{"report_id":"e8a46ab2-8bae-4fc7-8086-94cb31dedf7a","version":6,"status":"done","tags":[],"date":"2025-10-17T11:47:08Z","url":{"schema":"http","addr":"www.secure-bytnex.io/login.php?msg=6","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":0,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"final":{"url":{"schema":"https","addr":"www.secure-bytnex.io/login.php?msg=6","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"title":"Log In | Bytnex"},"submit":{"url":{"schema":"http","addr":"www.secure-bytnex.io/login.php?msg=6","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":0,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-21T11:47:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.secure-bytnex.io","ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"domain_registered":"2025-10-13","domain_rank":0,"first_seen":"2025-10-16T13:05:12.812726Z","last_seen":"2025-10-16T13:05:12.812726Z","alert_count":19,"request_count":19,"received_data":4241769,"sent_data":10332,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"secure-bytnex.io","ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"domain_registered":"2025-10-13","domain_rank":0,"first_seen":"2025-10-17T01:51:48.390341Z","last_seen":"2025-10-17T01:51:48.390341Z","alert_count":1,"request_count":1,"received_data":970246,"sent_data":473,"comment":"","tags":null,"fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/js/bundle.js?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"introduction_type":"scriptElement","is_inline":false,"md5":"9413aea676e11d8b38d1e12ee3845caf","sha1":"f2e16d3373db2399590d273201dfebe6e35d0393","sha256":"2fa43a59b456e909570d15eae3c69e2935c4e0b720f51933d593f1e03f671cfc","sha512":"744582c306e309fecd53684a80db5c974dbb15500ee326837752537e1d1ce7c01b20cfef84af4365d1c9de0a00183fa4e136d5c39bafc90ea5d9110db6509d1d","ssdeep":"12288:OIb36scIS0UOaUHKD+sxh1rUd/pfAwh8dkRtIuWMUjhy:O1scL0UOIxh1CVh+kRfWa","tlshash":"0a25198d7281b16243e731f5002f550fb3376a69a80a8018b169d8d97dbcd4a72bbf7d","size":970601,"data":"","first_seen":"2023-03-07T12:22:56Z","last_seen":"2026-02-13T22:27:06.562772Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/js/scripts.js?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"introduction_type":"scriptElement","is_inline":false,"md5":"6b5cbe0dc015bb1062a13afefd1969fd","sha1":"85ec51e85125212ce0929d126339d8a622dc8d58","sha256":"71119656a1d26b3df89b58923121e49c13032b71d83a23d198b2644c02fa42c0","sha512":"a9b74609b666943740a2eb80227bfaec430f2e69dd3f5a6f7ffb1fe25de7b65ff73f180ad955e246f5c7f9026c330c6ddb5f7510ae5908f6d123104a603ae6b6","ssdeep":"384:GeNZQtbPG7oABqovdTvDKF7Wb4YnaeTxQdsebQhB0V3qFcIvqQ0aJlA1jxPiVxvI:GUBqzgFBqtaciP6","tlshash":"f2d24e4974b71076857b346d86ef9409326a11078c0eea203ddc97849fc493e96fafee","size":29183,"data":"","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-02-13T22:27:06.582525Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/css/cryptex.css?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.182Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/css/cryptex.css?ver=2.9.1 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 26 Mar 2022 11:15:16 GMT\r\netag: W/\"623ef5c4-bf2f5\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":783093,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (996)","md5":"9ba38f8a1948d9c86ab241e84ff97f1b","sha1":"9254f1a4d30ac4b97ff35ae783d8e716e84696ae","sha256":"0c360a2134827b1b7ac3e3324f7a9742cf817291f9ea68a32334772a47c86439","sha512":"2ee79dba6baea6710ecb65d174a9a1c6300b4c64288f3e17ae24d1525be8ec7b4fc1f7f368d16655d086d9d25914f453ef51d47dfc5f094e3fa06b94297a2d01","ssdeep":"6144:FdIDp/KrB7OGB5OGIbGqlinElO9+Ok6LwhmR:6qIbGo6L4mR","tlshash":"c1f4c7fbb2612110226b839875d3fbe5573e6190e1558dbee492290cc3cc5dc39b6eca","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-02-13T22:27:06.580096Z","times_seen":21,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/css/libs/bootstrap-icons.css","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/css/libs/bootstrap-icons.css HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 02 Aug 2021 08:33:54 GMT\r\netag: W/\"6107adf2-c5a5\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":50597,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (50596)","md5":"7f0e202915665f005bcfe0717ef5054c","sha1":"47c8eaaabc9d0559821f46732e52a60be0231929","sha256":"f1cf982911abc2aa7915605d6759f1f32715a34a4ed567f37491514c8b909365","sha512":"9cf3559ddd45117606fbd821ea588b136dc064db3713831681519e1970d5fa373207471055a30ebd84f6894e36a5bd896c0d1232857ffe51c4f684b778def39b","ssdeep":"768:4Pcr8JUknDic76+yFojYJiWdCw5xCFhM9oJ:2Diu6+yxiWdCcxUFJ","tlshash":"12330be8e58d01e4f371c49fbf82635a31aafa3cd5852d68f24e111d5ad16240ac7fb8","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-03-27T13:46:27.93766Z","times_seen":23,"resource_available":true,"data":null}},"time_used":643,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":643,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Regular.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Regular.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 65916\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-1017c\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":65916,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65916, version 1.0","md5":"9feb0110b6dff9ee2b9ebd17f7a1aee6","sha1":"90bbe308a02d7cda492e3beb1a6091809b8f35c8","sha256":"8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920","sha512":"e5b4c7643a1e2f3c134d2a0a4e08922d01eedb5cf7f463e885d58167f438cb1745d16aca2e455733f59ac5b63d85d4a34efb37d86281fb51273569a3e35d7085","ssdeep":"1536:nAwBjS40rROWAAffkRf+aFDExB8+m+bHvYc3uezUAAxmn:AQh0ymaFDypmcHvhumUAA0n","tlshash":"0f5302d162117d6596ed003a427b7696d800df22f3baf2698c7fb9d3e2689c603c25a0","first_seen":"2023-04-07T21:58:55Z","last_seen":"2026-04-04T11:13:44.882283Z","times_seen":3912,"resource_available":false,"data":null}},"time_used":3061,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1948,"receive":1113,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/login.php?msg=6","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-17T11:46:41.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /login.php?msg=6 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:44 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 2098\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-powered-by: PHP/7.4.33, PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":7313,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"8e26a3371b8d123ca8f9673db97fda7c","sha1":"e7d90563fb95a3eb7c795bdbe33642fea5b4b2ae","sha256":"b71fd81aa29ab7af5c77f621d1b47149ccda54739814c0c739d0a1edbf96d58b","sha512":"03b9df8ec873b8db5deb96a82ade44a6be8adcff28931f51ad591cd2b22d0c1b30b026da8880234fc09b0612b4a6bbb401d53ec4173d2b791cf9e54b011b138d","ssdeep":"96:Ic/JX0/8ZeK1zRaSIgjc3Ko+YUAL3lkXH6qavZO5ccKh+iu:BQ8dhrakXNaicF+iu","tlshash":"dbe1642109f5087f1342c9a129bbf68aefe59927c51f8d50b1ee42c92fc7d81c8a3355","first_seen":"2025-10-17T11:47:16.737332Z","last_seen":"2025-10-17T11:47:16.737332Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1333,"timings":{"blocked":521,"dns":28,"connect":210,"send":0,"wait":290,"receive":1,"ssl":279},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.185Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/css/dashlite.css?ver=2.9.1 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Tue, 29 Mar 2022 12:43:48 GMT\r\netag: W/\"6242ff04-bf947\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":784711,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1000), with CRLF, LF line terminators","md5":"63935c693c760d5fb3cb5972056da033","sha1":"c6082051bd848dc2a8816e7cd207668591e79131","sha256":"ff467b9f364700973900b00e56a33bb14be77c1e7537b1598cf0ac1de051f6d1","sha512":"793a2723c6d5d372871e2c4325478a68cbaf082aee34780de8fc2fe8fd0854fa33c4887aa0f341fc5de3234412f3f80937405e62d4dfb6352bf30d58d26deabe","ssdeep":"6144:NdIG/KrB7OGB5OVIb5flynpsQkEI16Lwc:fIb5h6L9","tlshash":"8ef4c8fbb2912110226b838875d3fbe5933e6194e1554dbef492290cc3cd5d839b6eca","first_seen":"2023-10-31T09:01:41Z","last_seen":"2026-02-13T22:27:06.586702Z","times_seen":17,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":645,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/js/scripts.js?