2 Client IP  104.27.141.64 ET POLICY HTTP Request to a *.tk domain
2018-07-19 14:36:57 CEST 2 Client IP  104.27.140.64 ET POLICY HTTP Request to a *.tk domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 104.27.141.64

Date UQ / IDS / BL URL IP
2019-06-12 10:20:04 +0200
0 - 0 - 0 https://coffee.phonoless.com/5cff691ec7a65 104.27.141.64
2019-06-12 10:15:57 +0200
0 - 0 - 0 https://coffee.phonoless.com/5cff858f0a738 104.27.141.64
2019-06-12 09:57:25 +0200
0 - 0 - 0 https://coffee.phonoless.com/5cff691ec7a65 104.27.141.64
2017-12-22 18:31:57 +0100
0 - 3 - 0 https://optimizer586-info.ga/AT-TollFree-1-87 (...) 104.27.141.64

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-06-17 11:49:15 +0200
0 - 0 - 0 bonusbitcoin.co 104.31.83.162
2019-06-17 11:43:25 +0200
0 - 0 - 0 cryptoliveleak.org/please-123movies-hd-watch- (...) 104.24.111.172
2019-06-17 11:41:16 +0200
0 - 0 - 0 cryptoliveleak.org/pulocker-watch-men-in-blac (...) 104.24.111.172
2019-06-17 11:36:29 +0200
0 - 0 - 0 cryptoliveleak.org/play-men-in-black-internat (...) 104.24.110.172
2019-06-17 11:29:41 +0200
0 - 0 - 0 cryptoliveleak.org/2019movie-watch-men-in-bla (...) 104.24.111.172
2019-06-17 11:27:27 +0200
0 - 0 - 0 www.christiangamarramartinez.com 104.24.114.189
2019-06-17 11:23:29 +0200
0 - 0 - 0 cryptoliveleak.org/watch-men-in-black-interna (...) 104.24.110.172
2019-06-17 11:22:44 +0200
0 - 0 - 0 cryptoliveleak.org/123movies-men-in-black-int (...) 104.24.111.172
2019-06-17 11:22:45 +0200
0 - 0 - 0 blueskygold.club/?u=1gnpae3&o=0lpkqzc&t=mw5t2 104.27.163.224
2019-06-17 11:21:55 +0200
0 - 0 - 0 cryptoliveleak.org/123movies-men-in-black-int (...) 104.24.110.172

No other reports on domain: mtanfrottosa.tk



JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (52)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.141.64
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 19 Jul 2018 12:36:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809; expires=Fri, 19-Jul-19 12:36:49 GMT; path=/; domain=.mtanfrottosa.tk; HttpOnly
X-Powered-By: PleskLin
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Server: cloudflare
CF-RAY: 43cd3c5f22da426d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5844
Md5:    09e6eb66fcce497ee9496195b511a722
Sha1:   9078faf0755635c85bcce780b16ae166a48a84f9
Sha256: 271781a68fcf746e50e47994bac5a94a5fb604797bbcda242deb6b1c4a9a6821
                                        
                                            GET /images/logos/favicon.ico HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/logos/favicon.ico
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c66d5f9429d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   223
Md5:    aef9856dce625a0146d5797099e2ee57
Sha1:   73d80238d091979ddf93027ae09fc13980dffdf4
Sha256: b8538bed9197d06c3cabe4b9e2e5e3339e21e9af6cdfcd274982382f07e71254
                                        
                                            GET /images/logos/favicon.ico HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 19 Jul 2018 12:36:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 15 Sep 2017 09:54:04 GMT
Etag: W/"c40e86-423e-559375f862c52"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:51 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 43cd3c6923e84255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1763
Md5:    e4922a1cae8c5ac2cbca23d4955389c2
Sha1:   59980d027c34d31195e7fc3444cfc1e4ab1f03a8
Sha256: c580cbd4e610f74c15359bf64750bd9b190c97cf1ea0039ae945d1ffb04dd302
                                        
                                            GET /templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Server: cloudflare
CF-RAY: 43cd3c66c1d142a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   204
Md5:    ea55c6bd2326a776bb46270378e6c964
Sha1:   5e0d0153ed49a13851dec5c519df10ae6583bf5c
Sha256: 83c42c3534514e14e3fa4e6492a59be495435cc7b438a8e8fce89598baf72849
                                        
