| | 64.34.75.145 | 301 Moved Permanently | 1 B |
URL User Request GET HTTP/2IP64.34.75.145:443
CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
File typevery short file (no magic) Hasheccbc87e4b5ce2fe28308fd9f2a7baf3 77de68daecd823babbb58edb1c8e14d7106e83bb 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /netTimer.exe HTTP/1.1
Host: cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.cynorix.com/netTimer.exe
vary: Accept-Encoding,User-Agent
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Sat, 20 Apr 2024 07:49:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/netTimer.exe | 64.34.75.145 | 404 Not Found | 116 kB |
URL User Request GET HTTP/2www.cynorix.com/netTimer.exe IP64.34.75.145:443
CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2130), with CRLF, LF line terminators Size116 kB (116110 bytes) Hash18dc6f5a4c7d43a93850c578a70ce157 3024f401db774f626ce29bb833aa9759379d63ed 0e888b38d4a53b0355b8a9a927e4e3be6bc1cf598f54699326173de4c668af0c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /netTimer.exe HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.cynorix.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: br
content-type: text/html; charset=UTF-8
date: Sat, 20 Apr 2024 07:49:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans | 142.250.74.106 | 200 OK | 1.5 kB |
URL GET HTTP/1.1fonts.googleapis.com/css?family=Open+Sans IP142.250.74.106:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (1572) Hash8494cb780c29806c002ddd96a62fb89f 60a75db7cd42b4f54484229e5f622f4e78bf3758 c042a5f128ea9d12107360aa8c1f4c5a8801d4907098715b04baa423349808cc
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 20 Apr 2024 07:49:12 GMT
Date: Sat, 20 Apr 2024 07:49:12 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/jquery.min.js | 64.34.75.145 | 200 OK | 46 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/jquery.min.js IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (32077), with CRLF line terminators Hash0e8b7d96265599258e88bff700adff2a 1a4d3936393fd3ec3470dbea7d428e053e07cef6 3ae5d8b5a2806b811378107313b19f0b05baae4b2bbe85e19e9cd223391a0fe3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/jquery.min.js HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 10:31:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/owl.carousel.min.css | 64.34.75.145 | 200 OK | 1.2 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/owl.carousel.min.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (3184) Hashb2752a850d44f50036628eeaef3bfcfa fba46353cf90450ef3d362a123f1e7af3e8c561e 521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/owl.carousel.min.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Jun 2020 10:18:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1224
Keep-Alive: timeout=2, max=100
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/style.css | 64.34.75.145 | 200 OK | 6.9 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/style.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Hashdc3a80c38ee7ff7cc2a877a60c7a4c19 9a260297ccd640758621bfb7780d62579eb6f6da c8a879f5081d51cf4dd9b9e346463f9c37796e2421d9bf8d747f09b179ca7962
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/style.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 11 Feb 2022 21:39:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6877
Keep-Alive: timeout=2, max=100
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/font-awesome.css | 64.34.75.145 | 200 OK | 8.7 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/font-awesome.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typetroff or preprocessor input, ASCII text, with very long lines (372) Hashc495654869785bc3df60216616814ad1 0140952c64e3f2b74ef64e050f2fe86eab6624c8 36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/font-awesome.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 16 Jun 2020 17:51:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8732
Keep-Alive: timeout=2, max=100
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/responsive.css | 64.34.75.145 | 200 OK | 3.1 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/responsive.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Hash058d09c801519567932cdc09a56cc7f9 b6aad578cff3e98c445622082da0bcab438656f9 ffbc6341ebaf837c9b34d73b883cf374cb93c9089aadbd189a623391a811a790
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/responsive.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Feb 2022 00:46:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3109
Keep-Alive: timeout=2, max=100
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/owl.theme.default.css | 64.34.75.145 | 200 OK | 612 B |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/owl.theme.default.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Hash6c830c91a0a08fca0fe883504abc7d2b 5193b985aa3f992ce7bad494b6ab519707c48cc1 9d7055ec6af6954d2df80c0ab274b4e4362dcd9f35a184d74ba923ecb0501df3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/owl.theme.default.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Jun 2020 10:18:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 612
Keep-Alive: timeout=2, max=100
Content-Type: text/css
|
|
| www.cynorix.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.14 | 64.34.75.145 | 200 OK | 10 kB |
URL GET HTTP/1.1www.cynorix.com/wp-includes/css/dist/block-library/style.min.css?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (27100) Hash2e7e1d1c1d4d446a1b6b63295757d859 27a1d9dcbdc4aff486016b5c9f3ece6ad0c028c1 8c626f0f9b5c109539b256b73e72c02b300a184f46b4535c2eb86599215c78af
