| raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea | 185.151.30.191 | 301 | 0 B |
URL User Request GET HTTP/1.1raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea IP185.151.30.191:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301
date: Thu, 28 Mar 2024 23:41:45 GMT
content-length: 0
location: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
x-cdn-cache-status: MISS
x-via: FRA1
|
|
| raymasterbatch.com/wp-content/uploads/2023/01/Ray-Colors-White-Logo-e1674214145120.png | 185.151.30.191 | 200 OK | 31 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/uploads/2023/01/Ray-Colors-White-Logo-e1674214145120.png IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typePNG image data, 308 x 84, 8-bit/color RGBA, non-interlaced Hasheec64e95cf3d69449d018f1a5046e6d3 e75c75fb7f183e0f9ada0cff28b23f4056fc2c5d 81846b080d4497da298745358b3a133ad101839cc6480852e3dea6c3d2f23aec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/01/Ray-Colors-White-Logo-e1674214145120.png HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: image/png
content-length: 30714
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Fri, 20 Jan 2023 11:29:05 GMT
etag: "77fa-5f2b05b640240"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:08 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/uploads/2023/01/Ray-Colors-Black-Logo-e1674214674267.png | 185.151.30.191 | 200 OK | 28 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/uploads/2023/01/Ray-Colors-Black-Logo-e1674214674267.png IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typePNG image data, 304 x 81, 8-bit/color RGBA, non-interlaced Hash949ca5d3fe667815bafea1ffdf26ce97 467117a1787639f93357b02c994267d3180ce482 980523dbbfc165d8e947e01bef1fa72ab301d3bcf445b540860eb71070da3623
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/01/Ray-Colors-Black-Logo-e1674214674267.png HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: image/png
content-length: 28283
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Fri, 20 Jan 2023 11:37:54 GMT
etag: "6e7b-5f2b07aebe880"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:05 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 | 185.151.30.191 | 200 OK | 8.4 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, max speed, from Unix Hash6799ceb070e2711f5c773df9964eccae 86c476f2ad9680154368e16002d34e38bb9e56c3 9cb165942494ef16ac0606cd3df286d97300c2ec1e5fcded54c0e3ad9e6ab924
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 30 Mar 2023 00:28:30 GMT
etag: W/"53be-5f8132c02c780"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3 | 185.151.30.191 | 200 OK | 5.1 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, max speed, from Unix Hash7677f9536b881e5ca40cafa47e60aa31 50f486c68e9459f11659aa8e3397a68079d89515 3b25d11372e2d3cff352b9844417c5b2f29f0763a50ff387fd3318637e9cbcbb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.9.3 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:05 GMT
etag: W/"32fe-6142a881ecaa5"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 20:23:36 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.0 | 185.151.30.191 | 200 OK | 21 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, max speed, from Unix Hash456987ad19ce3079ce3dcb6639f9b33e ed8156a26fbbeb1bfb500db8ab944784f836e36b 1d358815ead44a19eb6df110b119ed603fcf30246c59a0f5cf27da145d718968
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"38a4-6140c65395ddd"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:28 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.appear.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 17 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.appear.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, from Unix Hash7a4b72c7439887f5ea4e604329ed4b16 88d5e6e4bf7dbf845ca239fefe23070c60324b22 479c79a73b2498530dec8384b44897a4de11a1b2ca09451c7badbe63c22a80c7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/jquery.appear.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"815-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.8.7.0 | 185.151.30.191 | 200 OK | 102 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, max speed, from Unix Size102 kB (102415 bytes) Hashc907fc7fed12c433209c176bb9883ac1 e095380a0d90ce46597d7ba2ac1602b04fb6a271 b5029bff0fc7cdbae751fccadd532add221315638999efad84c94f37f7e18729
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/select2/select2.full.min.js?ver=4.0.3-wc.8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"1237c-6140c65392efd"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 09:47:38 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/elegant-icons/fonts/ElegantIcons.woff | 185.151.30.191 | 200 OK | 64 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/elegant-icons/fonts/ElegantIcons.woff IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeWeb Open Font Format, CFF, length 63664, version 1.0 Hashfdd9e757bf61675343dcf55100422b84 f9be87fa2d1d4a95e8305afb51778db4bc759fbc be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/elegant-icons/fonts/ElegantIcons.woff HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/wp-content/themes/baumeister/assets/css/elegant-icons/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: font/woff
content-length: 63664
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: "f8b0-5f0ce3f63fd40"
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 | 185.151.30.191 | 200 OK | 16 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, from Unix Hashc4db7085b809a4f5088ab609d55edd10 94ec8a599a8e0c690a48c7bbbeed8543ca1cfbb6 948ea6cb5751c19b65ab951be56d70b08d3e25da8a806382f3c3ced16b2ec0d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.6.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:23:17 GMT
etag: W/"3e0-5f0ce51089740"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7840, version 1.0 Hash8d91ec1ca2d8b56640a47117e313a3e9 a9e9bafe64666f4595051a0e895b47a5fa39e67e 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:31:54 GMT
expires: Fri, 28 Mar 2025 17:31:54 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