                                            GET /templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Thu, 19 Jul 2018 12:36:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: public
X-Powered-By: PleskLin
Server: cloudflare
CF-RAY: 43cd3c6ed4cd4255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20871
Md5:    21e86f6a40d8ffddc5f9ff0d00f137b0
Sha1:   2e777868df909fb0fe8be1d14411f5626d482004
Sha256: d4b3b2251187bf2dee226efcc1870080b063795101efcaf2f5c523ce41ec9ffc
                                        
                                            GET /images/logos/favicon.ico HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/logos/favicon.ico
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c799646426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   223
Md5:    aef9856dce625a0146d5797099e2ee57
Sha1:   73d80238d091979ddf93027ae09fc13980dffdf4
Sha256: b8538bed9197d06c3cabe4b9e2e5e3339e21e9af6cdfcd274982382f07e71254
                                        
                                            GET /templates/EyeCandy/backgrounds/icon-white-arrowdown.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:53 GMT
Content-Length: 151
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:49 GMT
Etag: "c4089a-97-4f027079d9040"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:53 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7a133142bb-OSL


--- Additional Info ---
Magic:  PNG image, 9 x 5, 8-bit/color RGBA, non-interlaced
Size:   151
Md5:    dc64f33fa3a88319de1faf68c5cdd593
Sha1:   c93f2c25e9c130b0f7a98a450a3a3729bd83cfd5
Sha256: 02abcc03d836c6deb964017b4b41f4648eba8b39ed8ea35b3b118848337a4281
                                        
                                            GET /templates/EyeCandy/img/icons/icon-grey-basket-big.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/templates/EyeCandy/img/icons/icon-grey-basket-big.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b147242a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   197
Md5:    3d067e35055109288c82d78223e27b94
Sha1:   1d05d8d78a1e35885f50783819b2d01d6f9dc3cd
Sha256: 3b9f0dabb6cd57a09162de234f07fdd475501793b74a9605396186e08e9be350

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /images/index_4x_200px/2203_200px.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/2203_200px.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b366f426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   228
Md5:    9ad86276b5a857fb6f63d95022744c17
Sha1:   e26eb896ff9d06e5c1d6ed0011f9ee2eaf7655f6
Sha256: a86490d95b94fb38d777c2932a10d8fee5e08a981f105a8dfedfc2c24e4ee3dc
                                        
                                            GET /images/index_4x_200px/482.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/482.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b525442b5-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   207
Md5:    3631e9413f9f261092f8234bf5618b3b
Sha1:   7e066cf56fbb16d215414b3be1e4b7f4a04a82e2
Sha256: 036702ec80821a9f2fe785f55825a431ac690ec8869917c8529ddf0027ae87d9
                                        
                                            GET /templates/EyeCandy/backgrounds/button-right.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Content-Length: 198
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:50 GMT
Etag: "c408a4-c6-4f02707acd280"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:54 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7be39042bb-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 20, 8-bit/color RGBA, non-interlaced
Size:   198
Md5:    c4109da52fbed08a7fc02ec9881c6d65
Sha1:   c25c3d36868e1706b06e68552ebc1a68428f8280
Sha256: a829f8b2dab14f089422b95c5d861f8bf6824fc28dd003a45b21023a8ebf927a
                                        
                                            GET /gm_javascript.js.php?XTCsid=dgi0354e2rtijtjts62mi8mca6&XTCsid_name=XTCsid&page=Index&current_template=EyeCandy HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/gm_javascript.js.php?XTCsid=dgi0354e2rtijtjts62mi8mca6&XTCsid_name=XTCsid&page=Index&current_template=EyeCandy
Server: cloudflare
CF-RAY: 43cd3c7c64b242a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   218
Md5:    8279b448e1d67047282b1aed0be330c3
Sha1:   6bc9f3fa040070b697c98cf78065788188e74f2b
Sha256: 6bbe011e1aa12ebe63269bfe8f745459cf4578d9362f60dc379be8690237b567
                                        
