Report - poistenie-deti.sk/

Report Overview

Submitted URL
poistenie-deti.sk/
IP
37.9.175.132
ASN
#51013 WebSupport s.r.o.
Submitted
2023-02-02 08:25:23
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
58

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.7 kB	3.5 kB	216.58.211.3
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	916 B	7.6 kB	142.250.74.106
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	973 B	75 kB	216.58.207.227
track.violetlovelines.com	unknown	2022-12-03T14:28:32Z	2023-03-13T02:50:23Z	1.7 kB	2.3 kB	159.69.234.10
poistenie-deti.sk	unknown	2020-12-10T22:49:49Z	2023-03-10T09:24:58Z	349 B	332 B	37.9.175.132
www.poistenie-deti.sk	unknown	2022-06-24T13:26:37Z	2023-02-05T09:25:04Z	15 kB	205 kB	37.9.175.132
collect.greengoplatform.com	unknown	2022-06-17T18:05:00Z	2023-03-12T05:07:32Z	384 B	1.1 kB	194.135.30.42
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	541 B	4.6 kB	34.120.237.76
walk.classicpartnerships.com	unknown	2022-03-13T11:45:10Z	2023-03-06T22:38:41Z	378 B	1.1 kB	194.135.30.42
simple.cofounderspecials.com	unknown	2022-08-18T08:57:49Z	2023-03-11T10:18:47Z	386 B	1.1 kB	194.135.30.42
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	1.7 kB	4.4 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.186.188.230

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	poistenie-deti.sk/	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/google-analytics-for-wordpress/assets/css/frontend.min.css?ver=7.14.0	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/css/responsive.css?ver=21.9.7	Malware
2023-02-02	medium	walk.classicpartnerships.com/noise.js	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	Malware
2023-02-02	medium	www.poistenie-deti.sk/	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/js/menu.js?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/js/wp-embed.min.js?ver=5.6.10	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/style.css?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/js/scripts.js?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/js/plugins.js?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/css/base.css?ver=21.9.7	Malware
2023-02-02	medium	www.poistenie-deti.sk/wp-content/themes/betheme/css/shortcodes.css?ver=21.9.7	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	violetlovelines.com	Sinkholed
2023-02-02	medium	violetlovelines.com	Sinkholed
2023-02-02	medium	violetlovelines.com	Sinkholed

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.poistenie-deti.sk/	2.1 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/ IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash b63de29eefb6462fe7524deb8d22e5ce d32df7973b0356596498ad8f4d88337bad1badb6 fa3a64838d8895a18f3c8163355109bab569af337e18f64e098c7a28442f4f58 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/js/menu.js?ver=21.9.7	6.2 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/js/menu.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash c67910a7ac909ed70dd1747d4aa4b25b 94c1c0f49e66dd17eaa342d772a4dc179eebefd5 dd9deffe1780852d74bef3a6d2e93204d7e2074e399944a154ca8e71b4c27f5d Loading...

	www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2	18 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash d5011cf8f9717cb428d795bc50ca3eef 926ef95f2969ef04fcd86f5675309b96c6beac04 d795487ad77312c39d335df2c4d28344d0b6c8d136db2908f76ac842d9f17637 Loading...

	www.poistenie-deti.sk/wp-includes/js/wp-embed.min.js?ver=5.6.10	5.2 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/wp-embed.min.js?ver=5.6.10 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 4b9542b3eda46e2e496e3c717b2870df 63bde2b2bc2f03ffa6bf8b233f7017fa594ac9ef 8406f79c98ceb027b1d726bc4cb529dfe9668e0f78684cff9681b4ed0cfacb95 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/js/plugins.js?ver=21.9.7	208 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/js/plugins.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash b69dfaa17855cfd7c76d3fc1524298ff b4b95c200fe366a2727f5e2ea41f796e160faec6 8e74ffbbe033101f5fa44cf340ce47ca46f0587fefddde2d3ee18c27d083b3b4 Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/jquery.min.js?ver=3.5.1	99 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash a200a7e69a594e0ce70d6bf9d75070ea 3ca1d7be809b3ebfd1403bbe5cf4e8ec7d3ab81e 3af98d56de4d0f3d3a720a68a97a348bc2ab2cedac79b77901bbbdfc2fa2413f Loading...