age: 22192
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:26:54 GMT
expires: Fri, 28 Mar 2025 17:26:54 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 22492
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:26:54 GMT
expires: Fri, 28 Mar 2025 17:26:54 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 22492
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff2 | 185.151.30.191 | 200 OK | 110 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff2 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109808, version 772.1280 Size110 kB (109808 bytes) Hash005c9aa92b564b73b7582cc4f1fa49cb 373361ed756b1fe68ce2f5968d467826b6973bb5 faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff2 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/wp-content/plugins/mystickyelements/css/font-awesome.min.css?ver=2.1.7
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: font/woff2
content-length: 109808
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: "1acf0-6142a8865dd9c"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:06 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/uploads/2023/01/logo-white-e1674199049182.png | 185.151.30.191 | 200 OK | 14 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/uploads/2023/01/logo-white-e1674199049182.png IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typePNG image data, 285 x 81, 8-bit/color RGBA, non-interlaced Hash4997c7af36a5dcdacfbe0b3fecf7dc99 9933e81c083134d519fcbb87018f1bb93c98b460 5e8ceb4d0ba6bb4f7049026abe1ee7397be09e434b6fb7e3438a0380b66118b8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/01/logo-white-e1674199049182.png HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: image/png
content-length: 14352
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Fri, 20 Jan 2023 07:17:29 GMT
etag: "3810-5f2acd7995440"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:05 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1-150x150.png | 185.151.30.191 | 200 OK | 25 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1-150x150.png IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typePNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced Hash124d725533f9ef5ec5c7cd2ef02af43d e0ec140ff8f1fef0982cd5790693ac9e7080af51 5da0f83dacd060ea07ca40ffc910a15771ea8f1595c1b1023e595a77fe25f9ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1-150x150.png HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: image/png
content-length: 25000
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Fri, 20 Jan 2023 07:49:35 GMT
etag: "61a8-5f2ad4a65c1c0"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 10:37:17 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: HIT
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1.png | 185.151.30.191 | 200 OK | 42 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1.png IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typePNG image data, 218 x 218, 8-bit/color RGBA, non-interlaced Hashfcebefec50eecaecba519cab6ed79c69 9132137aedefe0231902ffd6940f19bcac686555 fa94f1bc2959b849875316859fc11933e4ce990a48ce46472cd559847ce2a5d8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/01/Ray-Color-1-e1674200828204-1.png HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2023%3A41%3A46%7C%7C%7Cep%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fraymasterbatch.com%2Flogin.php%3Fcountry%3D%26iso%3D%26online_id%3D913070a3b1b95b365df8616ea
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: image/png
content-length: 42467
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Fri, 20 Jan 2023 07:49:35 GMT
etag: "a5e3-5f2ad4a65c1c0"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:16 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.0 | 185.151.30.191 | 200 OK | 11 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typegzip compressed data, from Unix Hashba1b1c8d303b4d1f222fe84a3924ec1f 35c8f7ddbef395f3541dc7c99c3847c1f2e43554 adbe01598aac6b1c09387052a408eaaf01430f883364285db6c36bf1970794a6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"5e5-6140c65388ed6"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 09:47:35 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/elegant-icons/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 22 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/elegant-icons/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (21769), with no line terminators Hashc1be61e1bfe62ea4f8dabdf0247ef113 61c71aceb8cbff107ff2c9b882b0ce99e351f972 58405a25c52e36b20127a9e73f1f4656f908a82747636a4b187f30a817bedfb9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/elegant-icons/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"5509-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:20 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/linea-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 78 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/linea-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (369) Hash18513056c4a412491127bc1cee55d372 e851a7961f873dac6eb973327db29c571bd2a571 b5cad6a450f4007b75ff83016582537871825a08c94ce709efb80947db45d40c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/linea-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"13100-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:41 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/linear-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 8.3 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/linear-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (9583), with no line terminators Hashfc5335f70390584837c0a5a058553bc7 422d92bf364a23f7f315a52ab961fb8036e128d0 bec4a44bed01a03e83e837ad4e6a9ac61b91bcad4ace5fe48348c7a9b7458ba5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/linear-icons/style.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"2098-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:17 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/modules-responsive.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 54 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/modules-responsive.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (53565), with no line terminators Hashda75794644cde8256186dd6b91013eb5 6d038b2aa5920272a7728dc8130e33c02b6dbe84 6186a78a3f358a721e46812a68fba8fde49ecdc535eb88d0ca855f815be19a24