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/js/scripts.js?ver=2.9.1 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Apr 2022 18:49:07 GMT\r\netag: W/\"6249ec23-71ff\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29183,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (326)","md5":"6b5cbe0dc015bb1062a13afefd1969fd","sha1":"85ec51e85125212ce0929d126339d8a622dc8d58","sha256":"71119656a1d26b3df89b58923121e49c13032b71d83a23d198b2644c02fa42c0","sha512":"a9b74609b666943740a2eb80227bfaec430f2e69dd3f5a6f7ffb1fe25de7b65ff73f180ad955e246f5c7f9026c330c6ddb5f7510ae5908f6d123104a603ae6b6","ssdeep":"384:GeNZQtbPG7oABqovdTvDKF7Wb4YnaeTxQdsebQhB0V3qFcIvqQ0aJlA1jxPiVxvI:GUBqzgFBqtaciP6","tlshash":"f2d24e4974b71076857b346d86ef9409326a11078c0eea203ddc97849fc493e96fafee","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-02-13T22:27:06.582525Z","times_seen":21,"resource_available":true,"data":null}},"time_used":642,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":642,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Regular.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Regular.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 65916\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-1017c\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":65916,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65916, version 1.0","md5":"9feb0110b6dff9ee2b9ebd17f7a1aee6","sha1":"90bbe308a02d7cda492e3beb1a6091809b8f35c8","sha256":"8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920","sha512":"e5b4c7643a1e2f3c134d2a0a4e08922d01eedb5cf7f463e885d58167f438cb1745d16aca2e455733f59ac5b63d85d4a34efb37d86281fb51273569a3e35d7085","ssdeep":"1536:nAwBjS40rROWAAffkRf+aFDExB8+m+bHvYc3uezUAAxmn:AQh0ymaFDypmcHvhumUAA0n","tlshash":"0f5302d162117d6596ed003a427b7696d800df22f3baf2698c7fb9d3e2689c603c25a0","first_seen":"2023-04-07T21:58:55Z","last_seen":"2026-04-04T11:13:44.882283Z","times_seen":3912,"resource_available":false,"data":null}},"time_used":2150,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":910,"receive":1240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Nioicon.ttf","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Nioicon.ttf HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: application/font-sfnt\r\ncontent-length: 306836\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-4ae94\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":306836,"size_decoded":0,"mime_type":"application/font-sfnt","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 24 names, Macintosh","md5":"f7803d3faaecf88bd7ff907da365b7cc","sha1":"3228bd0568b6086272469297b9cde0df93cba3de","sha256":"ea4876d8402170e85b78be6f5860cb57d69f3cdac226919db880c752d6fccf1e","sha512":"5301e69c8e94cfb7f0caf2b19ed9031fe3b2fa5ad87e406e4c841600d2ff0b3b874e81e364f97fa3927cf2d9c79832ea6ef95706bc397c93ec3c6e3e0c16b2a1","ssdeep":"6144:bP4prnAoF1b1fhJMrsGVr9XKY+WCSWnENwUXs2VQb7TcnfhWiP2V9kPKeAUd93Vv:O1fQJl52Tw10hXe+bLgkVtjVdrPPg","tlshash":"c9647d6766afcfa9d403a7b7d42052b268fcd81cea3da60b65814c58e91bdb04dfc344","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-03-28T07:01:38.098275Z","times_seen":86,"resource_available":false,"data":null}},"time_used":3923,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":901,"receive":3022,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Nunito-Bold.