	www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3	338 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 5bff572dca72146f2a2d17851674833b 043df20255570a0dc9aa2b3e567f3648c25214fc 9595079cab8e38783fa103455c3b02e8fb0e89ceb2132e46e83b6fcdeb6fa435 Loading...

	www.poistenie-deti.sk/	2.3 kB	2023-03-07	2024-05-10
Pretty URL www.poistenie-deti.sk/ IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-05-10 17:56:45 Times Seen4829 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	walk.classicpartnerships.com/noise.js	2.0 kB	2023-03-12	2023-03-13
Pretty URL walk.classicpartnerships.com/noise.js IP 194.135.30.42 ASN #2856 British Telecommunications PLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:52:47 Last Seen2023-03-13 14:52:10 Times Seen1 Hash 4dafd6ae50ef2e54c392e186c549b925 7ced8bfb18a3602f500e4d27ef6d92594b19c53e ede1db23f7f0ccf0ef1c53cffc94fe5889da7b31a1b6feffe112491a1cd898b2 Loading...

	track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7	8 B	2023-03-13	2023-03-13
Pretty URL track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 IP 159.69.234.10 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:56:51 Last Seen2023-03-13 14:52:10 Times Seen1 Hash 91fa0ad955bf0c9dd5d8527be99d70f7 140e810a6171fa141392e150797967e941598d89 5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.9.7	5.6 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash 4841ad1d1d2c9a0d5cc3270cf90210f9 01981bb69e3a4e35589a264111e8277e84cca5b8 678627630ae4ace2047cd373dee72e56fe0e3490bc076e7e7f453521fd2a1606 Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	18 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 9e5fba8c50b58002085bb61aa62f81ac 8cb83016a9f943bb7e46630042f77dc344220ad3 dccb558621e12733e602adffe6b8731050afdee98df2dd143aa4b6b492cd1887 Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1	7.1 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 54f530382f86d1f66bdfc33e5d280524 3ec8646c630cbc9880786e13721f1b4049e708a5 bba53da0024c6a32158949d76ae6f65f48292b8bf03c673111a4e5a1f86e0145 Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1	12 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 005ec21ce6bd7135f4a0ea7c7e7d4785 be47aa25af233fd7c744c4c87e478e7007d69f9f 86ddc46248d06d4557809730ac470dbd4bfbfd1ac4d2c1cb87fb7c3133ffaa16 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.9.7	7.7 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 1c7cfb26f6e868e9efd40f847165cece 466beb021f7334d9c00fc2270965bb1710fbc140 953e1c699ad74a957d0e174796af5b3f0bdf8e93ec8f2db29f13f42c50d1167a Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1	16 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 19c1f1b3c96c68fe3577052dc9511668 cf8d79b7e5a84ef0b0cf7aff3dbf36535bbaf1af d4a0efcbb6558620aee103fd6fd8edb2d182662625e7c6c29092844e2b70cc7a Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1	28 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash fd1277529e52dcf97bf7bc7c500f0f91 c10094c1e3de3b51b12003db0d9b2d83e38f6eec 3928d239ef6cce4dda2a17780df9b7a2225ddd353fb7ec19a4bd91e1e5fcbe65 Loading...