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/modules-responsive.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"d13d-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/style_dynamic_responsive.css?ver=1711179168 | 185.151.30.191 | 200 OK | 2.7 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/style_dynamic_responsive.css?ver=1711179168 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (2747), with no line terminators Hash265f4bad361404eb3253f6507f4936e0 8ddb55630369bd7ba09a7f0ede46474d42af85d5 901b996e6e2810740e400eed266ca5bec175706a8163244cfa660126f7a01116
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/style_dynamic_responsive.css?ver=1711179168 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Sat, 23 Mar 2024 07:32:48 GMT
etag: W/"a93-6144ef279513c"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 18:26:48 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600%2C700&ver=d23451f89c2e168026b4a5a74d099dbc | 142.250.74.106 | 200 OK | 3.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Poppins%3A400%2C500%2C600%2C700&ver=d23451f89c2e168026b4a5a74d099dbc IP142.250.74.106:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typeASCII text, with very long lines (3036), with no line terminators Hash1435efc782df10917adfc3799bf122d0 a45df32561430ec9807f1da414e040bfdfd9df30 34098834c78afe91d0f589b2c1f9b63818b9af6c51d53fb7928b34de7a466a96
GET /css?family=Poppins%3A400%2C500%2C600%2C700&ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 23:41:46 GMT
date: Thu, 28 Mar 2024 23:41:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/fluidvids.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.3 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/fluidvids.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1387), with no line terminators Hash4d325c18ede3155b9f0fa2168ff62c8d 1dea0fa66f9acc18a338fff5e03bd33699e9f38d daab2d8c9af8f607bbb3f76c2ed60c31a20adc9f14c313a631ebf75ba860ca7c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/fluidvids.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"52c-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:32 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/parallax.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.4 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/parallax.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1419), with no line terminators Hash0c87d37fd57fb0a000b5e96820f07b8b 946494192edf5b5d399d1d74e50fef86ee2acb47 f8624c82da88d9a5a2a6921663d21c2d3c541af1006b3ea7be6278abf5278843
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/parallax.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"577-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:26 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waitforimages.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.9 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waitforimages.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1954), with no line terminators Hash973e4541663add15b4e10d3933a1ac29 b05d15b6eda6ee31c6f84aa6f4f9ef81c47381f9 153f267a13e3a3e4cc02e4af3f9cdd7f42a59f798a094a0bc0b5aee4d5ce306d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waitforimages.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"763-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:05 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 | 185.151.30.191 | 200 OK | 36 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (32004) Hashb4873ebabbcc79e9f782bf823158aa89 01d30454ae34579186d40b77f122d711fd45fca5 f31914cfde2f16e02ab4d628bb4174d58c9486f153e9ed4d39b1650fc09dd15a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.6.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:23:17 GMT
etag: W/"8b8a-5f0ce51089740"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:25 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/counter.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 924 B |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/counter.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (930), with no line terminators Hash19780301bf9c30403c598e8a808779e4 dbd9b47911b0ad6a760e35802d1bc82c860fb161 ab6af47e51f361e7169e678ba84d8baa1d7a6bb2301ac0411bf2b240a0c1ceca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/counter.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
etag: W/"39c-5f0ce42312700"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:26 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput.js?ver=2.1.7 | 185.151.30.191 | 200 OK | 104 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput.js?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Size104 kB (104348 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput.js?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"1979c-6142a8867cdb2"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:05 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.1 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1145), with no line terminators Hash8e9324620d8bfb8c0625430b9a551597 5a6d16b85be402fa2d7c02257437b649ca879544 a41b21c23b2bfaee55c6a39fcc40e843ea687990bd503157257c25b498800a55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 30 Mar 2023 00:28:30 GMT
etag: W/"453-5f8132c02c780"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:49 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 14 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (13547) Hash2e704c1f29cbb512e403ffe68315094a 97fcc42bff5c65aa3418ae419d3ef248c4ec195e 60ef0ce4272c1ae361476cf56578930a5517b8d9d699e22dffc94524d7234b6d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/packery-mode.pkgd.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"3532-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.plugin.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 4.6 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.plugin.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (4646), with no line terminators Hash7c284a78c653048a84318c5f3be2d409 6106bc690036d8f0ceb66b5081eaede7b8374820 ef0adf6f0d2863d05bbd3411192dc8b7cd86ab55177751150974436793203990
