Overview

URL armo.sk/system/logs/87h754.exe
IP37.9.175.22
ASNAS51013 Websupport s.r.o.
Location Slovakia
Report completed2019-05-15 12:32:23 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-05-15 12:31:35 CEST 1 Client IP  37.9.175.22 ET CURRENT_EVENTS Possible Malicious Macro DL BIN May 2016 (No UA)


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-05-15 2 armo.sk/system/logs/87h754.exe Malware
2019-05-15 2 armo.sk/system/logs/87h754.exe Malware
2019-05-15 2 armo.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.1.1 Malware
2019-05-15 2 armo.sk/wp-content/plugins/woocommerce-lightbox/assets/css/main.css?ver=1.0 Malware
2019-05-15 2 armo.sk/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ve (...) Malware
2019-05-15 2 armo.sk/wp-content/plugins/woocommerce-lightbox/assets/css/jquery.fancybox. (...) Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/style.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/css/base.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/css/shortcodes.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/assets/animations/animations.min.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.cs (...) Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/css/layout.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/css/responsive.css?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/jquery.js?ver=1.12.4 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 Malware
2019-05-15 2 armo.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 Malware
2019-05-15 2 armo.sk/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.mi (...) Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/js/parallax/translate3d.js?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/assets/animations/animations.min.js?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=13.2 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 Malware
2019-05-15 2 armo.sk/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 Malware
2019-05-15 2 armo.sk/wp-content/themes/betheme/fonts/mfn-icons.woff?3416171 Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 37.9.175.22

Date UQ / IDS / BL URL IP
2019-05-12 16:51:53 +0200
0 - 0 - 100 realistickeportrety.sk/Inv/87547218524040/sca (...) 37.9.175.22
2019-03-21 22:10:31 +0100
0 - 0 - 4 ekooluxpersonals.com/ 37.9.175.22
2019-03-02 11:55:59 +0100
0 - 0 - 111 realistickeportrety.sk/at_t/1fzshinhym_vtqazn (...) 37.9.175.22
2019-03-02 10:04:08 +0100
0 - 0 - 110 www.realistickeportrety.sk/at_t/1fzshinhym_vt (...) 37.9.175.22
2019-02-18 07:59:25 +0100
0 - 0 - 3 klbecko.sk/interierove-dvere-namieru/41-posuv (...) 37.9.175.22
2019-02-09 01:07:53 +0100
0 - 0 - 120 realistickeportrety.sk/AT_T/1FzshInhYM_VTQAzn (...) 37.9.175.22
2019-02-09 01:07:47 +0100
0 - 0 - 120 realistickeportrety.sk/at_t/1fzshinhym_vtqazn (...) 37.9.175.22
2019-02-09 00:56:05 +0100
0 - 0 - 118 www.realistickeportrety.sk/at_t/1fzshinhym_vt (...) 37.9.175.22
2019-02-09 00:56:02 +0100
0 - 0 - 118 www.realistickeportrety.sk/AT_T/1FzshInhYM_VT (...) 37.9.175.22
2019-02-08 23:48:43 +0100
0 - 0 - 34 armo.sk/ 37.9.175.22

Last 10 reports on ASN: AS51013 Websupport s.r.o.

Date UQ / IDS / BL URL IP
2019-05-22 01:19:00 +0200
0 - 0 - 5 mp3hudba.sk/stahuj-534-depeche_mode_ft_rex_th (...) 37.9.175.14
2019-05-21 21:06:36 +0200
0 - 0 - 1 zterm.sk/wp-includes/Requests/Utility/dogovor.rar 37.9.175.15
2019-05-21 20:37:06 +0200
0 - 0 - 1 beflaire.eazy.sk/ 37.9.175.13
2019-05-21 18:42:43 +0200
0 - 0 - 11 egyutthato.eu/doc/En_us/Invoice-for-c/y-09/14/2018 37.9.175.23
2019-05-21 11:10:53 +0200
0 - 0 - 10 upsvar-zv.sk/docs/ziadost_o_rodicovsky_prispe (...) 37.9.175.21
2019-05-21 09:22:11 +0200
0 - 0 - 11 egyutthato.eu/doc/En_us/Invoice-for-c/y-09/14/2018 37.9.175.23
2019-05-21 07:47:56 +0200
0 - 1 - 0 zsdobpd.eu/d6C1jm0ErO/ee.exe 37.9.175.17
2019-05-21 05:14:06 +0200
0 - 0 - 2 zaren.sk/yJM0fhv5cUljNG/1861683143115818.zip 37.9.175.8
2019-05-20 09:59:13 +0200
0 - 0 - 0 www.crossfitproton.sk 37.9.175.9
2019-05-20 09:52:22 +0200
0 - 0 - 0 https://www.mistores.sk/ 37.9.175.9