                                            GET /gm/javascript/GMCounter.js HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/gm/javascript/GMCounter.js
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7c769e426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   218
Md5:    55267a7731b574b8d75b3250cf896e97
Sha1:   25db434c59272426f17b79ddc52e9da39e2025cb
Sha256: d3db9799b759a752fb3242ed8347ffaf41b9c927ae1ebbab5ba661120163c59c
                                        
                                            GET /images/index_4x_200px/7345_200px.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/7345_200px.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7da50142a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   207
Md5:    4444ca3770e992aa4f041efe130ddb0d
Sha1:   aebddabc78bb5dfb68b06dd6c4199e1174df53f1
Sha256: 6c5e3192a52a93d92c89c3bed1e55ac15be00707c6a2b89bd4700e23f7819670
                                        
                                            GET /templates/EyeCandy/backgrounds/gradients/gradient-light.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Content-Length: 164
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:50 GMT
Etag: "c40896-a4-4f02707acd280"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:54 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7b5346427f-OSL


--- Additional Info ---
Magic:  PNG image, 1 x 35, 8-bit/color RGBA, non-interlaced
Size:   164
Md5:    0108a6c02d0ac55e9bf5c71bac07f10e
Sha1:   f3d0fc8b69b585d9da3b57ac40a21820ce43436f
Sha256: e20b49eaef86080ae2dbced98a80c3d62a03d76e0eea3a8942df7984a54b6de1
                                        
                                            GET /templates/EyeCandy/backgrounds/separator-30-vert.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Content-Length: 196
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:50 GMT
Etag: "c408a3-c4-4f02707acd280"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:54 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7b56b84285-OSL


--- Additional Info ---
Magic:  PNG image, 2 x 30, 8-bit/color RGBA, non-interlaced
Size:   196
Md5:    f28a84256ce20543b03160aa43c7a1a4
Sha1:   83f68e5228a9ac719f015fd65b605f726101ab5e
Sha256: a561ab6ee7e601bc4dee352de52f47fadeef655d1621773e1612155658b3240d
                                        
                                            GET /images/index_4x_200px/pro.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/pro.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7c926f42b5-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   209
Md5:    d890b7968a48251bb006e6e6c4d00291
Sha1:   3fcc45f809bf1eceba35fe810d4dee95533c3e9b
Sha256: 779b5fefaf87b956dd99aa514de925515fbaf132ab349b2be1bcffc15ff5b1c8
                                        
                                            GET /images/index_4x_200px/6234_200px.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/6234_200px.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7e952e42a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   207
Md5:    42f0daa60b15874f0036784f6787154b
Sha1:   d822691914bfc18f7d5e1042692a5457b2088a05
Sha256: cb9dd0c8ea7ed0d4c6cd3668979cd8fd674fd71da619809dc038450099fc35ca
                                        
                                            GET /templates/EyeCandy/img/icons/icon-grey-arrowdown.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/templates/EyeCandy/img/icons/icon-grey-arrowdown.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b1668426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   215
Md5:    794cee1010b3eb1e244cfdc8cac7c0ce
Sha1:   28d796e645a9b5fdaf78351199ffc67323ccc451
Sha256: b6bc0b8cca6b965baf4adc1dfec01c8982710ebe297da0a1ea2eff839a992f9c
                                        
                                            GET /images/index_4x_200px/7400G.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/7400G.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7e06ca426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   213
Md5:    210a30ef48b1a5c1101d1a08492173a0
Sha1:   ac26aa3e081953e0608937a2d271f22ef0ee939e
Sha256: 95e5c96af44c68f35b5caf65048e5545e360f234b2e462a7f74239f527298ed8
                                        
                                            GET /images/index_4x_200px/6643_200px.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/6643_200px.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7fe55242a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   193
Md5:    0b260914a1c8a1cab251b67578409f75
Sha1:   3bdf58f46487aff29543561160219ac093108186
Sha256: ed28249be696e86150e7b29c4aed864ce1b60faf7f9d0e3d1c7f260f33e84100
                                        
                                            GET /images/Unternehmen/seite1.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/Unternehmen/seite1.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c801706426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   221
Md5:    f7baa0e7b310964661d4880c7e2d6eb7
Sha1:   6baed7b8bdf42c7cb2d8227f41d540e45a45b12c
Sha256: 64e6c1ae33265b902bbe69b11349c46f7a98b05304477f511aa4e226b150ef5e
                                        