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Nunito-Bold.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 43608\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-aa58\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":43608,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43608, version 1.0","md5":"28a6dc5d5990b88cf70a9faff2b32c73","sha1":"a34abc66b1a704d5ad70bfcb75a9939ffee1f350","sha256":"bbac27a12c4dbc1f1605db29f666da787ba3d0a16b6668526906d94a53307a0c","sha512":"96503282a5dc6e492e974f6ac5170e67a508e325369922867779b18b7221e8ced4a859375e4d270c4ffbc46e70958016d95eca0f6f15a4b22bccdef660e2e1d4","ssdeep":"768:9VvmRZHH/qIXFyzto85USEl4o6savszM0ROZdO28tteKHABL0wKCzeQ5dexHBTgv:2RQIVu5eCogsTAzjm5ABneS4xHoLb","tlshash":"3713f1078c091c98d9d3b916f99b7ef302da24b6fbd6a919f9363407813be4b06105e1","first_seen":"2023-05-04T19:11:18Z","last_seen":"2026-04-03T19:26:22.843474Z","times_seen":619,"resource_available":false,"data":null}},"time_used":1954,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1947,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/css/cryptex.css?ver=2.2.0","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/css/cryptex.css?ver=2.2.0 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: text/css\r\nlast-modified: Sat, 26 Mar 2022 11:15:16 GMT\r\netag: W/\"623ef5c4-bf2f5\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":783093,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (996)","md5":"9ba38f8a1948d9c86ab241e84ff97f1b","sha1":"9254f1a4d30ac4b97ff35ae783d8e716e84696ae","sha256":"0c360a2134827b1b7ac3e3324f7a9742cf817291f9ea68a32334772a47c86439","sha512":"2ee79dba6baea6710ecb65d174a9a1c6300b4c64288f3e17ae24d1525be8ec7b4fc1f7f368d16655d086d9d25914f453ef51d47dfc5f094e3fa06b94297a2d01","ssdeep":"6144:FdIDp/KrB7OGB5OGIbGqlinElO9+Ok6LwhmR:6qIbGo6L4mR","tlshash":"c1f4c7fbb2612110226b839875d3fbe5573e6190e1558dbee492290cc3cc5dc39b6eca","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-02-13T22:27:06.580096Z","times_seen":21,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":645,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/images/cryptex-logo.png","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /images/cryptex-logo.png HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: image/png\r\ncontent-length: 2158\r\nlast-modified: Tue, 14 Oct 2025 00:05:55 GMT\r\netag: \"68ed93e3-86e\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2158,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 178 x 38, 8-bit/color RGBA, non-interlaced","md5":"9deb21e741490070cb734f8c32f5a48a","sha1":"63845c829e8227703905748e3bbc84a3cfdc6eb1","sha256":"828ba8da49ed687cdd478835d73c1905ed2d535c6f8f1ba0d66315d026f5c833","sha512":"38b992a3682f4f2a001e46d48e7226090169c2b7c599b0cdde82d07c9f911fe8e1d4ceeef462f0961d085e88e1f2503af13398da1388cf488c13261d8a3513d8","ssdeep":"","tlshash":"73415ac468f6c46a8a4f43e1de344019a8762618a1d001e8807f0bbf47513ad082c7b4","first_seen":"2025-10-17T01:51:53.157928Z","last_seen":"2026-02-13T22:27:06.55957Z","times_seen":14,"resource_available":false,"data":null}},"time_used":853,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":642,"receive":211,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"secure-bytnex.io/images/slides/wallpaper/cryptex_wall_26.jpg","fqdn":"secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /images/slides/wallpaper/cryptex_wall_26.jpg HTTP/1.1\r\nHost: secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 969991\r\nlast-modified: Sun, 13 Jul 2025 19:32:04 GMT\r\netag: \"687409b4-ecd07\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":969991,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 4295x2862, components 