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/jquery.plugin.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
cache-control: max-age=86400
expires: Fri, 29 Mar 2024 09:49:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: EXPIRED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 | 185.151.30.191 | 200 OK | 11 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (11256), with no line terminators Hash2b0dd7eecea03b4bdedb94ba622fdb03 703becba85161118dd6fc66af465428ef43f561c b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 29 Sep 2020 21:23:06 GMT
etag: W/"2bf8-5b07a63896280"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:16 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C500%7CPoppins%3A300%2C400%2C500%7CRoboto%3A300%2C400%2C500&subset=latin-ext&ver=1.0.0 | 142.250.74.106 | 200 OK | 14 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Oswald%3A300%2C400%2C500%7CPoppins%3A300%2C400%2C500%7CRoboto%3A300%2C400%2C500&subset=latin-ext&ver=1.0.0 IP142.250.74.106:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hash70f6be3b41b9b3381b8603d5ed452c92 1085b94bfe216f7787d66c3612db70ab0606ef4c 6c29cbc202ee79ea5e284749cb5a9325afb7bd49e0cfdfafff2a271cd881d20c
GET /css?family=Oswald%3A300%2C400%2C500%7CPoppins%3A300%2C400%2C500%7CRoboto%3A300%2C400%2C500&subset=latin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 23:41:46 GMT
date: Thu, 28 Mar 2024 23:41:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/css/mystickyelements-front.css?ver=2.1.7 | 185.151.30.191 | 200 OK | 220 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/css/mystickyelements-front.css?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Size220 kB (219747 bytes) Hashde0cffea7cd8e9e1e48eea589e158461 10d1760bde7efb53eddf6893b7be91c5aee8e181 6d456393044bfe110504721016273d13ffbeef29dbc38122bfcbb0997aca734c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/css/mystickyelements-front.css?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"35a63-6142a8865aad4"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 | 185.151.30.191 | 200 OK | 364 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (64268) Size364 kB (363983 bytes) Hash3fb3e6ddca8e7e7e2c17e90d3dd13c76 0648731e5e4258941e1815c3e9597e4983bcb680 7f63e8476900f0a7600e621e33b3f18b878664cfad27df525a88385c9b37ea6f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.11 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:20:43 GMT
etag: W/"58dcf-5f0ce47dabcc0"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:39 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.0 | 185.151.30.191 | 200 OK | 2.1 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (2257), with no line terminators Hash846a24981bff9217c95389e6dc346313 e03631b8e1438e09c8d7876ab20b0d69d0c4d819 29327d5b926dcc7de82c087f261b00355dce3492f0b9721887819b5f54cf8486
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"85b-6140c6538aa2e"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:22 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/absoluteCounter.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.3 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/absoluteCounter.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1320), with no line terminators Hashd9748972b2d17597b1ef65ca7081bac0 73c0cf27520ed2d42d92f0954292a83ab98c773c d57976ffebc87dac35ef1dec00db42761b5f73a318dae3df8c8d30c760d8ffdf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/counter/assets/js/plugins/absoluteCounter.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
cache-control: max-age=86400
expires: Fri, 29 Mar 2024 09:49:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: EXPIRED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/js/jquery.email-autocomplete.js?ver=2.1.7 | 185.151.30.191 | 200 OK | 6.2 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/js/jquery.email-autocomplete.js?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (6572), with no line terminators Hash43938b7fd27ffb51dd925af6284a7ec6 2bee30459971ebc75b3e2f5bb0d8bea96d0b65d0 a048e23517007e467077854ca71bb5a642b95be6ba32dca1b56881f21cae6fa7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/js/jquery.email-autocomplete.js?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"183d-6142a8868007a"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 09:47:38 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 | 185.151.30.191 | 200 OK | 61 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.11 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:20:43 GMT
etag: W/"efa0-5f0ce47dabcc0"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:03 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/pie-chart/assets/js/plugins/easypiechart.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 4.0 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/pie-chart/assets/js/plugins/easypiechart.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (3982), with no line terminators Hash5b756814fa246db2856c3c5aa508ee51 9e9043ffbc510f28f8837c8d0059e2cfe558432f 91441e6885f6a83579b6b4dba7c8eb393e1231b0bbe066a5a4c342ca140c9824
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/pie-chart/assets/js/plugins/easypiechart.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
cache-control: max-age=86400
expires: Fri, 29 Mar 2024 09:49:06 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: EXPIRED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=5.0.17 | 185.151.30.191 | 200 OK | 8.0 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=5.0.17 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (8290), with no line terminators Hash0b21330315576e74be9566077c5bdc43 31c8de4be6f62bda9687845cdffa78336a4e962d 8cbe9547860662e3c647a3c16fb0492bcf0df927a694e1fb1eba6621a3ea319b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=5.0.17 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 07 Feb 2024 12:04:32 GMT