                                            GET /images/index_4x_200px/482.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Content-Length: 33082
Connection: keep-alive
Last-Modified: Wed, 23 Aug 2017 09:23:25 GMT
Etag: "c44881-813a-557684399f2c9"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:54 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7eb3db427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   33082
Md5:    59136526c61ced65b595c53ba6e37e15
Sha1:   5af8f9effab8f75f4e0cca68472346e2c345fb6b
Sha256: f1b519094eac6580589cd2dff1b89551c31adefeb3ea203bec44e2e7da883973
                                        
                                            GET /images/index_4x_200px/2203_200px.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Content-Length: 30021
Connection: keep-alive
Last-Modified: Mon, 23 Mar 2015 15:54:39 GMT
Etag: "c44f95-7545-511f6af057de8"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:54 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7da43b42bb-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   30021
Md5:    d530d240b1d724d6fc78628276e3d288
Sha1:   68eef92760cc8ef81f766c56fed77ddc79a990d9
Sha256: 6da1fe43af003c3da64e2109baace9bf1588910b54f1005dd8e23318ea3dc401
                                        
                                            GET /images/index_4x_200px/6144_wood.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/6144_wood.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7f72c342b5-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   208
Md5:    a04e7d4b9dd45ead5bf5d76d1f184177
Sha1:   4e6d35405b2f711064e99bb999f5e835bb72f5dd
Sha256: 4d266398f84e7c73a62b5acf5842e6acf1671485c50ca95e0e62ae10a8b3d643
                                        
                                            GET /images/positivessl.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/positivessl.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c816738426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   214
Md5:    a2fd6eb6586bdefbc63bf1e86a833c92
Sha1:   d649c124b45ef8a3459d157c62c66123d1405fb4
Sha256: dea3f4dedb574449bd683b46f668ef3507e84a194503120229fbdf4cbd5f63c2
                                        
                                            GET /images/index_4x_200px/platzhalter.jpg HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/index_4x_200px/platzhalter.jpg
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b3670426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   212
Md5:    6f25ea85711108c5a0e9f9223ac9ea47
Sha1:   a882660766e2bf6cc55145647177f364b70e392c
Sha256: ed51b0b18dda45ef187cc82a13b261ae67a5880369186189221b3f5552036edf
                                        
                                            GET /images/oeffnungszeiten_3.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/oeffnungszeiten_3.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c808719426d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   205
Md5:    296ae8e98dc9f04e15c330fbb340feaf
Sha1:   21e836b1a3b200dcd475b4d4a67d23f0488e2f8a
Sha256: 5af6c076a5eb223217861f06e2b4ce63949ce21b4801475ac60bc71d5614685f
                                        
                                            GET /templates/EyeCandy/backgrounds/gradient-small-reverse.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 120
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:50 GMT
Etag: "c4089d-78-4f02707acd280"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7b537a4261-OSL


--- Additional Info ---
Magic:  PNG image, 1 x 5, 8-bit/color RGBA, non-interlaced
Size:   120
Md5:    28729a73f2964f3aa7ff360294b0e485
Sha1:   b028d96f9f8f388ddcd6d98a6534ac3a929103f9
Sha256: db8ac7170429586a2c294e0d9a31d19f6788fd7881ff91189aa11d49a43038c4
                                        
                                            GET /images/rechnungskauf.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/rechnungskauf.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c81258842a9-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   196
Md5:    245d0612bda0c56399f17615e961f1db
Sha1:   8e144b97a98aa1d8dfa534b058bdb7d5719fb0c5
Sha256: 6ff12f63a57c4e0ecefc72a11a7fecd5eb53b3d169a05da16e43871edb53e01f
                                        
                                            GET /templates/EyeCandy/backgrounds/button-left.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 244
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:49 GMT
Etag: "c4088e-f4-4f027079d9040"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7b66094279-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 20, 8-bit/color RGBA, non-interlaced
Size:   244
Md5:    ca1be332b1c849c028764ad5dbda54be
Sha1:   a5d13dcf6399b71352d8b3a89b3035be045ea057
Sha256: 825af1d0fefb32b29d8f6d9ed319dfb4b0e3583a527a98ed0c3ce3cdb0f92e99
                                        