3","md5":"1ab8644baf23ab0beae66a262932bc1b","sha1":"c7caffbb44dacb8dd2f78b477b6910b2bdf962d7","sha256":"97cc56a84f46407e2f4b3b0587f99342ded010a2389b86bc9fffb2f74b4ff44b","sha512":"a7c92a63ea2f8f66f3adb7c4bb7149d4b44f3e49c7a7913c6ec09721db5ea136b62e2357a640c0710a2fc7ed2cd59178a6b119bca90078476a1f37f5bef30c60","ssdeep":"24576:Ohbtj94AMoIPqjmw2rkUyoeeO3dFO5GZZ+H:gbZ6ArItJrLTbO3t/M","tlshash":"4d253366cb64fa79ce488fb480573925ff1369eec3a40e2345157573ac59aa1af0f340","first_seen":"2025-10-01T03:09:08.791238Z","last_seen":"2026-02-13T22:27:06.566005Z","times_seen":10,"resource_available":false,"data":null}},"time_used":3265,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":221,"receive":3044,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Nunito-Bold.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Nunito-Bold.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 43608\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-aa58\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":43608,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43608, version 1.0","md5":"28a6dc5d5990b88cf70a9faff2b32c73","sha1":"a34abc66b1a704d5ad70bfcb75a9939ffee1f350","sha256":"bbac27a12c4dbc1f1605db29f666da787ba3d0a16b6668526906d94a53307a0c","sha512":"96503282a5dc6e492e974f6ac5170e67a508e325369922867779b18b7221e8ced4a859375e4d270c4ffbc46e70958016d95eca0f6f15a4b22bccdef660e2e1d4","ssdeep":"768:9VvmRZHH/qIXFyzto85USEl4o6savszM0ROZdO28tteKHABL0wKCzeQ5dexHBTgv:2RQIVu5eCogsTAzjm5ABneS4xHoLb","tlshash":"3713f1078c091c98d9d3b916f99b7ef302da24b6fbd6a919f9363407813be4b06105e1","first_seen":"2023-05-04T19:11:18Z","last_seen":"2026-04-03T19:26:22.843474Z","times_seen":619,"resource_available":false,"data":null}},"time_used":1288,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":907,"receive":381,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Medium.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.611Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Medium.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 66792\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-104e8\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":66792,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 66792, version 1.0","md5":"50d01d3e6c994995bcaf829e63d53d1a","sha1":"c78884cb32e7b020971ffae746fe21d90502bcae","sha256":"998b049e731114e2fa35d65f23fc6e6e153249a4ef328912e3c7c49546e2d207","sha512":"9b8b97f7778e8a740de8be26d889fa93bf5984dc1e1dbc61bbe699f143186807da985e76f5352b9b13cd92b5c88aeeb344078e13f9e4b811ecc12f6ad5665c6f","ssdeep":"1536:Gx386A9UYEHdhGr1WuXc/ce3NV5rFE/2xEpmpFq8NVjd0yiPFsiQCqCaYl2G:GZ86qg4N947E2xIGZVpTEsOq/oz","tlshash":"2563023cf5c929a4c6d3215efe11f625b4d80af581518f0cdda90b096f7eec58b99413","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-04-04T11:13:44.86696Z","times_seen":3037,"resource_available":false,"data":null}},"time_used":2146,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":905,"receive":1241,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Bold.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Bold.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 65972\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-101b4\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65972,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65972, version 1.0","md5":"f3a02e2578bee50e620e515912278bc9","sha1":"168e9a9e4690ec3437a6a3087dd2f76fadc47888","sha256":"4d7dd6e02d849e181e51db84d9d230d369b8ce7412dbcee9d7d1d19ad8a16741","sha512":"005bafa483125a3ef78548818143102ff56d0be9e17bd9a386fec7ff3d6719f3b3ea6e2ed058616a7973e0d7b82b7b993112c4757e9870208151cbe2c429e038","ssdeep":"768:f1Xyo8kWfMqTSmVGijfjPcFWsyLe2HZaGTPhl7MDjFvtdEaCYK6lzdwUBgLXx0XT:flnzzYGij70jmaGdl7A51lsCaLXx0XYw","tlshash":"5753025bad0d08ece0d77e805addd0a237d2b248276cd92516a940fc34d28b1ed1dade","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-04-04T10:51:32.819087Z","times_seen":1412,"resource_available":false,"data":null}},"time_used":2139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":896,"receive":1243,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Medium.