Last 4 reports on domain: armo.sk

Date UQ / IDS / BL URL IP
2019-02-08 23:48:43 +0100
0 - 0 - 34 armo.sk/ 37.9.175.22
2019-02-05 06:15:26 +0100
0 - 0 - 19 armo.sk/ 37.9.175.22
2018-12-06 16:54:46 +0100
0 - 0 - 19 armo.sk/system/logs/87h754.exe 37.9.175.22
2018-10-01 17:04:55 +0200
0 - 1 - 19 armo.sk/system/logs/87h754.exe 37.9.175.22


JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (62)


Request Response
                                        
                                            GET /system/logs/87h754.exe HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         37.9.175.22
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://armo.sk/system/logs/87h754.exe


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET CURRENT_EVENTS Possible Malicious Macro DL BIN May 2016 (No UA)
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:35 GMT
Accept-Ranges: bytes
X-HW: 1557916295.cds003.sk1.h2,1557916295.cds057.sk1.sc,1557916295.cds057.sk1.p
Server: Apache
Etag: 5BD34D909036C3B56F824295BC53C8BAD05ECA90
Cache-Control: max-age=528957,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp10
Last-Modified: Tue, 14 May 2019 13:37:33 GMT
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9d55e70bf0dc96b7e7ad99959629ad10
Sha1:   5bd34d909036c3b56f824295bc53c8bad05eca90
Sha256: 1148375d52acc524e5a51d62240ad7e678a8424d5652b97a4f3e08ecc290eb68
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:35 GMT
Accept-Ranges: bytes
Last-Modified: Wed, 08 May 2019 15:20:45 GMT
Server: Apache
Etag: 9CB51D4194B505FD8A7BA82C030C9DF884B64025
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1557916295.cds003.sk1.h2,1557916295.cds041.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    8da8a48f5d638aaf0391052318a91b44
Sha1:   9cb51d4194b505fd8a7ba82c030c9df884b64025
Sha256: f8926fac6d220dcff3cd37f691077df66d753c731eb75ac5e45f5a6a71ba31dc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:35 GMT
Accept-Ranges: bytes
Last-Modified: Wed, 08 May 2019 15:20:45 GMT
Server: Apache
Etag: 5DCF2F94BEE0ADAC4F30DD9645479B437F17BA18
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp10
X-HW: 1557916295.cds050.sk1.h2,1557916295.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c35fd6d0431611cf39d1ed868550f832
Sha1:   5dcf2f94bee0adac4f30dd9645479b437f17ba18
Sha256: 8e22f8eb3f95dbcd035daddf5786bcd944bcf76e36faf213a7aceeace63b0242
                                        
                                            GET /system/logs/87h754.exe HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         37.9.175.22
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://armo.sk/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13100
Md5:    d7ae53e7e0138c55c489b5df3161e5ee
Sha1:   bb85f9abef81a64561c445ed2637bb075ce4cc50
Sha256: f8d7b66d26d0d01e327e98da0406dfec8b57c0c85f15d73c7d0a1647ffad5784