                                            GET /images/index_4x_200px/pro.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 21841
Connection: keep-alive
Last-Modified: Fri, 27 Mar 2015 15:36:50 GMT
Etag: "c44f9c-5551-51246e6a9ed60"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c81e435427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21841
Md5:    5f86d400d5c968f4d5d7025053a7ec0c
Sha1:   6ef0aef43de2fb7681277dc3b1e868b303e3e0c2
Sha256: a62cc47cabda4581159fdbf856ca65a2a7308f895e504147a69c43dd13487dc5

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /images/logos/rosenegger_logo_neu_ai_logo.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/logos/rosenegger_logo_neu_ai_logo.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c7b00b6429d-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   211
Md5:    b0873f154db4dd4d7be774de612838f8
Sha1:   b5ff09e8285865e194f06235250a3d9b0eeb2e3d
Sha256: e92b038b6db60bd835e6be7e9719738b36347687a2e09b5889dd3d2c61a16169
                                        
                                            GET /images/index_4x_200px/7400G.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 21817
Connection: keep-alive
Last-Modified: Wed, 25 Mar 2015 08:07:14 GMT
Etag: "c44f99-5539-512186317af88"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c83d4af4261-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21817
Md5:    596e2fa72411a2be9af0bc69fa1c0f4a
Sha1:   33d2121677b7a2a4628b8b1601980ff1a4720f54
Sha256: 486d45642ff24a57d8e0f7ddf32d0164c3a8a5c025a99d469dd64bef514a86eb
                                        
                                            GET /images/Unternehmen/seite1.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 10907
Connection: keep-alive
Last-Modified: Fri, 21 Aug 2015 14:39:29 GMT
Etag: "c44f92-2a9b-51dd33c4009c0"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c84a49a427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10907
Md5:    8e58a62eb31dbf3da8d170132165983d
Sha1:   081a43ea4685dbc35851aee2fcecde779789c3de
Sha256: aaf5b7ac4387634ee7dda531565a9665d6b1f7d5937c2fa7f2072cfdf2888160
                                        
                                            GET /templates/EyeCandy/backgrounds/home_neu_2.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 185
Connection: keep-alive
Last-Modified: Wed, 27 Aug 2014 13:06:47 GMT
Etag: "c408b4-b9-5019c17b28a40"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7a164e4255-OSL


--- Additional Info ---
Magic:  PNG image, 12 x 11, 8-bit/color RGBA, non-interlaced
Size:   185
Md5:    fbf88c3949d4b76198743732fe7df284
Sha1:   2c162a58313b630a69e0e13bc1c87f20a5cfb3cf
Sha256: 9727ce6bac83fe8531e47b39eb47730b79b6dfee0288ef35d6656d50063cd6d4

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /images/index_4x_200px/6144_wood.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 55305
Connection: keep-alive
Last-Modified: Tue, 24 Mar 2015 15:53:13 GMT
Etag: "c44f98-d809-5120ac7ba3ef0"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c86150d4261-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   55305
Md5:    ca9eb328e8e5e7b78a6d4d078a4d53f1
Sha1:   e6029de65907acbfc264bf878d4f1053e1fbb403
Sha256: e29a2324d440316c27b243f62776b137cf9cdcb42be139a5b6b61695dbeb6c57
                                        
                                            GET /images/content/klarna_sofort.png HTTP/1.1 
Host: mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.141.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PleskLin
Cache-Control: private, no-cache
Location: http://www.mtanfrottosa.tk/images/content/klarna_sofort.png
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 43cd3c82732542b5-OSL


--- Additional Info ---
Magic:  HTML document text
Size:   207
Md5:    eea81e7b52f5d5757bdab5c2bf96f333
Sha1:   8623d208969ccd894872a32a46e81511d2151bf0
Sha256: 59d459304f073086f89914d6c888cebb96be4b36f60a2f587d5fb0a573b999fd
                                        
                                            GET /images/index_4x_200px/6234_200px.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:55 GMT
Content-Length: 56018
Connection: keep-alive
Last-Modified: Wed, 25 Mar 2015 14:12:05 GMT
Etag: "c44f9a-dad2-5121d7be04c50"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8274d142bb-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   56018
Md5:    7640091fcc104f2fbfe8098de1a2905c
Sha1:   c39b550fddca8fe73bb9add741cfe955179455a8
Sha256: 8e9219176d071ffff2dba3c023ea96cb480fa0e3d6c96d0e869619dba60a7f8a
                                        