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.812Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Medium.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 66792\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-104e8\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":66792,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 66792, version 1.0","md5":"50d01d3e6c994995bcaf829e63d53d1a","sha1":"c78884cb32e7b020971ffae746fe21d90502bcae","sha256":"998b049e731114e2fa35d65f23fc6e6e153249a4ef328912e3c7c49546e2d207","sha512":"9b8b97f7778e8a740de8be26d889fa93bf5984dc1e1dbc61bbe699f143186807da985e76f5352b9b13cd92b5c88aeeb344078e13f9e4b811ecc12f6ad5665c6f","ssdeep":"1536:Gx386A9UYEHdhGr1WuXc/ce3NV5rFE/2xEpmpFq8NVjd0yiPFsiQCqCaYl2G:GZ86qg4N947E2xIGZVpTEsOq/oz","tlshash":"2563023cf5c929a4c6d3215efe11f625b4d80af581518f0cdda90b096f7eec58b99413","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-04-04T11:13:44.86696Z","times_seen":3037,"resource_available":false,"data":null}},"time_used":3058,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1946,"receive":1112,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/fonts/Roboto-Bold.woff2","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:43.813Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/fonts/Roboto-Bold.woff2 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/assets/css/dashlite.css?ver=2.9.1\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:46 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 65972\r\nlast-modified: Mon, 02 Aug 2021 08:34:02 GMT\r\netag: \"6107adfa-101b4\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65972,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65972, version 1.0","md5":"f3a02e2578bee50e620e515912278bc9","sha1":"168e9a9e4690ec3437a6a3087dd2f76fadc47888","sha256":"4d7dd6e02d849e181e51db84d9d230d369b8ce7412dbcee9d7d1d19ad8a16741","sha512":"005bafa483125a3ef78548818143102ff56d0be9e17bd9a386fec7ff3d6719f3b3ea6e2ed058616a7973e0d7b82b7b993112c4757e9870208151cbe2c429e038","ssdeep":"768:f1Xyo8kWfMqTSmVGijfjPcFWsyLe2HZaGTPhl7MDjFvtdEaCYK6lzdwUBgLXx0XT:flnzzYGij70jmaGdl7A51lsCaLXx0XYw","tlshash":"5753025bad0d08ece0d77e805addd0a237d2b248276cd92516a940fc34d28b1ed1dade","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-04-04T10:51:32.819087Z","times_seen":1412,"resource_available":false,"data":null}},"time_used":3057,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1943,"receive":1114,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/css/theme.css?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/css/theme.css?ver=2.9.1 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: text/css\r\ncontent-length: 153\r\nx-accel-version: 0.01\r\nlast-modified: Mon, 02 Aug 2021 08:33:54 GMT\r\netag: \"af-5c88f6df1e080-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nx-powered-by: PleskLin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]}],"data":{"size":175,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF, LF line terminators","md5":"8d0915e1eeea8511fe34275ff68666f6","sha1":"bced5301d3530b50269258edb62d0a4e58f12e5f","sha256":"10d0f050edd4accdb98ca99f3d93c108591db894d8baacaede986882ce973019","sha512":"15172d0f369e6ba8cb371ea97f668733e09e72bbb3cf8069ce2fa14160c173330203127a675193ceaa8389a01bf7363bb62500ffb324f6aa6e57065f5e1908fc","ssdeep":"","tlshash":"19c08c1c138342226ab34f8e22f42163e662b718a1c2a694f0830ca08e330b78548f0c","first_seen":"2023-04-06T19:06:49Z","last_seen":"2026-04-03T19:26:22.832725Z","times_seen":238,"resource_available":false,"data":null}},"time_used":645,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":643,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/assets/js/bundle.js?ver=2.9.1","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:42.