	www.poistenie-deti.sk/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1	24 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash babd021b16e4c23f138f644709d4f0ad 32982aaa36511d93ed2cc06c246e337ace899126 5b6ba8a0188ef4d285e236737d3045977d55caaf4269cc1569ec0d9678b40761 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/js/scripts.js?ver=21.9.7	74 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/js/scripts.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash 6974e79931d26832855d4a390d9a202e 444b3b2725ea94084366c26aa1763a7c4e603231 2c09f8cfabb47fa86e6924a60f35672690f79f3f5c72caa14fbd06c9a0c962a7 Loading...

	www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.9.7	56 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.9.7 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash a38d48a8e5d1d205020efa8c60352d6b 9e220e8d927ae4a77a337ccefdc76d9aeac6d2f6 f79dc930977388d471db70140a1b57cab4f449799ed167ac80267186062a872f Loading...

	www.poistenie-deti.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10	23 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash d925d4c29b1787463e86de7f3e5ac398 0be7629d65d8d5e945c2f550bb4dd89b8f3132cc bfde8001524f3f4f0f532e2ca66af16a036a0b5debc6388833197b515e528975 Loading...

	www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3	125 kB	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:49 Times Seen1 Hash b38cb24c4d8955e3b5fb7a3505a249b4 fcdb0d1cce8c06340341d38f30984605f639d372 1244e7014208a5ce6c9dbcee65c74342b55bba1fd69ed1cc75da636e855fec43 Loading...

	www.poistenie-deti.sk/	174 B	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/ IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash 639755f10250b9f1d7878ca588edf600 120c773a44d2fbbb0d3c1f3249645e2f77548746 3b5f34100abc4c2c819937be09407c1d6e0e8c6a8050fe7e6e5e468329cd84c5 Loading...

	www.poistenie-deti.sk/	346 B	2023-03-08	2023-03-13
Pretty URL www.poistenie-deti.sk/ IP 37.9.175.132 ASN #51013 WebSupport s.r.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:12:11 Last Seen2023-03-13 17:27:50 Times Seen1 Hash e320596c9269a4c8f02fac2e51b0508c 0373949d7a71b56879b576f87d734ebfa4e68cb3 9d1cad4934829b7e6dae9d5515893246d265343ebcfd7686e5ba70f5248d9832 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 6b81c5d84d8d7716ef76482b1ad25f4f	655 B	2023-03-07	2024-01-05
Pretty Observations First Seen2023-03-07 12:21:55 Last Seen2024-01-05 08:39:35 Times Seen21 Hash 6b81c5d84d8d7716ef76482b1ad25f4f a3ec17adfa451e528d1c04c13654bed1042a6403 8532e915d2cfe6d3a9804fa0b3a9eff8e366c2bed9011fbae4eee332ce7a6248 Loading...

	#2 Eval - 524814d8dfc950cb9f9c3fcbf4aca45f	672 B	2023-03-07	2024-01-02
Pretty Observations First Seen2023-03-07 12:12:25 Last Seen2024-01-02 16:28:09 Times Seen29 Hash 524814d8dfc950cb9f9c3fcbf4aca45f 209f5ab35a3617e0fdff806c82d557892992ab88 e45cb9e1da00a8b49fe257005cdcc33617c25843f134808672f744ca1a325e50 Loading...

HTTP Transactions (60)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5829
Expires: Thu, 02 Feb 2023 10:02:22 GMT
Date: Thu, 02 Feb 2023 08:25:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9214
Expires: Thu, 02 Feb 2023 10:58:47 GMT
Date: Thu, 02 Feb 2023 08:25:13 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 07:43:29 GMT
content-type: application/json
age: 2504
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13379
Expires: Thu, 02 Feb 2023 12:08:12 GMT
Date: Thu, 02 Feb 2023 08:25:13 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: /AsFDNZUcup8nHExrMNbOmHatqQ+ixDhM/hslNZR55EaoOgPiXmsV0qU+QbkKUIbIvO/68vhXngUlIqTeEp6Fg==
x-amz-request-id: N5JKQVM8SB6DK633
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 07:51:53 GMT
age: 2000
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:25:13 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 07:41:43 GMT
age: 2610
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7647
Expires: Thu, 02 Feb 2023 10:32:40 GMT
Date: Thu, 02 Feb 2023 08:25:13 GMT
Connection: keep-alive