Alerts:
  Blacklists:
    - fortinet: Malware
  IDS:
    - ET CURRENT_EVENTS Possible Malicious Macro DL BIN May 2016 (No UA)
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:37 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6a11d6f8471bdceaec3e04f8f2b80cc3
Sha1:   85fea5fecd6b9e0b48095b1cec2b874c029e2298
Sha256: bd03c50e21b0761fee055e37d6bbc5ef9bdaced396fca80173f64326bd5b5d35
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:37 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Wed, 15 May 2019 09:27:26 GMT
Expires: Wed, 15 May 2019 11:27:26 GMT
Last-Modified: Thu, 02 May 2019 01:33:03 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17779
Cache-Control: public, max-age=7200
Age: 3851
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17779
Md5:    348fbdd6c0fd83acfd390fa9cc127596
Sha1:   252099e50f60c46d3a16264edc93007ef333a660
Sha256: 5874a897424027f25efdc7142d4d8a4341d9a9f6362ac79bead10db6356dae2b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:37 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ca9be595119fed179e07ae7182372221
Sha1:   870058f6dfefd37365ad6217f79db56cbb3761ce
Sha256: 033786b88d254ed57162397e96fe215ff1774583903c7f114f65882705ae191e
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 26 Feb 2019 18:39:22 GMT
Etag: W/"2f02-582d060318c00"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4388
Md5:    9485790a43704a2b24f7937f9bb60dd4
Sha1:   a8d3b551c2fd8fb6e02f80d4d7d8a5d240667202
Sha256: 2f5a5c36b845b3e8c4583884b8e487f6f62c2347df7d1960c4cb463d12df788d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /r/collect?v=1&_v=j75&a=543076864&t=pageview&_s=1&dl=https%3A%2F%2Farmo.sk%2Fsystem%2Flogs%2F87h754.exe&ul=en-us&de=UTF-8&dt=Str%C3%A1nka%20nebola%20n%C3%A1jden%C3%A1%20-%20ARMO-SK%20s.r.o.%20-%20%C5%A0IJACIE%20STROJE&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=2079390334&gjid=658056881&cid=421964985.1557916298&tid=UA-8433874-1&_gid=392734521.1557916298&_r=1&z=757986215 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         216.58.211.14
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8433874-1&cid=421964985.1557916298&jid=2079390334&_gid=392734521.1557916298&gjid=658056881&_v=j75&z=757986215
Access-Control-Allow-Origin: *
Date: Wed, 15 May 2019 10:31:37 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 415
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   415
Md5:    1172ef8f20f849d57f30498b27d0a6dd
Sha1:   7435c24bf94f0b4a143a54c8fbb6333450a71885
Sha256: d908f16e5481d37a338eb9f82bf7c813b1fc0efb4543b6b740d48923688a974f
                                        
                                            GET /css?family=Alegreya+Sans&ver=5.1.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Wed, 15 May 2019 10:31:37 GMT
Date: Wed, 15 May 2019 10:31:37 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   210
Md5:    2d0591cb9d5698199707af5eacab1824
Sha1:   1bdf5f799a4506606076b4313bee7cf510c68126
Sha256: ee4c9db2b04085017d97b468b0c8f5b0c08a6dddbfaa8bc94341f8e783aac680
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 26 Feb 2019 18:39:22 GMT
Etag: W/"629a-582d060310f01"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4258
Md5:    5e71e1a3c3df9c07f16076e1372016b8
Sha1:   6d054f2291f0999a1fc673bec8fdadf0cbbd9458
Sha256: fc12dab9d762325806c12d1fb3c6c4f839ae3be5dba4554acc338b6a275f219b
                                        
                                            GET /wp-content/plugins/woocommerce-lightbox/assets/css/main.css?ver=1.0 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 01 Apr 2019 17:32:54 GMT
Etag: W/"2a2c-5857b691b5c75"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2022
Md5:    0bc4ae68beffec2ce0dc6731da411dfc
Sha1:   0004c473c02b047b762e4f1c6201265f9bb0855f
Sha256: f3124d6d84bec6e8e1572c307aa86767157a79f69aa27e5992c5f8996b4c7f36