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Wed, 02 Sep 2020 07:12:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10513
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-includes/css/dist/block-library/theme.min.css?ver=5.5.14 | 64.34.75.145 | 200 OK | 836 B |
URL GET HTTP/1.1www.cynorix.com/wp-includes/css/dist/block-library/theme.min.css?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (2218), with no line terminators Hash9bd313fbce9688ed85c407ad4d0a7c13 e1253db86329a7d257b2f653b288b425992a284d 5d5575c28819cc80d5cf47729e998387ddc2d510a6adf37ce5a19b8f2127ee05
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Sun, 23 Aug 2020 15:10:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 836
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/style.css?ver=5.5.14 | 64.34.75.145 | 200 OK | 1.1 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/style.css?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (463) Hashe41731bda45752ab1649387628613011 856272ddbbd4a25704513fefee9f6e10e94861d8 3ccd745a3f2e3864a8999d9ccc503be7d94a4c6b51aad61ec2eeb5ebf6697505
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/style.css?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Sat, 22 Aug 2020 20:40:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1077
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=1.1 | 64.34.75.145 | 200 OK | 2.3 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=1.1 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Hashba0c834a8479da973f6152865d49224e e6e6d4ceb2609329e81a17ff24a77e268c1cfcd0 97201fbb633fdbc1a8bbf2dfd7f1f0ac5fa8ada2c481b3fcb8e6bab9754d6fdb
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/blocks.css?ver=1.1 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Sun, 06 Jan 2019 02:46:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2307
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/plugins/easy-notification-bar/assets/css/easy-notification-bar.css?ver=1.4.5 | 64.34.75.145 | 200 OK | 1.0 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/plugins/easy-notification-bar/assets/css/easy-notification-bar.css?ver=1.4.5 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Hash1abe72538f4fddd53e49818c149cb8e7 e37ce54d6404b269a59593ebb5f4a8ab88beffff 9bff4d8d51604b7b5dfd603cdff84716bc02e06de471e4857444e092072b01fd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/easy-notification-bar/assets/css/easy-notification-bar.css?ver=1.4.5 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Sat, 04 Jun 2022 21:40:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1037
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.8.4 | 64.34.75.145 | 200 OK | 4.6 kB |
URL GET HTTP/2www.cynorix.com/wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.8.4 IP64.34.75.145:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
File typeUnicode text, UTF-8 text, with very long lines (12238), with CRLF line terminators Hash85ba98502516a7ff3cef1a22c25d1136 39adbeced0073ee569d7b07f5b731e82b4ad67b5 8cf2c9adab3f85bd46ac7bd56d5b1dd721c9768bff13dd4904904740ba85d457
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/ajax-search-lite/css/style.basic.css?ver=4.8.4 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 28 Oct 2020 05:35:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4603
content-type: text/css
date: Sat, 20 Apr 2024 07:49:13 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.8.4 | 64.34.75.145 | 200 OK | 2.1 kB |
URL GET HTTP/2www.cynorix.com/wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.8.4 IP64.34.75.145:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
File typeASCII text, with very long lines (10689), with no line terminators Hash67b065b8e6f849ae2e6b0bc78e1e4cae 2924eca4e0b03b627e3be745f1876f1b07559f20 f722a51ff6769d63ff002dfe67280bdb69fa3dd8cf71c91476d054aeae04d368
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/ajax-search-lite/css/style-simple-red.css?ver=4.8.4 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 28 Oct 2020 05:35:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2078
content-type: text/css
date: Sat, 20 Apr 2024 07:49:13 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/wp-content/plugins/team-showcase-supreme/assets/js/ajaxdata.js?ver=5.5.14 | 64.34.75.145 | 200 OK | 764 B |
URL GET HTTP/1.1www.cynorix.com/wp-content/plugins/team-showcase-supreme/assets/js/ajaxdata.js?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (1860), with no line terminators Hash811f963625eea2e227924e20ca2ae8f1 4e1fba9f16aa0bfd25eff43b0d60e3cb5f3b56ad 9f8b5e0ee0c303326a5d40d50ebc45c3b468a77afa14bc0a3bac90f13822044e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/team-showcase-supreme/assets/js/ajaxdata.js?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Sun, 23 Aug 2020 17:58:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 764
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/animate.css | 64.34.75.145 | 200 OK | 7.9 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/animate.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (460) Hash4b2af0a41eef75639dde95c23efd47db 26f4b70e8c3892c842d5000d59ab120a8c5fad1c 70c941a384137809113d33db0b4d68e31a85f711cdbfb5a2952564ac08fdc6e5
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/animate.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 10:18:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7915