etag: W/"1f29-610c97f667099"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:32 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:46:08 GMT
expires: Fri, 28 Mar 2025 17:46:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 21338
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 | 185.151.30.191 | 200 OK | 77 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/wp-content/themes/baumeister/assets/css/font-awesome/css/font-awesome.min.css?ver=d23451f89c2e168026b4a5a74d099dbc
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: font/woff2
content-length: 77160
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: "12d68-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 05:48:49 GMT
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/style_dynamic.css?ver=1711179168 | 185.151.30.191 | 200 OK | 30 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/style_dynamic.css?ver=1711179168 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (9294) Hash0baf9be3da0c4d43847ae11ee50fc1c9 146e27cf8f42af40015b7073ed1987b43f0c261b 84ff0e29410def8c86055b8462519c4ceb6939c470fbacd9f4412c297f19b631
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/style_dynamic.css?ver=1711179168 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Sat, 23 Mar 2024 07:32:48 GMT
etag: W/"73a9-6144ef279496c"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 18:26:48 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 | 185.151.30.191 | 200 OK | 124 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (42889) Size124 kB (123959 bytes) Hash04f0a5790668162c9241bfd598d6400c dd55a501364bbd8a0b43eca3cd681748cd89a03e 463f24ed151c0bc8775c09e92c3885fd96dc17f1e91ca64d70f3ba9600e0eb86
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.8 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:20:43 GMT
etag: W/"1e437-5f0ce47dabcc0"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:16 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.3 | 185.151.30.191 | 200 OK | 2.9 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.3 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (3172), with no line terminators Hash4ff394b4fc55e546c2457e1a49a044fa 0f3fe404c0821a795cb73aa6bb5c062d52af7e68 4858dafdb763b5027e97ca50c5747329e16d4c19ecc575aff7454335e71cba33
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.9.3 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:45 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:05 GMT
etag: W/"b4e-6142a881e806e"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 4.2 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (4186), with no line terminators Hashea958276b7de454bd3c2873f0dc47e5f b143f6e8e8f79d8f104c26b0057ef5514d763219 2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Sat, 08 Jun 2019 02:15:02 GMT
etag: W/"105a-58ac683be5580"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:18 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=5.0.17 | 185.151.30.191 | 200 OK | 6.0 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=5.0.17 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (5995), with no line terminators Hash8264051cbac00313aa7aa1f86edd56f7 65d36cae508a80419ec31a4552eb0dc3d8081546 066a5e84b36464776ce2478c739d8e6602e055bc89fe59c084582d1fe24655c8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=5.0.17 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 07 Feb 2024 12:04:32 GMT
etag: W/"1761-610c97f662a49"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.0 | 185.151.30.191 | 200 OK | 3.1 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (3148), with no line terminators Hashd17c62bad956b4371f4d678f026c31b9 85b7da96dbdb12f047cc91dfe66d38bb431ef148 e795a33b7abd1b98fbc77e1932ca8bc8ce87ad44628d5f9255cd739e1992673e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"bf2-6140c65385ff6"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:18 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/font-awesome/css/font-awesome.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 31 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/font-awesome/css/font-awesome.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/font-awesome/css/font-awesome.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"7918-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 19:26:06 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/owl.carousel.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 43 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/owl.carousel.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (32000) Hashb0e1896fc0695c2037b4795279d3362f 820d868f79d3536609edd9c603dc225ba813fca9 79a7fe4fb120359883b2215fd7d76d8a30ef4da9d93b5a69e49ad77435d80257
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/owl.carousel.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"a752-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:45 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/style.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 644 B |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/style.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (658), with no line terminators Hash528c736a3611dce0f3d1c799ce4594d5 82e76aa4dfb732d63a612f991d9755dacc1d3ccb 62263cde1700cd41a7650063e901c72730c740c3ac3fddfcc51dc6cc6505eade
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/style.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"284-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:18 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/simple-line-icons/simple-line-icons.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 12 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/simple-line-icons/simple-line-icons.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (344) Hash8a45b8ddbf2e2203bb920958e61c17c4 0810f1b26236bd61e70662745b8021d6652cc578 d318182668333df5a5507445b6af483b07c4325a36f2e9d1f2cb3de17d56d420