push.services.mozilla.com/

54.186.188.230

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.188.230:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fgnNxSjq5eSc8+uVo08Hzw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YV+poZ+i+m1EDu911koojGRyXnY=

poistenie-deti.sk/

37.9.175.132

301 Moved Permanently

0 B

URL HTTP/1.1
poistenie-deti.sk/
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Thu, 02 Feb 2023 08:25:14 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.poistenie-deti.sk/

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2

37.9.175.132

200 OK

1.1 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text
Size
1.1 kB (1094 bytes)
Hash
b49cf2d702be51e3bc8a4f95238bb58f
7187dc960d02e3a3816ef7f2a313d91f2acaf453
eb36930a3b47fce6c2342baf7b3ee3c549ea539c5bb08de7336af0ca1e522c4f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.3.2 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 21:54:43 GMT
etag: W/"780-5b91fa72a3690"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2

37.9.175.132

200 OK

5.5 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text
Size
5.5 kB (5485 bytes)
Hash
f253ece6ffe942de832f54395afeef17
589674272b225ae88da6b885ca6f72b96d55c589
8b936ce7053a4d1f3e44d9c5c6852800c61b5f090a95f781d89a5bb4107b6fe4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.3.2 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 21:54:43 GMT
etag: W/"4654-5b91fa7268ec0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1

37.9.175.132

200 OK

8.4 kB

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/ui/core.min.js?ver=1.12.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (7995)
Size
8.4 kB (8382 bytes)
Hash
80089ebcc6504d02a151ede7a8ac5bc3
3663732db8f14f9739beb505b4269a8ab1245f0d
ab037391a47fe8b0710c400c938825810e714f7f6caede2e438e57c7ada0200d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.12.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 13:10:26 GMT
etag: W/"5fbf-5c0029633d480"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1

37.9.175.132

200 OK

2.8 kB

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (3224)
Size
2.8 kB (2762 bytes)
Hash
047c4fb01b24cfe190a4f4580e4229d5
949098de1becd3e5ae09bb3a9ae54711c9fdbf76
f1abd28b32673e92550cb49c495c15c0a020367be11806c9e13035a527c04cc0

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.12.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 04 Feb 2021 12:43:15 GMT
etag: W/"1bc0-5ba820c187ec0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1

37.9.175.132

200 OK

8.0 kB

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
HTML document, ASCII text, with very long lines (24623)
Size
8.0 kB (7980 bytes)
Hash
a086f2e7805e54eb899be0520c6bc459
e93f6a1df4abf7dca26ee8e9662122d4882fb920
532a8ef8b70e6aa795a953639ffb495681441658fd9cd1cdda6ee3ca51136a5e

HTTP Headers

GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.12.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 13:10:26 GMT
etag: W/"6f5a-5c0029633d480"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1

37.9.175.132

200 OK

5.5 kB

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (11760)
Size
5.5 kB (5504 bytes)
Hash
b0f443c184b8420a223727e96fcc620f
606aad3af807fb89427bbb32faac8f5f7a172f4a
443ad40709ceed973f4488d06c042e6aca043b77503a45fd7961dbb004fd5ffa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.12.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 13:10:26 GMT
etag: W/"3d17-5c0029633d480"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/plugins/google-analytics-for-wordpress/assets/css/frontend.min.css?ver=7.14.0

37.9.175.132

200 OK

9.9 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/google-analytics-for-wordpress/assets/css/frontend.min.css?ver=7.14.0
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (7695), with no line terminators
Size
9.9 kB (9943 bytes)
Hash
cc3de07832298e2de8ee665e1f37f8c8
2c9bde514adb82fb2fab0941100a33671cb3965e
4d8066b0ef6e87c785854234007cb239cdedff1fd2e3db3278b845a26c3e85a9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/css/frontend.min.css?ver=7.14.0 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:11:16 GMT
etag: W/"1e0f-5b91c88127282"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.9.7