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /assets/js/bundle.js?ver=2.9.1 HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:45 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Sun, 03 Apr 2022 18:48:59 GMT\r\netag: W/\"6249ec1b-ecf69\"\r\nx-powered-by: PleskLin\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":970601,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"9413aea676e11d8b38d1e12ee3845caf","sha1":"f2e16d3373db2399590d273201dfebe6e35d0393","sha256":"2fa43a59b456e909570d15eae3c69e2935c4e0b720f51933d593f1e03f671cfc","sha512":"744582c306e309fecd53684a80db5c974dbb15500ee326837752537e1d1ce7c01b20cfef84af4365d1c9de0a00183fa4e136d5c39bafc90ea5d9110db6509d1d","ssdeep":"12288:OIb36scIS0UOaUHKD+sxh1rUd/pfAwh8dkRtIuWMUjhy:O1scL0UOIxh1CVh+kRfWa","tlshash":"0a25198d7281b16243e731f5002f550fb3376a69a80a8018b169d8d97dbcd4a72bbf7d","first_seen":"2023-03-07T12:22:56Z","last_seen":"2026-02-13T22:27:06.562772Z","times_seen":25,"resource_available":true,"data":null}},"time_used":642,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":642,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.secure-bytnex.io/images/favicon.png","fqdn":"www.secure-bytnex.io","domain":"secure-bytnex.io","tld":"io"},"ip":{"addr":"111.90.141.149","port":443,"asn":45839,"as":"Shinjiru Technology Sdn Bhd","country":"Malaysia","country_code":"MY"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.secure-bytnex.io/login.php?msg=6","date":"2025-10-17T11:46:46.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"secure-bytnex.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 14 Oct 2025 00:00:00 GMT","end":"Wed, 14 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F7:F9:B5:39:27:22:E2:24:87:60:B9:B7:F8:5F:85:E5:C9:50:5F:BA","sha256":"B3:1D:59:5F:4B:9E:F4:53:04:0C:E4:70:09:34:AB:2D:91:50:58:5F:2E:80:D4:DB:FB:F4:06:D1:8E:44:46:F2"}}},"request":{"raw":"GET /images/favicon.png HTTP/1.1\r\nHost: www.secure-bytnex.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.secure-bytnex.io/login.php?msg=6\r\nCookie: PHPSESSID=v4pe7qmtt3sdb57ioe19mt6v78\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Fri, 17 Oct 2025 19:47:49 GMT\r\ncontent-type: image/png\r\ncontent-length: 34494\r\nlast-modified: Sun, 24 Jan 2021 10:03:04 GMT\r\netag: \"600d45d8-86be\"\r\nx-powered-by: PleskLin\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Plesk","description":"Plesk is a web hosting and server data centre automation software with a control panel developed for Linux and Windows-based retail hosting service providers.","website":"https://www.plesk.com","common_platform_enumeration":"cpe:2.3:a:parallels:parallels_plesk_panel:*:*:*:*:*:*:*:*","icon":"Plesk.svg","categories":["Hosting panels"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":34494,"size_decoded":0,"mime_type":"image/png","magic":"MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel","md5":"3ff4765676b13bde4207a38805d69af9","sha1":"968420b5e769416bbc39c385d22ba345a609696a","sha256":"12884bdbb5156e59daf6852f8e5b0484e8860a40f795920b138c28e9ba2490f7","sha512":"b48f441bd393aa53945005359acfcefd9e4087354562269c5303b3bfc06bb26db90ecc8e1e8416037815f309de4f26bcf03512c6a910cdbae32a98c8dfd6a468","ssdeep":"192:/5SJIDcutd0cIytnV3y5g7+40WrP0umQPaX4fEz3rau1reoZSeHrVQiTU1oyzauo:hSZubIylV30g7fRSQ50auL9TyzkAc","tlshash":"31f2a719e0c96bd2c90e02bc2b4f45a58c635cb3c59d97c32f73a4be29953b11acb6d0","first_seen":"2023-08-18T05:15:30Z","last_seen":"2026-02-13T22:27:06.584699Z","times_seen":18,"resource_available":false,"data":null}},"time_used":1448,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1418,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-17","alert":"Sinkholed","trigger":"www.secure-bytnex.io","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}