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/simple-line-icons/simple-line-icons.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"3037-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:18 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput.css?ver=2.1.7 | 185.151.30.191 | 200 OK | 25 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput.css?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Hash492c671a6cdc8656b12f21715096e7a3 6513e6ef0ae0dafc847531d36309785a954677dd 698477874c22315bd537cdc203a3fa3d6f81ae95f16da89e769f292645e431ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput.css?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"62b8-6142a88679702"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:35 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 3.4 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (3503), with no line terminators Hashfb9a5f93088c4704e9088a25d0240f33 39790c2a856f3884517c9443c22935e3c71c57e5 2879e2f569e064d513b7993b80ec4605b8e74d9ff955d047cb3cb5d961e965bf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/ScrollToPlugin.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"d46-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:27 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/perfect-scrollbar.jquery.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 25 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/perfect-scrollbar.jquery.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (24688) Hasha85bd83466acc018be87dcf8a9175892 85bf4c744111b36095cc3afa56857c80473a218b 5746f9b41e4ce17a55368c6e241c422b1dacd8f6b0652b6472b0e9216b23a300
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/perfect-scrollbar.jquery.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"608f-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:51 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 185.151.30.191 | 200 OK | 14 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 09 Aug 2023 00:24:21 GMT
etag: W/"3509-602728041a77a"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:37 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.0 | 185.151.30.191 | 200 OK | 9.6 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (9963), with no line terminators Hash7ed2c573e85b2b4e5fb8b4131e95e469 140691f29cb181849892640d1b237fa6a4e5beae a637f7d3e1ca8aeb1d7d4499419916cca6c18a2b625a616f6950f2b978a91ba6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"25a4-6140c6538b5e6"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:39 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3 | 185.151.30.191 | 200 OK | 12 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (11513), with no line terminators Hashefc27e253fae1b7b891fb5a40e687768 ad12044651ffac0badcd0e42f32edef91678b1ff 46e36dd6ca93014e4915c723632bf180d27cc96ccfb7c26e69213e1a82129a62
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.9.3 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:05 GMT
etag: W/"2cf9-6142a881f5b2c"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:21 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 | 185.151.30.191 | 200 OK | 12 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (11760) Hash88407dc30b83ffa7dd834fe4a35307b7 857a3a007e5ea8d88123bb47019606618e19eb77 6a0d53f68e013dac42a52a5264c5d28a12a06b6bc7cc1d63bc2d385558bd2dd7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Mon, 19 Sep 2022 23:34:10 GMT
etag: W/"2ea1-5e91026028080"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 09:47:35 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/countdown/assets/js/plugins/jquery.countdown.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 14 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/countdown/assets/js/plugins/jquery.countdown.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (13345) Hash21fd34fca546436fb42189648b8ec6ea 709477c553e398cc6238b7cca1d18ca8f32704d4 88ca875d14c480e1478cacb3edbd3962433fd21a4775666b387988738038a63a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/countdown/assets/js/plugins/jquery.countdown.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
etag: W/"3525-5f0ce42312700"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:32 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/custom-font/assets/js/plugins/typed.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 6.6 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/custom-font/assets/js/plugins/typed.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (6683), with no line terminators Hash7e502c3c7d64c355381419b037e2d13e 6fce2f6621b568d541ceb3c3ef5b6eb1a4bc2d70 baa3e4c025bb287aad3fe7a7a68af7e54a0793cd31d410cecb7a85ba14de48c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/custom-font/assets/js/plugins/typed.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
etag: W/"19ab-5f0ce42312700"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:50 GMT
expires: Fri, 28 Mar 2025 17:37:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 21836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 185.151.30.191 | 200 OK | 88 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 08 Nov 2023 00:11:56 GMT
etag: W/"15601-60998ef6c2f6e"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:40 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2 | 185.151.30.191 | 200 OK | 1.5 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1528), with no line terminators Hash05dfab5ea94e431b975302359420e027 6fedd8876d4dd468783359ca3bc4882748dde111 d05f197f608d0f4f0eab7000e11622a7dfbb913b7aee1a1352496fa1fcfc5789
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Sat, 09 Apr 2022 01:37:18 GMT
etag: W/"5db-5dc2ec064ef80"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:27 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/css/dist/block-library/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 110 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/css/dist/block-library/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Size110 kB (110147 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:45 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 31 Jan 2024 00:37:46 GMT