37.9.175.132

200 OK

10 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text
Size
10 kB (10539 bytes)
Hash
e08124245d942050a83bf11ca3204783
35b87c05e8d284939987ffa96d398bfc8400b039
10a5cf74635ba0803bbcd40a3cf73cd7b91e7dd594632851f8a4476c22f5419b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:38 GMT
etag: W/"266a-5b91c908dca07"
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Nunito%3A1%2C300%2C400%2C400italic%2C500%2C600%2C700%2C700italic%2C800%2C900&display=swap&ver=5.6.10

142.250.74.106

200 OK

6.3 kB

URL HTTP/2
fonts.googleapis.com/css?family=Nunito%3A1%2C300%2C400%2C400italic%2C500%2C600%2C700%2C700italic%2C800%2C900&display=swap&ver=5.6.10
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
6.3 kB (6317 bytes)
Hash
cf108dd7efcae954f2327cd3988e7eab
1fb07c1b049a3bb3f3e1bb1bd79f76abbf5c35f5
4fe1f1d55e1bfcd0d37d2c8660810bc5629388fddf86bf7ac2be602d9b5b4b99

HTTP Headers

GET /css?family=Nunito%3A1%2C300%2C400%2C400italic%2C500%2C600%2C700%2C700italic%2C800%2C900&display=swap&ver=5.6.10 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 08:25:15 GMT
date: Thu, 02 Feb 2023 08:25:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3541 bytes)
Hash
4c0980cc80018f2218e1a5a7336a4bcc
461e33619154423dbbf49407a80b70ade9078593
4375676d6ce36b3ec3923eefe2007bb96d96135dae10103a886c24fc9063fce9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3541
x-amzn-requestid: f65e4be6-20ff-4f14-a722-d6c2c4631a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5YHQqoAMFeBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6f-5f9183ed1c2cb640249c2b09;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dhCNUaZl9ATxaIgoLz8bF1ZxjW31vJ6rx-BLhIKVjmoG4tPFH7WZZQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 36004
etag: "461e33619154423dbbf49407a80b70ade9078593"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

37.9.175.132

200 OK

51 kB

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (11834)
Size
51 kB (51013 bytes)
Hash
d9b0e695bfbebb371000f9fd098aec27
3e80896c112f8b8f9edd13f477709c8166b3f382
6faad818f710b3bc9b93106b784e07c50d28d9f7bba9d6ce7068ec273340bb13

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 12 Sep 2022 14:26:04 GMT
etag: W/"4710-5e87bacf8e132"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/css/responsive.css?ver=21.9.7

37.9.175.132

200 OK

12 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/css/responsive.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
ASCII text, with very long lines (612)
Size
12 kB (12424 bytes)
Hash
c794010fe5829be9ff2b5bcf966088cc
6ad260bb040b670de0049e3d959edc48b87da3bb
586c066ffbd0292348feb3a9c0a2c7d4d48dec12a25a736623e3551a3abc928c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/responsive.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:55 GMT
etag: W/"e165-5b91c91906781"
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.poistenie-deti.sk/wp-content/themes/betheme/fonts/mfn-icons.woff?31690507

37.9.175.132

200 OK

81 kB

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/fonts/mfn-icons.woff?31690507
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type
Web Open Font Format, TrueType, length 81448, version 1.0\012- data
Size
81 kB (81448 bytes)
Hash
743706216bfe3fc0728d0bd15313ac92
d923ae95df3ea7676e8dc34f4de04abf2eefaaab
559a910060423ed485ddc062a9ab5318859bbfde26be3f73d9b83ac0b9dae677