                                            GET /images/positivessl.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 8925
Connection: keep-alive
Last-Modified: Mon, 27 Oct 2014 15:01:38 GMT
Etag: "c44f88-22dd-50668cebab020"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c86a4e7427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8925
Md5:    15cd761e5d22852fc4dff2a6ad322fd3
Sha1:   958d7805817faa3e20b2e9f5118972094c4e4ea0
Sha256: 873763cf1af49bf08a89e8e8aa33022a8353f875c86a4ccdeaad1f2de23c9a6b
                                        
                                            GET /images/index_4x_200px/6643_200px.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 72088
Connection: keep-alive
Last-Modified: Wed, 25 Mar 2015 14:17:42 GMT
Etag: "c44f9b-11998-5121d8ff95538"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8407204279-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   72088
Md5:    89a3a6f77f72bab265a2ba4d28fcd895
Sha1:   110293a26f78b0a9e2da8f4f642f010429526d1b
Sha256: fd0a6df899d77e7f177c619aff5b8f655178d5a26d3262e88d62c223744c1f44
                                        
                                            GET /images/rechnungskauf.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 1769
Connection: keep-alive
Last-Modified: Wed, 06 Dec 2017 13:08:03 GMT
Etag: "c44952-6e9-55faba44b0a97"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8a15ab42bb-OSL


--- Additional Info ---
Magic:  PNG image, 163 x 65, 8-bit/color RGB, non-interlaced
Size:   1769
Md5:    cf029660d867385c3cd3ae605bf53583
Sha1:   d29c94e214632caf2ec763640efc892d18c7ca88
Sha256: f45e2093b4b0bd88b8b65dbaea003a9e581facff3ab1f497950f90c80d6ffb34
                                        
                                            GET /images/index_4x_200px/platzhalter.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 1407
Connection: keep-alive
Last-Modified: Mon, 23 Mar 2015 15:57:27 GMT
Etag: "c44f96-57f-511f6b908f400"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c88b0674255-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1407
Md5:    d8d717852f9c9a65e4671105688595e1
Sha1:   c915fbcd1ab44d104d07340c8b95733597406c44
Sha256: 3e4a11bcd537483b07af54eda5e5f478e3a2828f456646b40dda0e969dff8801
                                        
                                            GET /images/logos/rosenegger_logo_neu_ai_logo.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 10828
Connection: keep-alive
Last-Modified: Mon, 06 Oct 2014 15:30:29 GMT
Etag: "c43081-2a4c-504c2c3408bb8"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8a6559427f-OSL


--- Additional Info ---
Magic:  PNG image, 1250 x 100, 8-bit/color RGB, non-interlaced
Size:   10828
Md5:    062a6a7348c3934758e1187fa84c5b68
Sha1:   de3fdcf4eea9693e73374f65a0be8b1fcc4e8fb9
Sha256: 87ff4cf4c70c8f643b40531a20d69d70a35d3136fffbfc8b4b4481d18cb8d9d3
                                        
                                            GET /images/oeffnungszeiten_3.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 27974
Connection: keep-alive
Last-Modified: Fri, 06 Feb 2015 14:13:27 GMT
Etag: "c44f90-6d46-50e6c0636be08"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c89d59e4261-OSL


--- Additional Info ---
Magic:  PNG image, 358 x 278, 8-bit/color RGBA, non-interlaced
Size:   27974
Md5:    ea8a473dd9b2376a74e60b0f426e3c5e
Sha1:   8f10b2f1fa0e3b4aa2f3385982d312922e0f90e4
Sha256: b4aaebf5ed3d343a10ea4060be3099e4128d1cba2f5aa9ef25cd0c4a0171c93d
                                        
                                            GET /gm/javascript/GMCounter.js HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Sep 2015 14:32:07 GMT
Etag: W/"c40da0-23a-52093365be638"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Server: cloudflare
CF-RAY: 43cd3c8c559c427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   324
Md5:    e34e7e70d5b8f74d5fa157918137bd95
Sha1:   26123ca7a6093be38b6662bfcb6074b24bde0aaf
Sha256: 55c1ec415546d8ede26b960c796055b149b40639a90a3fa20c73851608698721
                                        