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.5.7 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Mar 2019 16:38:57 GMT
Etag: W/"409e-5851612f484da"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2155
Md5:    f4e447a79fa7839466aa8b4f52d576fc
Sha1:   aeeed4d61e1d6fa0e1351ca5f07ac6edd9b3aafa
Sha256: 9af2dc73b608421a4a1c4d1c29ea7b354ee2e7e3acf9c24c849b6931177044b9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Dec 2018 17:52:41 GMT
Etag: W/"695-57d77cc0b9d26"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   651
Md5:    f026e73e8b072cc3ae1491702b9c491a
Sha1:   5cf262adbd7a8a0d067230081688c0f8fe6c36f8
Sha256: c2340e9fff602440a6a9daadf0e90fc5eb265bd6fbd495d77d7891a303575b29
                                        
                                            GET /wp-content/plugins/woocommerce-lightbox/assets/css/jquery.fancybox.min.css?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 01 Apr 2019 17:32:54 GMT
Etag: W/"28b8-5857b691b5c75"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2439
Md5:    a4f4eacd10681e19454d9301379254e1
Sha1:   78efe167c0496743a5b0784e0b37216cbe1cfbe3
Sha256: 5f6f46f0a164d944a6c29554aea97027e8056c996ca0bd154c30b1bfef6fe929

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce-lightbox/assets/css/magnific-popup.css?ver=1.0 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 01 Apr 2019 17:32:54 GMT
Etag: W/"1e6d-5857b691b5c75"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1950
Md5:    940d74755e5536d09c7fa9eb66372652
Sha1:   d1d8b8238f080fdedd4015c7da81675c62a802c6
Sha256: 69a629f67d38a1a75391be1ba82c5756821d6bf7aa135e800ec88c679d716621
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:37 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6edb1e6bde541c2cc938d53a5b05df77
Sha1:   53b841636c9a14c8f6380979ab5e9d16b836b6d1
Sha256: bf156c56db9f9a4f40f7b9480585c668102f6e24507617997832831cd8e0f722
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.5.7 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Mar 2019 16:38:57 GMT
Etag: W/"f3b8-5851612f455fa"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8777
Md5:    eaf46e908e84b14dac232730b7bcfab1
Sha1:   9d935c1f68a6ebf0b13a21b285002fcdf42931f4
Sha256: 11c7b35946244ab27e6103a0dd11f6a908082ad96a6409a0479c85e35b12322e
                                        
                                            GET /wp-content/plugins/wp-store-locator/css/styles.min.css?ver=2.2.22 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Mar 2019 16:39:29 GMT
Etag: W/"3a83-5851614e5a615"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3368
Md5:    6e976e38293c78f3fecbe2040d309762
Sha1:   772be42cb3f7a76c8fd3501ee447a5ceeed28a0d
Sha256: 5fffc887bffdbe8eba0c2aa723e85adabeb34207939ea8cc3722eb21d39bb795
                                        
                                            GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.5.7 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Mar 2019 16:38:57 GMT
Etag: W/"1a66-5851612f455fa"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1055
Md5:    bac3c679da4930209be92b338cb74b7f
Sha1:   1a18633b3aecdcb7146475a1f6a90c58058f9e9b
Sha256: b5b63cee0120e4cf9a183bab0905af9d4fa8712d4afef4d0b7d7c0f914ae26b3
                                        
                                            GET /wp-content/themes/betheme/style.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:40:40 GMT
Etag: W/"11a-53709513314aa"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   197
Md5:    0f2a4667577aa3a8a6e5d2aaab128604
Sha1:   94728fa7dd1e273b9529c33be6848ea00e014e5c
Sha256: 0d20c5925123d502f784b5031835024571f3d89bb9531b364bc5e8fb1a2afb0a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/css/base.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:42:49 GMT
Etag: W/"bfa8-5370958eb5cdc"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10354
Md5:    a579181705363094a7d7c12bc7cc1ad3
Sha1:   27e2f8970d51a9eaa00f541db1926d50a4461608
Sha256: cf2cf74efb2ac0cbdc0483220d94f258684494689cfd829681547ae6bafe3804