etag: W/"1ae43-61033167b50d5"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:10 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/modules.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 430 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/modules.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size430 kB (429890 bytes) Hash231a94bdf096e62d69f2dac03a37cb88 a777bf00f1e2778f040909e969d3e5f806c9b639 37e1aa3dd77cd93bf12b1ced2b79826ad7bfa43889b01eb4625e8de4161d50d3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/modules.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"68f42-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/ion-icons/css/ionicons.min.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 51 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/ion-icons/css/ionicons.min.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/ion-icons/css/ionicons.min.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"c854-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:19 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/css/dripicons/dripicons.css?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 12 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/css/dripicons/dripicons.css?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Hashab8ea68709d00ef86407d9a2682230e7 bba03448612cb8c71aae8a0770314e4ff4b9cdf5 090c275cf2f1aaee530017a1798520e280ad98c0549e33aad2a7a47fb669dea9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/css/dripicons/dripicons.css?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"2d1a-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:17 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/css/font-awesome.min.css?ver=2.1.7 | 185.151.30.191 | 200 OK | 54 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/css/font-awesome.min.css?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (53961) Hash708be3204c65c45805a8539f49bfbe74 65a97527877101a1ed0afa3a22880bd0c7aac689 abfa790644d2649823af89bca017d6095a9bab73bbf3b84edfa4e5e28be61914
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/css/font-awesome.min.css?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: text/css
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"d436-6142a88658f7d"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:20 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 | 185.151.30.191 | 200 OK | 8.8 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (9106), with no line terminators Hashc9caa3ff5e4737830f3eef1e209fb157 1117ac0f8c7964c2994c921c9aad878a491368d1 25832b2660a10f769a37b6612ef64981c6bf7785b5fc6cab01bbbb9022705084
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 30 Mar 2023 00:28:30 GMT
etag: W/"226e-5f8132c02c780"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:53 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.easing.1.3.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 5.6 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.easing.1.3.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeUnicode text, UTF-8 text, with very long lines (5602), with no line terminators Hash965730ee3b52830f2168a70d9b1be8a1 2a824d8cd19ff82780488fd4424183e2faec970c 4638d7f68bb04ded66de47cc60b9ee508290c15d14bb0ad29a5a997e9eb7a0ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/jquery.easing.1.3.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"15bd-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:46 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.js?ver=2.1.7 | 185.151.30.191 | 200 OK | 36 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.js?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text Hashd50fbec3ccd6a2f32d16cf3454bf58c6 b15184e557e25f9c1e4ee4ab9b69b09e0a3c376d 79eb8931a840ffdf8049a64e5d0d4266c00a6b83a65e449836d845b28f7cdf43
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/js/mystickyelements-fronted.js?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"8d34-6142a88682789"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:25:05 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 | 185.151.30.191 | 200 OK | 158 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65266) Size158 kB (158005 bytes) Hashe53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 29 Sep 2022 19:51:12 GMT
cache-control: max-age=86400
expires: Fri, 29 Mar 2024 09:49:06 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: EXPIRED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/js_composer/assets/lib/prettyphoto/js/jquery.prettyPhoto.min.js?ver=6.6.0 | 185.151.30.191 | 200 OK | 24 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/js_composer/assets/lib/prettyphoto/js/jquery.prettyPhoto.min.js?ver=6.6.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeHTML document, ASCII text, with very long lines (23729) Hashb6f14f6511600c1e3aace998e9422ee0 76e81bc84308ab0e87fd6109d5d51fe9e85e44d8 17ba7cb65b6953aad7cb80bd33e1c16b7d9fe2e32d7539952e6da7cdbb9d4e6c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/js_composer/assets/lib/prettyphoto/js/jquery.prettyPhoto.min.js?ver=6.6.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:23:17 GMT
etag: W/"5d8c-5f0ce51089740"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 18:27:04 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.0 | 185.151.30.191 | 200 OK | 1.7 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.0 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1759), with no line terminators Hash40fb244b78cdf7946fec16564a2bdc9a e80ebc14cdb2cf0a3625116ddb770da57bbbd506 76c56d908e9de1877fbe3f7bc1c90656c07bc7b9a69b2bde9f950456d37cbb9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.7.0 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Wed, 20 Mar 2024 00:08:50 GMT
etag: W/"6b8-6140c6539001d"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:22 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 1.2 kB |