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/bootstrap.min.js | 64.34.75.145 | 200 OK | 14 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/bootstrap.min.js IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (32033) Hash5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/bootstrap.min.js HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 09:41:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13657
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/custom.js | 64.34.75.145 | 200 OK | 659 B |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/custom.js IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text Hasha548d7106725fcdc2802cc72f701ca23 6816aea5133020821ca6c3c0812d05ae1ba3e1b4 b3f4578265f03f51ab32d271d0eccf4574295dc57095c700ddc5a79d81e6d507
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/custom.js HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Wed, 02 Sep 2020 19:05:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 659
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/bootstrap.min.css | 64.34.75.145 | 200 OK | 27 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/bootstrap.min.css IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeASCII text, with very long lines (65371) Hashec3bb52a00e176a7181d454dffaea219 6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68 f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/css/bootstrap.min.css HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 09:41:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/owl.carousel.min.js | 64.34.75.145 | 200 OK | 16 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/owl.carousel.min.js IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (31997) Hashf416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/owl.carousel.min.js HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 10:18:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 15806
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp | 64.34.75.145 | 200 OK | 46 kB |
URL GET HTTP/1.1www.cynorix.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (31997) Hash49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:12 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 21:38:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/global.js?ver=1.0 | 64.34.75.145 | 200 OK | 3.2 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/global.js?ver=1.0 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text Hashebbcd62ce678e0337cafc1e2d66c0cda ca1ecb4faebca10faab8c747d48ef3c1926fb1e8 c6d9599b5f75bd2619299f87d5b979f14955c35d2dd34050ff13ab0609297d7c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/global.js?ver=1.0 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Tue, 22 Jan 2019 03:38:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3224
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=1.0 | 64.34.75.145 | 200 OK | 449 B |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=1.0 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text Hash75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/skip-link-focus-fix.js?ver=1.0 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Mon, 14 Nov 2016 17:11:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 449
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 | 64.34.75.145 | 200 OK | 2.9 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text Hash16fb1664ddebf663a909c51d40ad7914 2308baa783d4f9ba97f18ace350b7033dcc3c2d3 d6a2ec240f8adc5052cb9df96a33199c65de4c58457de2aca485120f70e53c89
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/js/jquery.scrollTo.js?ver=2.1.2 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 08:42:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2886
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-includes/js/wp-embed.min.js?ver=5.5.14 | 64.34.75.145 | 200 OK | 891 B |
URL GET HTTP/1.1www.cynorix.com/wp-includes/js/wp-embed.min.js?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (1443) Hash7c5c36baa69fcdb57bd891cda90920b3 9d8b3df7a4fa2968403290d69a60b2eab20734f5 6a482d2d94c0d1bc6937a1759389d01b475e6b28a0d9b5d7eaa3f9cc8f59f3cd
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-embed.min.js?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 20:09:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 891
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/images/logobig.png | 64.34.75.145 | 200 OK | 23 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/images/logobig.png IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typePNG image data, 651 x 154, 8-bit/color RGBA, non-interlaced Hash2dd487f62502ed4355e26fa96c44dd8d e11c229d6c2fa868206b8dc9d3640cf6ed65a72e d969a7557ea636c64a255c0de0cdd387f158b8ecc3fbe4cf6eb22b254dbbcd5a
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/images/logobig.png HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Sat, 05 Sep 2020 09:48:56 GMT
Accept-Ranges: bytes
Content-Length: 23321
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/png
|
|
| cynorix.com/wp-content/uploads/2020/09/PNG_v6.png | 64.34.75.145 | 200 OK | 25 kB |
URL GET HTTP/2cynorix.com/wp-content/uploads/2020/09/PNG_v6.png IP64.34.75.145:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
File typePNG image data, 904 x 192, 8-bit/color RGBA, non-interlaced Hasha5d87d30ecc3161b19640fb32852afeb 9cf394a3d2a1e552ab13d7d9a8f439ebca27b83e 74a3d6531718fec9d7dcad92836306fb1fcf8af7ab617bdeb88ea73781413771
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/09/PNG_v6.png HTTP/1.1
Host: cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Sep 2020 19:20:51 GMT