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/css/shortcodes.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:42:50 GMT
Etag: W/"1ea8c-5370958f17429"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20159
Md5:    c270c231e48f577ff969374caf6c764e
Sha1:   b6dbc8cae3386b8e9abf2287e53c5b89ca8203af
Sha256: 8fdd20a5d10b9b7e842f7e30c82cbb5c6ee29c42a88084bfe888e69c420357a6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:50:19 GMT
Etag: W/"e48c-5370973c3c217"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5418
Md5:    047b182d86f7800f775fc5e0e6c85d1f
Sha1:   cf5f3e02837f526e2a907987d7cdefee8d078ab4
Sha256: 50722c5b1c407a8443b02aff3a56c6e6f4c3326e12824548afcf644ce89fbc26

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:50:20 GMT
Etag: W/"4c9b-5370973cf33cd"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3473
Md5:    e8960a61898158480981ea4efab8fcb3
Sha1:   f762c30e07d48b299ba2098b8c556f96515f9137
Sha256: ffc68a85b2957da61e569280deac40cb852ef83f9c75527b92a2d4df39f75015

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/assets/prettyPhoto/prettyPhoto.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:50:20 GMT
Etag: W/"47d4-5370973cd8776"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2724
Md5:    09773704c9224b9466fa2bb3d62ad9a5
Sha1:   81c998311e8e3ead5880e869d21f7536b18c43d9
Sha256: 8e2b5d9f26f7da6f53565b208f4acf21268d9eaabc65e26aa81449253cf63084
                                        
                                            GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:52:47 GMT
Etag: W/"27a1-537097c88aa88"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2146
Md5:    57af2bb1e4db675d0af96ff80b2c4c1c
Sha1:   cef33b72fbcece63f3f42741d94758642e153aaf
Sha256: e28401aa4628d1ce9785ae46ae920f25d0cd8d3e50874c5bffc11d403fe807d0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/css/layout.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:42:49 GMT
Etag: W/"1a106-5370958eb9cac"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18178
Md5:    1373a65e80788a1de29e263aceb93f21
Sha1:   c9f24306bd096f270882e5c0471574d729b1fb59
Sha256: 4cc3f5d02c856625d863a9322fe9a0269838ad8035219593c658b44847f13a94

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/css/responsive.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:42:49 GMT
Etag: W/"e431-5370958ee98fb"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   10195
Md5:    9b5f186763b6ed936fc138918ff2560b
Sha1:   a8d36186836600690b819ea8f744eb90db0b48af
Sha256: 221d3cdafda92ccb6cdcb9b2775594fbb77bb00da74cba57ecb9d041898099a6

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/css/woocommerce.css?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:42:50 GMT
Etag: W/"8771-5370958f1cd1d"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5925
Md5:    39cee2f1cc8601890518bb86185c8766
Sha1:   c0647fca02b6c452130fedbe20353789863c38f7
Sha256: c7617618d87b2caea8e890e1c3b324686384687ece0eeffa939545a38e19c81c
                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8433874-1&cid=421964985.1557916298&jid=2079390334&_gid=392734521.1557916298&gjid=658056881&_v=j75&z=757986215 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         173.194.222.155
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-8433874-1&cid=421964985.1557916298&jid=2079390334&_v=j75&z=757986215
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Wed, 15 May 2019 10:31:38 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Server: Golfe2
Content-Length: 364
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   364
Md5:    ede9efa01cdf462fbc3031b3294467cd
Sha1:   2bfed0e5f18e714687cfc8abfafb7f8bb6e05bed
Sha256: 68aeb4f6bc17a5b2fa1d3570ccb952d9e3821fe7cb2521f2dd758171af27b9c0
                                        
                                            GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.9.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 12 Feb 2019 16:56:26 GMT
Etag: W/"5cf-581b54e49a78a"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   335
Md5:    c95478c77513b8220c7e92d48296fdea
Sha1:   2bc1df3797b77022d9ed7ab2e5c91d8b35e7a933
Sha256: 81449fb658de0ff4f702fb7129861dd9333bc6f3d4e3b79d1e4e1beba52d1d5f
                                        