URL GET HTTP/2raymasterbatch.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeASCII text, with very long lines (1215), with no line terminators Hash6c5cd40ca06caabdd07a65962fefeb89 23de967b73db46b1bc5fa76dcf090161184c2a67 819fccaf878cc80984be3a6afc7d114fbe7339f5203a321ffd525515779e9bca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Sat, 09 Apr 2022 01:37:18 GMT
etag: W/"4a7-5dc2ec064ef80"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 02:18:32 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waypoints.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 9.0 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waypoints.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (9142), with no line terminators Hash2e8349c6927457a9ddf4c09d0873a72d dca772568fda123018ea30efb3f3aa20d5365401 f9701b26c89e0672dcd1d247bb6120244e49a2301cce03b92b1bc4ef3ed71860
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/jquery.waypoints.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"2349-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 78 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashf62b26f260b53135d247f3eda5d26996 fa45c12557630131001644f040ca8e6b963cba89 266ba1e1ce1d03e6a83f7be5d43ab44bb0872cbda7e6d52e1f66f0a5eebd1ed0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"13068-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 14:41:15 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/modernizr.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 14 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/modernizr.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (13826) Hashf6917787a87c6fbadb0c3b31223d1b19 277beaf1c32439418da113cbc0dd43946276858f f2a495f34a522b7715c881352e81293c528f3d69b4bf35db7fc58164c8828d04
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/modernizr.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"380e-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 23:11:43 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/full-screen-sections/assets/js/plugins/jquery.fullPage.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 30 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mkd-core/shortcodes/full-screen-sections/assets/js/plugins/jquery.fullPage.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (30059) Hash7f772059b5f4cccd8c194cff1834e1f1 cc35f45db21533ebdea5a92ca1b5c138f39f81a3 685b80259c4ef4a85da60d4d833eeecc8193af64fc6e12eba250f1e2de5fc56e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mkd-core/shortcodes/full-screen-sections/assets/js/plugins/jquery.fullPage.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:19:08 GMT
etag: W/"7611-5f0ce42312700"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:26 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/js/jquery.cookie.js?ver=2.1.7 | 185.151.30.191 | 200 OK | 1.4 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/js/jquery.cookie.js?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1485), with no line terminators Hasha5ae4d864943c7453c75287f205ba6e8 327aba4dd166de1b0c8792f381bde37beafa5975 43d2982bbbbbb113b4d3b622c23c25242013404bedd1d221dc2b62a7dd98b831
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/js/jquery.cookie.js?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:46 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"590-6142a8867fc92"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 21:31:25 GMT
vary: Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
x-cdn-cache-status: REVALIDATED
content-encoding: gzip
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/plugins/mystickyelements/js/mailcheck.js?ver=2.1.7 | 185.151.30.191 | 200 OK | 10 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/plugins/mystickyelements/js/mailcheck.js?ver=2.1.7 IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
Hashd96ee725935939285a5c129b4a11245d fdb3da6e6d95f97f1305b2330906152c1deb0dbc ff77ae74529ef01e2a6758d6309550c5602c4f45aa10768556bc9bc67b18326d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/mystickyelements/js/mailcheck.js?ver=2.1.7 HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Thu, 21 Mar 2024 12:06:09 GMT
etag: W/"2822-6142a88681401"
cache-control: max-age=86400
expires: Thu, 28 Mar 2024 09:47:38 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: EXPIRED
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/Chart.min.js?ver=d23451f89c2e168026b4a5a74d099dbc | 185.151.30.191 | 200 OK | 149 kB |
URL GET HTTP/2raymasterbatch.com/wp-content/themes/baumeister/assets/js/modules/plugins/Chart.min.js?ver=d23451f89c2e168026b4a5a74d099dbc IP185.151.30.191:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerLet's Encrypt Subject*.raymasterbatch.com Fingerprint89:27:2D:5F:7E:86:3C:BA:F8:90:90:3E:FD:74:F5:80:16:3D:3B:B4 ValidityThu, 28 Mar 2024 08:47:47 GMT - Wed, 26 Jun 2024 08:47:46 GMT
File typeJavaScript source, ASCII text, with very long lines (32023) Size149 kB (148686 bytes) Hashb0a9302ada737b28b8568da4ade05b60 37f9d625f7830382337e5aaf058d89ea8ace7a0a 7aa6a32502e1485be79262dfd1b94cddf2b6fd096c061536a37b40b1bcd72ea1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/baumeister/assets/js/modules/plugins/Chart.min.js?ver=d23451f89c2e168026b4a5a74d099dbc HTTP/1.1
Host: raymasterbatch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:41:37 GMT
content-type: application/javascript
server: Apache
x-stackcache-key: d26064e173
x-provided-by: StackCDN
last-modified: Tue, 27 Dec 2022 12:18:21 GMT
etag: W/"244ce-5f0ce3f63fd40"
cache-control: max-age=86400
expires: Wed, 27 Mar 2024 18:27:10 GMT
vary: Accept-Encoding, Accept-Encoding
x-endurance-cache-level: 0
x-nginx-cache: WordPress
x-origin-cache-status: HIT
content-encoding: gzip
x-cdn-cache-status: REVALIDATED
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://raymasterbatch.com/login.php?country=&iso=&online_id=913070a3b1b95b365df8616ea CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0 Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://raymasterbatch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:32:46 GMT
expires: Fri, 28 Mar 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 76140
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|