HTTP Headers

GET /wp-content/themes/betheme/fonts/mfn-icons.woff?31690507 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/wp-content/themes/betheme/css/base.css?ver=21.9.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: font/woff
content-length: 81448
last-modified: Sun, 17 Jan 2021 18:14:17 GMT
etag: "13e28-5b91c92d3e6f3"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2

216.58.207.227

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Size
36 kB (35904 bytes)
Hash
c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357

HTTP Headers

GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.poistenie-deti.sk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 07:32:21 GMT
expires: Mon, 29 Jan 2024 07:32:21 GMT
cache-control: public, max-age=31536000
age: 348774
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37852, version 1.0\012- data
Size
38 kB (37852 bytes)
Hash
3e234fa0724b4b5b6c5f0bb405055d7d
508857a361080c23b3a3ea6c0c66c36525b7422d
fe7839e0dc27d5a668c79b399849d56bc542d9c5dbf2ce2b52c476c6a35a7803

HTTP Headers

GET /s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.poistenie-deti.sk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:06:13 GMT
expires: Sat, 27 Jan 2024 10:06:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:37:26 GMT
content-type: font/woff2
age: 512342
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 08:25:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

walk.classicpartnerships.com/noise.js

194.135.30.42

200 OK

890 B

URL HTTP/2
walk.classicpartnerships.com/noise.js
IP
194.135.30.42:0
ASN
#2856 British Telecommunications PLC

File type
ASCII text, with very long lines (1976), with no line terminators
Size
890 B (890 bytes)
Hash
d8ebc6d5a857aef0b27c2b3856ff16c8
30e9e1cac64fd31cc1348bcd15b78fdebc2adde2
53e18f45673566f0c9bad88e9dca44681321c8db01bedd43ae46bf560c65b67f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /noise.js HTTP/1.1
Host: walk.classicpartnerships.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 890
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ba68cabd652b2ee8b36325629e17447b
e0f283a9aafc9ff3b55177f81fd6475aaccafc98
7aa7a23af6e434b3d2ebfcc0b642a9bc27832ca6714936e8ab475f3a48eaaf63

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7AA7A23AF6E434B3D2EBFCC0B642A9BC27832CA6714936E8AB475F3A48EAAF63"
Last-Modified: Thu, 02 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8747
Expires: Thu, 02 Feb 2023 10:51:02 GMT
Date: Thu, 02 Feb 2023 08:25:15 GMT
Connection: keep-alive

track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7

159.69.234.10

200 OK

8 B

URL HTTP/1.1
track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
IP
159.69.234.10:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with no line terminators
Size
8 B (8 bytes)
Hash
91fa0ad955bf0c9dd5d8527be99d70f7
140e810a6171fa141392e150797967e941598d89
5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 HTTP/1.1
Host: track.violetlovelines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 08:25:16 GMT
Content-Type: application/javascript
Content-Length: 8
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa47b88s;Expires=Sunday, 05-Mar-2023 08:25:16 GMT;Max-Age=2678400;Path=/
674be=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTMyNjMxNSxcIjQyXCI6MTY3NTMyNjMxNSxcIjM5XCI6MTY3NTMyNjMxNX0sXCJjYW1wYWlnbnNcIjp7XCI4XCI6MTY3NTMyNjMxNSxcIjdcIjoxNjc1MzI2MzE1LFwiMTJcIjoxNjc1MzI2MzE1fSxcInRpbWVcIjoxNjc1MzI2MzE1fSJ9.u1RKv0pe7G0ouXUEaSf2VyNmNLnCdpOqxz424uriAbE;Expires=Friday, 06-Mar-2076 16:50:32 GMT;Max-Age=1675412716;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

collect.greengoplatform.com/flag.js?v=7.1.3

194.135.30.42

200 OK

890 B

URL HTTP/2
collect.greengoplatform.com/flag.js?v=7.1.3
IP
194.135.30.42:0
ASN
#2856 British Telecommunications PLC