                                            GET /wp-content/plugins/woocommerce-lightbox/assets/js/jquery.magnific-popup.min.js?ver=1.0 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 01 Apr 2019 17:32:54 GMT
Etag: W/"5297-5857b691b4cd5"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7687
Md5:    65c47d1ebb4407f2de1e06c1c5a78611
Sha1:   09550b46c5c3687fcc661a781188ca325c6e37f6
Sha256: ef98dc596358a97005d604dd239f2e2aa94f7869b35ba1d29c7eb3aca775319b
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Jul 2016 10:58:59 GMT
Etag: W/"2748-5370992c05c8e"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4014
Md5:    a6c81e2f02bd04160d2de88c4e8f3559
Sha1:   e3f3c91427d785820ca97dabe738f01faf041f36
Sha256: b734d83af5da0eb627e04d3e62ce652b9eb7de19667a1b91da6b93f0ea5d7ffe

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 26 Feb 2019 18:39:22 GMT
Etag: W/"17b9f-582d06031bae0"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   33799
Md5:    bda759f4f132ca50e9f24fb6b607c124
Sha1:   16057daa4610656d440ebe058a9892151db85402
Sha256: 1644266f4c6a63da570168a295359d8a5c6628b9d381e8b4b1423e6e913de995

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:40 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d8d3e50c4ea6262b89fa604892812464
Sha1:   5700e601c4107e37a196ff2badb60d9614c41549
Sha256: 0101c923e3c49378aba85f932a44fd546bd9c29e3259a3eb691d37b31d5fa543
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:31:56 GMT
Accept-Ranges: bytes
Last-Modified: Fri, 10 May 2019 19:51:54 GMT
Server: Apache
Etag: 1F49F2A52C5D8CB2A12DE0024E01F725FE2FFB5B
Cache-Control: max-age=301665,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1557916316.cds039.sk1.h2,1557916316.cds026.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2a1f8969abc526b61a3988f4f8a2e141
Sha1:   1f49f2a52c5d8cb2a12de0024e01f725fe2ffb5b
Sha256: 5ac7ad51b0410ffe1cb9a52e2276d5a9d9892ea69e3ff7daa833fb8ea029c543
                                        
                                            GET /s/alegreyasans/v9/5aUz9_-1phKLFgshYDvh6Vwt7Vptuw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Alegreya+Sans&ver=5.1.1
Origin: https://armo.sk

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2018/08/logo-ARMO-SK-velky-kruh.jpg HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         37.9.175.22
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: openresty
Date: Wed, 15 May 2019 10:31:38 GMT
Content-Length: 721069
Connection: keep-alive
Last-Modified: Wed, 22 Aug 2018 15:44:18 GMT
Etag: "b00ad-5740803f977a5"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.5.7 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/js/plugins.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-8433874-1&cid=421964985.1557916298&jid=2079390334&_v=j75&z=757986215 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/js/menu.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-content/themes/betheme/js/scripts.js?ver=13.2 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.1.1 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gtm.js?id=GTM-W3XMHM HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/betheme/fonts/mfn-icons.woff?3416171 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/wp-content/themes/betheme/css/base.css?ver=13.2
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /pagead/conversion.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 HTTP/1.1 
Host: armo.sk
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe
Cookie: _ga=GA1.2.421964985.1557916298; _gid=GA1.2.392734521.1557916298; _gat=1

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /58187c25c7829d0cd36f19ee/default HTTP/1.1 
Host: embed.tawk.to
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://armo.sk/system/logs/87h754.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 15 May 2019 10:32:07 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2dc57dc7bc8362d4b9ac4f82bf49d8a4
Sha1:   8549359f615b56448ac9b4a97c926b81b6e30d93
Sha256: 6bac339f183e562b3d6bcbfa4713fdd89f53adf110bf11ccfdeedc561f62736f