                                            GET /images/index_4x_200px/7345_200px.jpg HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 28460
Connection: keep-alive
Last-Modified: Tue, 24 Mar 2015 15:46:46 GMT
Etag: "c44f97-6f2c-5120ab0ab6220"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:55 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c7f07194285-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   28460
Md5:    c47288473057d8776e7e916d149ea45c
Sha1:   91fec774b7e8db7eedad7866f144cd4bbd2b74cf
Sha256: ae380b13ae5136246d8aec6f48c933bd9d4cd9ad977baca6a5235a9a4dcdecfa
                                        
                                            GET /templates/EyeCandy/img/icons/icon-grey-arrowdown.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:56 GMT
Content-Length: 188
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:41 GMT
Etag: "c40930-bc-4f02707237e40"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8d56184261-OSL


--- Additional Info ---
Magic:  PNG image, 9 x 5, 8-bit/color RGBA, non-interlaced
Size:   188
Md5:    365358bbaae0506599c74d492e4b1783
Sha1:   f43f46efb60a2c4d9b04d9e8ad40bdfab73e25cb
Sha256: f7b291bde20576bf92f812909a546532b162b220995dd886592cb5a90ab42130
                                        
                                            GET /templates/EyeCandy/backgrounds/gradients/gradient.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mtanfrottosa.tk/templates/EyeCandy/gm_dynamic.css.php?current_template=EyeCandy&http_caching=true&gzip=true&gzip_level=9&ob_gzhandler=false
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:57 GMT
Content-Length: 179
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:50 GMT
Etag: "c40897-b3-4f02707acd280"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:56 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8e35c9427f-OSL


--- Additional Info ---
Magic:  PNG image, 1 x 35, 8-bit/color RGBA, non-interlaced
Size:   179
Md5:    c0e615a8b9dedf0940ba682217cec6b9
Sha1:   47eae0e5fdfa4614447cf58f067cc40bb7d16add
Sha256: 1f025dc8990407d34020ae665b8c52d8faeac5768ec2c7cd876ededfe6c96843

Alerts:
  IDS:
    - ET POLICY HTTP Request to a *.tk domain
                                        
                                            GET /images/content/klarna_sofort.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:57 GMT
Content-Length: 5414
Connection: keep-alive
Last-Modified: Wed, 06 Dec 2017 13:18:29 GMT
Etag: "c44bf8-1526-55fabc98dc4a7"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:57 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8b604a4279-OSL


--- Additional Info ---
Magic:  PNG image, 112 x 75, 8-bit/color RGBA, non-interlaced
Size:   5414
Md5:    74a71624abf325ce88f2af162cf71a0a
Sha1:   0b644c95ae347fe18e0df8d01bb4b769a9fbb026
Sha256: 58d7e432b9b13e54bc33316e9d8c50d5cd256dd2b99812f4d00eae70ed68264a
                                        
                                            GET /templates/EyeCandy/img/icons/icon-grey-basket-big.png HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         104.27.140.64
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 19 Jul 2018 12:36:57 GMT
Content-Length: 729
Connection: keep-alive
Last-Modified: Fri, 17 Jan 2014 09:18:40 GMT
Etag: "c40917-2d9-4f02707143c00"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 19 Jul 2018 16:36:57 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 43cd3c8be5e942bb-OSL


--- Additional Info ---
Magic:  PNG image, 30 x 24, 8-bit/color RGBA, non-interlaced
Size:   729
Md5:    ed793b020b01052bd105427476e15358
Sha1:   47cb8e5073ed4789d7889cf6a984d9d2ac2ce4f2
Sha256: 903fc3ad6727af07a998790dc6eeba97ef10b34b7808982b2c1c36717f2a5abe
                                        
                                            GET /gm_javascript.js.php?XTCsid=dgi0354e2rtijtjts62mi8mca6&XTCsid_name=XTCsid&page=Index&current_template=EyeCandy HTTP/1.1 
Host: www.mtanfrottosa.tk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://mtanfrottosa.tk/
Cookie: __cfduid=d568daf1d84c0645666d42e7f4313e49d1532003809

                                         
                                         0.0.0.0
                                        


--- Additional Info ---