File type
ASCII text, with very long lines (1976), with no line terminators
Size
890 B (890 bytes)
Hash
d8ebc6d5a857aef0b27c2b3856ff16c8
30e9e1cac64fd31cc1348bcd15b78fdebc2adde2
53e18f45673566f0c9bad88e9dca44681321c8db01bedd43ae46bf560c65b67f

HTTP Headers

GET /flag.js?v=7.1.3 HTTP/1.1
Host: collect.greengoplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:25:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 890
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

simple.cofounderspecials.com/strong.js?v=3.00

194.135.30.42

200 OK

890 B

URL HTTP/2
simple.cofounderspecials.com/strong.js?v=3.00
IP
194.135.30.42:0
ASN
#2856 British Telecommunications PLC

File type
ASCII text, with very long lines (1976), with no line terminators
Size
890 B (890 bytes)
Hash
d8ebc6d5a857aef0b27c2b3856ff16c8
30e9e1cac64fd31cc1348bcd15b78fdebc2adde2
53e18f45673566f0c9bad88e9dca44681321c8db01bedd43ae46bf560c65b67f

HTTP Headers

GET /strong.js?v=3.00 HTTP/1.1
Host: simple.cofounderspecials.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 08:25:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 890
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

159.69.234.10

200 OK

8 B

URL HTTP/1.1
track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
IP
159.69.234.10:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with no line terminators
Size
8 B (8 bytes)
Hash
91fa0ad955bf0c9dd5d8527be99d70f7
140e810a6171fa141392e150797967e941598d89
5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 HTTP/1.1
Host: track.violetlovelines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 08:25:18 GMT
Content-Type: application/javascript
Content-Length: 8
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa47b8bc;Expires=Sunday, 05-Mar-2023 08:25:18 GMT;Max-Age=2678400;Path=/
674be=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTMyNjMxNyxcIjQyXCI6MTY3NTMyNjMxNyxcIjM5XCI6MTY3NTMyNjMxN30sXCJjYW1wYWlnbnNcIjp7XCI4XCI6MTY3NTMyNjMxNyxcIjdcIjoxNjc1MzI2MzE3LFwiMTJcIjoxNjc1MzI2MzE3fSxcInRpbWVcIjoxNjc1MzI2MzE3fSJ9.3L0zHtPzu8DXAG8N78SzqrMWk4hsKOg_-ClfcsPOGVs;Expires=Friday, 06-Mar-2076 16:50:36 GMT;Max-Age=1675412718;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

159.69.234.10

200 OK

8 B

URL HTTP/1.1
track.violetlovelines.com/ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7
IP
159.69.234.10:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with no line terminators
Size
8 B (8 bytes)
Hash
91fa0ad955bf0c9dd5d8527be99d70f7
140e810a6171fa141392e150797967e941598d89
5a7616b41c1378d0b2c5f48dcac069640817f6c92f324b33867ea8cb3ee81200

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /ycYHHc?&se_referrer=&default_keyword=Page%20not%20found%20-%20poistenie%20det%C3%AD%20a%20invest%C3%ADcie&&frm63bf051a23db9=script63bf051a23dbc&_cid=2862a83b-999f-ad10-ac7b-a25cb6570cf7 HTTP/1.1
Host: track.violetlovelines.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 08:25:18 GMT
Content-Type: application/javascript
Content-Length: 8
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa47b8bh;Expires=Sunday, 05-Mar-2023 08:25:18 GMT;Max-Age=2678400;Path=/
674be=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTMyNjMxOCxcIjQyXCI6MTY3NTMyNjMxOCxcIjM5XCI6MTY3NTMyNjMxOH0sXCJjYW1wYWlnbnNcIjp7XCI4XCI6MTY3NTMyNjMxOCxcIjdcIjoxNjc1MzI2MzE4LFwiMTJcIjoxNjc1MzI2MzE4fSxcInRpbWVcIjoxNjc1MzI2MzE4fSJ9.8cAEDX2J3Js3yx48Y8tNQqzUo6TzyqVbGQbxZosRyBk;Expires=Friday, 06-Mar-2076 16:50:36 GMT;Max-Age=1675412718;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *

www.poistenie-deti.sk/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:40 GMT
etag: W/"48eb-5b91c90a643e0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/jquery.min.js?ver=3.5.1