accept-ranges: bytes
content-length: 25100
content-type: image/png
date: Sat, 20 Apr 2024 07:49:13 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.14 | 64.34.75.145 | 200 OK | 5.6 kB |
URL GET HTTP/1.1www.cynorix.com/wp-includes/js/wp-emoji-release.min.js?ver=5.5.14 IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJavaScript source, ASCII text, with very long lines (11272) Hash878184c5d285d4d52d926d36ef19b718 dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.14 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 08:03:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5589
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 | 216.58.207.227 | 200 OK | 51 kB |
URL GET HTTP/2fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 IP216.58.207.227:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 51404, version 1.0 Hashb904fcdf1c4c6059fadd6893a7bc7619 f41d1674f02616f03ef77d4e84b3ad8ba28a36fc 517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cynorix.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 02:08:09 GMT
expires: Thu, 17 Apr 2025 02:08:09 GMT
cache-control: public, max-age=31536000
age: 279664
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 | 216.58.207.227 | 200 OK | 51 kB |
URL GET HTTP/2fonts.gstatic.com/s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 IP216.58.207.227:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 51404, version 1.0 Hashb904fcdf1c4c6059fadd6893a7bc7619 f41d1674f02616f03ef77d4e84b3ad8ba28a36fc 517edd119c5b2719e6ac4b30bf1fd864a6395179a41d273c0afc0696e7495d8e
GET /s/robotocondensed/v27/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cynorix.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 02:08:09 GMT
expires: Thu, 17 Apr 2025 02:08:09 GMT
cache-control: public, max-age=31536000
age: 279664
last-modified: Wed, 18 Oct 2023 17:52:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/fonts/FontAwesome.otf | 64.34.75.145 | 200 OK | 135 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/fonts/FontAwesome.otf IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
Size135 kB (134808 bytes) Hash0d2717cd5d853e5c765ca032dfd41a4d 048707bc52ac4b6563aaa383bfe8660a0ddc908c 444dd4366615ffc4a16d012b2fa90137065d3ccb410fa6fd5e4ddd7b5e4ffcd5
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/fonts/FontAwesome.otf HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/wp-content/themes/twentyseventeen/assets/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Tue, 16 Jun 2020 17:51:08 GMT
Accept-Ranges: bytes
Content-Length: 134808
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: font/otf
|
|
| www.cynorix.com/wp-content/themes/twentyseventeen/assets/images/fav-icon.jpg | 64.34.75.145 | 200 OK | 3.1 kB |
URL GET HTTP/1.1www.cynorix.com/wp-content/themes/twentyseventeen/assets/images/fav-icon.jpg IP64.34.75.145:80
Requested byhttp://www.cynorix.com/netTimer.exe
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 49x49, components 3 Hash3d6abfc82555936cf4f793a884db29c7 a6c600ae39f1885fd64a157e4848daef1d40d22a 28d0fb35d44158eb5f87167d0d8904d24f41fb500a0417f132bfde54bbe7575f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/twentyseventeen/assets/images/fav-icon.jpg HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/netTimer.exe
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 07:49:13 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 20:24:56 GMT
Accept-Ranges: bytes
Content-Length: 3126
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap | 142.250.74.106 | 200 OK | 14 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap IP142.250.74.106:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash50ac902d5d3a000abd3371ae82b260f0 29828cbbfde8e1994f7b17e21a04b52769c7bbe1 4469c85b204e4e7ee4c55d4d544d596c74020bc5feec8afd8ea19dc350238acf
GET /css2?family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 07:49:12 GMT
date: Sat, 20 Apr 2024 07:49:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext | 142.250.74.106 | 200 OK | 9.4 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext IP142.250.74.106:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (9628), with no line terminators Hash4a3c6c51fc75e94394c3163a0ba7521f 8254554230effcbdba35b1635201fa6a3b94c1c1 074d2efd06ced6c312d9a1db360903dabdc9d47130048c2f0830ffbed4cfe2e0
GET /css?family=Libre+Franklin%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C800%2C800i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 07:49:12 GMT
date: Sat, 20 Apr 2024 07:49:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cynorix.com/wp-content/plugins/ajax-search-lite/js/min/jquery.ajaxsearchlite.min.js?ver=4.8.4 | 64.34.75.145 | 200 OK | 101 kB |
URL GET HTTP/2www.cynorix.com/wp-content/plugins/ajax-search-lite/js/min/jquery.ajaxsearchlite.min.js?ver=4.8.4 IP64.34.75.145:443
Requested byhttp://www.cynorix.com/netTimer.exe CertificateIssuerGlobalSign nv-sa Subject*.cynorix.com Fingerprint2C:F1:12:17:B8:58:C5:34:97:30:A3:A5:07:15:42:58:9F:B8:6C:4F ValidityTue, 23 May 2023 22:45:37 GMT - Sun, 23 Jun 2024 22:45:36 GMT
Size101 kB (101049 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/ajax-search-lite/js/min/jquery.ajaxsearchlite.min.js?ver=4.8.4 HTTP/1.1
Host: www.cynorix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.cynorix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Wed, 28 Oct 2020 05:35:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Sat, 20 Apr 2024 07:49:13 GMT
server: Apache
X-Firefox-Spdy: h2
|
|