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 02 Sep 2022 09:50:35 GMT
etag: W/"18116-5e7aea95810c0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/images/favicon.ico

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/images/favicon.ico
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/images/favicon.ico HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:16 GMT
content-type: image/x-icon
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:47:22 GMT
etag: W/"1536-5b91d092648ac"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/

37.9.175.132

404 Not Found

0 B

URL HTTP/2
www.poistenie-deti.sk/
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.poistenie-deti.sk/wp-json/>; rel="https://api.w.org/"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.3.3 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 21:54:44 GMT
etag: W/"eb81-5b91fa7365c0d"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 21:54:44 GMT
etag: W/"1ea06-5b91fa735d100"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 21:54:44 GMT
etag: W/"52a65-5b91fa735d100"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/wp-emoji-release.min.js?ver=5.6.10
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.6.10 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 20 Aug 2022 10:20:53 GMT
etag: W/"5a09-5e6a991c4ab40"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/css/layout.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/css/layout.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/css/layout.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:54 GMT
etag: W/"1cd5c-5b91c917f11d9"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.12.1 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 04 Feb 2021 12:43:15 GMT
etag: W/"3063-5ba820c187ec0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:37 GMT
etag: W/"e4a1-5b91c90704ee2"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/js/menu.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/js/menu.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/js/menu.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:47:54 GMT
etag: W/"1819-5b91d0b0aca80"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/js/wp-embed.min.js?ver=5.6.10

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-includes/js/wp-embed.min.js?ver=5.6.10
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.6.10 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 04 Feb 2021 12:43:15 GMT
etag: W/"141e-5ba820c187ec0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/style.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/style.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/style.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:34 GMT
etag: W/"15e-5b91c90448b5c"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/js/scripts.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/js/scripts.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/js/scripts.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:47:55 GMT
etag: W/"12310-5b91d0b1a0cc0"
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Nunito%3A400%2C900&display=swap&ver=5.6.10

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Nunito%3A400%2C900&display=swap&ver=5.6.10
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Nunito%3A400%2C900&display=swap&ver=5.6.10 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 08:25:15 GMT
date: Thu, 02 Feb 2023 08:25:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/js/plugins.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/js/plugins.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/js/plugins.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:47:55 GMT
etag: W/"32e2f-5b91d0b1a0cc0"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:38 GMT
etag: W/"dbed-5b91c907eb880"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-includes/css/dist/block-library/style.min.css?ver=5.6.10
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.6.10 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 22 Feb 2021 19:16:29 GMT
etag: W/"c88a-5bbf1a38fd650"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/css/base.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/css/base.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/base.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:53 GMT
etag: W/"da37-5b91c9172bd7c"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/css/shortcodes.css?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/css/shortcodes.css?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/shortcodes.css?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:57 GMT
etag: W/"211f7-5b91c91a17ea9"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:13:37 GMT
etag: W/"15b3-5b91c906f7640"
content-encoding: br
X-Firefox-Spdy: h2

www.poistenie-deti.sk/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.9.7

37.9.175.132

200 OK

0 B

URL HTTP/2
www.poistenie-deti.sk/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.9.7
IP
37.9.175.132:0
ASN
#51013 WebSupport s.r.o.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.9.7 HTTP/1.1
Host: www.poistenie-deti.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.poistenie-deti.sk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 02 Feb 2023 08:25:15 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 Jan 2021 18:47:56 GMT
etag: W/"1e07-5b91d0b294f00"
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML