{"report_id":"d679c5fe-aebd-4fff-b880-bc84d94afa4c","version":6,"status":"done","tags":[],"date":"2026-05-15T20:07:10Z","url":{"schema":"https","addr":"3riversmyb.com","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"3riversmyb.com/","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"title":"My Bank","dom":{"size":983,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (982), with no line terminators","md5":"a0988e6c14277f36d40158afa77ab5d1","sha1":"45800d07e22772766fd1c5d2f5536ad9c636f1f7","sha256":"89b0aba1c273796a37a4ddf7ad8a6ce0d5bef5c80855a9c0f98cfb3da10d46c4","sha512":"db5fac564babf44d895a7d78e73c39d93acc23c376f9ed9d02b55b2c0a581cb220189f07528e4d47ebd4cbb708daed8f78aeda6d808ae237df6598f1699b974b","ssdeep":"","tlshash":"4c1121729094241e9352d1d8e0e0377da3c2c40ccaa28ce2ba6815b2f2c4b36989b5fc","dom_hash":"domhashdda2f72fae377190c818cc3070d0de92","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"3riversmyb.com","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-19T20:07:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"3riversmyb.com","ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-04-24","domain_rank":0,"first_seen":"2026-05-07T19:56:54.800407Z","last_seen":"2026-05-07T19:56:54.800407Z","alert_count":312,"request_count":52,"received_data":3157520,"sent_data":24458,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"jQuery UI","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]}]},{"fqdn":"www.gstatic.com","ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":146047,"first_seen":"2012-05-29T15:36:17Z","last_seen":"2026-05-10T22:52:08.295618Z","alert_count":0,"request_count":5,"received_data":68164,"sent_data":2666,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.google.com","ip":{"addr":"172.217.20.174","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":609,"first_seen":"2012-05-30T01:30:32Z","last_seen":"2026-05-11T16:17:05.778053Z","alert_count":0,"request_count":2,"received_data":84255,"sent_data":872,"comment":"","tags":null,"fingerprints":null},{"fqdn":"translate.googleapis.com","ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":6317,"first_seen":"2012-05-31T07:21:21Z","last_seen":"2026-05-11T11:48:07.434878Z","alert_count":0,"request_count":6,"received_data":426447,"sent_data":2988,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-05-10T22:17:57.86744Z","alert_count":0,"request_count":5,"received_data":116709,"sent_data":2539,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-05-10T22:20:44.526759Z","alert_count":0,"request_count":1,"received_data":10586,"sent_data":458,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.google.com","ip":{"addr":"142.251.153.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":22,"first_seen":"2015-05-10T13:11:19Z","last_seen":"2026-05-10T22:41:39.091246Z","alert_count":0,"request_count":1,"received_data":739,"sent_data":442,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/jquery.nice-select.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"605b2dd672a31ce82c1e065fe2d50e82","sha1":"0e877a32ea82a69623b135bd442e0ea5feaeb95a","sha256":"f936d8af44285700e9ba3aa9788ede4bf8644bffa92d55bb95012c3e58ab79ab","sha512":"c83be3784f8b7dce1fa6c3c60f9afd9a1bbbe78a2128e8f436d98c74a7b5489fb290efcd9264d0b7b5ab0a2f28a26b4df0f24bc2c3ec6c8dfbd7fab3dd6fe8bb","ssdeep":"","tlshash":"9b81101a72d121b294ff30a32a137045b236582be569c5067c5d82f01f9ec30abf6f8a","size":3980,"data":"","first_seen":"2024-10-11T08:18:43.376315Z","last_seen":"2026-05-15T20:09:18.726309Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/wow.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3f3d63e2feea51da5ea907e80e74d75d","sha1":"ca546ef8e982c4b9d1ad43ad38fc702d0cb1d873","sha256":"1041568a299093ef168fd78f8b54c27d1cf0cdfae8e870de0769ba1174c6bc05","sha512":"20d9a51ac9b5ec340c4b9a5053fc35cf0c1e29514d8aa41d7f45f0f13270f64416f9652efe7aae63b0bef7bd4637f5d56667a8aff8ac0d61f88bb50fab0b40b3","ssdeep":"192:tmEE6yAmu6qUxbU5C9nrr1GkEPIAeJ3KO4poIJ:EEE/Amu6qUxVBxGkAI///IJ","tlshash":"93f1baa5374a70718e9b6176c92f0202a532256e74d4c8ec747cddd4aeb4a29336bf3c","size":8156,"data":"","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-05-15T22:00:54.876009Z","times_seen":1317,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/bootstrap.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2393b5c5354fb9cd89f80c816c547fd9","sha1":"70898d2ccb812ab708ceafc80aaceed98e37095f","sha256":"154cb45e3be1c979811fa21335ab2bcdd4c63e71625b7470a874cae36a8b9630","sha512":"f38e9bed6810fd71187e14982421118cc5768646b6ca48932bda947b222c3c3ad0025284899769ddd3248fdae8b5c3daf2970ae66399d5eb26153ea1ad2e7435","ssdeep":"1536:tp+1ZTPR2t4tXbih05ve8/pwgrEpc9t0vSAIAxCO:MFRIpk0vSAF","tlshash":"1273d6493254b87309ee55a68037460bf3255994b14b802cb9bdadde2b3dc8272b7f78","size":78744,"data":"","first_seen":"2023-09-09T14:26:11Z","last_seen":"2026-05-15T20:09:18.717511Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/jquery-ui.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ea2a1b1b523a029d725ec34f722acba","sha1":"c8197cd3348dc1fc3fc7dc257cdd6f58f4f78f10","sha256":"4aa1fd822c88873eaa291a7c2abdd692a57fbf9327c0dd7a784838e19d70cf13","sha512":"80910ddf67e83ec9b0242b97359b98d17ba9a92156bd0e705f9bf1fa32f8d5842f5f18d73ae98e6454e9d321e7fa6c8b75b81f0b0966016dec92e94a981e5171","ssdeep":"12288:pJemHFgym/blyHCcmMw/W/EE+abQRbLrVhDdRBj:qlyHCcmMw/W/EE+asFhDdRBj","tlshash":"51b4a6c9f39c265a857a32595c2e42cdb23c8075e60058bfbc5d59dc29a883c43bbf79","size":528735,"data":"","first_seen":"2025-08-04T10:13:59.485457Z","last_seen":"2026-05-15T20:09:18.730851Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/slick.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5f8f4aed010e1afe499184d8197309f9","sha1":"097f6a1b4f115e9b6ebefa70d76d830733bcc9ba","sha256":"0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4","sha512":"01c7606b23491608bdff75c6e6ef468155d948ba492acbf74c1f8af91614832ee0655dd96ae7c2cb70b14fd608bc5987862f57e22c71d471454577ceebc0a87e","ssdeep":"1536:lXWVBuGGI2R7R+FXDyMibroAPoJATv2UsWNuJ:lXWVLGI2R7R+FTyMibroAwJATAJ","tlshash":"ff93ed0b55e6131294a731bd6bdfc028b3ba91275504ed9cbccc4385afd45288feabe4","size":88955,"data":"","first_seen":"2023-03-07T01:06:40Z","last_seen":"2026-05-15T22:07:23.254849Z","times_seen":17416,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/_/translate_http/_/js/k=translate_http.tr.no.J5Ydo5S004s.O/am=BBDg/d=1/rs=AN8SPfoBcWPU1a3d7LjKfHwwWAdppdEvPg/m=el_conf","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"1c13d7d8a1e0f42452eb0e1a6cc5c19a","sha1":"b743d04adc898d8ed23a926acd3f724b6a7c9e03","sha256":"b17a7104355225048712a05fbde9a1b65a5c8374818a5f881b00af088541867f","sha512":"97c8a981668c959f13bb9e4a4e3a17fd14955f9f3da901d6992996a54c5acfb03a46fd828838c5e55035873bc556e9ab9cc295e3d04fe7e389abda9bc62f9046","ssdeep":"1536:Xm2R5t/BC65TL5kZ6bUaBoq3KxPGF1RbjmYBCKucbR9xGiHwNWpe:Xj56Fq3KxAFCO3GiZe","tlshash":"c483b8ccb6a574a69357f5a5412f000eb23f68dde8084cacb288d8e1adf4949453bf7d","size":81948,"data":"","first_seen":"2026-05-15T20:05:15.435941Z","last_seen":"2026-05-15T20:56:13.390477Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:srcdoc#208","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"888a21ab7fc56d220a59dd25a83b18b6","sha1":"3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188","sha256":"18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e","sha512":"3dd8c3099c3300b3f74ffbe65e93e383d5c31087fb362f08bb241107c1061ef7dc8b61113851723a8588b54465c38056721341402f6a0072adce178ed3daf86e","ssdeep":"","tlshash":"b73147cdbbb7e0554272209a992f860bf17a2577981cd050e555ccd0fc70e9b447de14","size":1713,"data":"","first_seen":"2025-06-11T00:07:11.79824Z","last_seen":"2026-05-15T22:25:50.244449Z","times_seen":33841,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/jquery.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-15T22:15:20.779913Z","times_seen":128577,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/main.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f67d2df475edaa32630fe6fe5676ca01","sha1":"8a57dd51698509136ad3263c45f9517dd089d719","sha256":"4c3e2acc3de96a41deab892916f0da28e3b9d86d197e1199a5e29d55eced95fa","sha512":"fd6ee45ba2baf977bea9d4092ffcc1c30ecbcb02a6b988ed038a673c74e23bd9efa824a1b0c10c3f62cf6fb29ec97a55756fb233e11dc847af75b4a3e91662df","ssdeep":"","tlshash":"af41bb18b4f2341020fb7074db9f52402a052017834ace50bcbeabde6f542b886a57af","size":2023,"data":"","first_seen":"2025-08-04T10:13:59.439895Z","last_seen":"2026-05-15T20:09:18.731733Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/fontawesome.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"dd75ad847be1558e4ce448fad63e0b3e","sha1":"51b28b4a950e9aa5bc918362df705c3fbc6caee4","sha256":"489409fc515812957074907899e413ca7d0958649eda1af9783b7b1a962f4834","sha512":"1e04935f600df96bde6c881d8c59c81ce881876b6fca0161e581cda4e6663d59e8d42f9fb65154772ff8401752e23f0dbed015623dcb7e6c4e890ef70180049e","ssdeep":"1536:5ZkVIXAM0o+iFhkUcKD8mVIH6UifcSS+AVaKEhgXMWZHV8VC:yUFpcA8m3cSS+AV+hCF","tlshash":"0083835c9de361a25e13703d8bef4508b275d2032818dc55bd8ce2919f6ca2c52f6bde","size":83773,"data":"","first_seen":"2025-08-04T10:13:59.470744Z","last_seen":"2026-05-15T20:09:18.718415Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"44391953c549bc0170a9b078ae8270ac","sha1":"021fee076a7bfe021b2dd5bf987a2179d6311f9e","sha256":"b5954b3941ff92c9b4788a58527eff2a8b96626e2b69ceb68fdc32d3d6519074","sha512":"cbfbf3b937683fe261e5a0fb5ef58c4be748d19a0877750d90d1a27784c1a589eeaa41b1e791f8c1dc21836dd1eaeba03304cf0b1cc64dd196c3f9a7e62973da","ssdeep":"","tlshash":"09c04c47b571554a0496f109d387448c7168850a453a4e25365960ca7fb3f9d174d1ac","size":148,"data":"","first_seen":"2023-03-08T14:53:07Z","last_seen":"2026-05-15T20:09:18.766518Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/plugin.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f07c98f882a9fed613b1766efec93939","sha1":"ca706d9af7a454f71a35aebd7ec69706a473ce94","sha256":"3fe94d7de93317a24c24f58ccba75ca44a1646caa87926af39a9583b2812fdc7","sha512":"c4460ffde31192283b92b949fd7e616182ee3a91385ed2f16fdbcef01d2038ead2719b77b7fe96e5fef86cc28b516ece1fde419ba0901f2336b317f5e0cf3fea","ssdeep":"192:y/cNQyaLhDcNJa/LGhDcNJalh6cN/ay7hDc/hDcNTaxhDcN6yKh6cN6y2gB6cBUQ:y/cAhDcWLGhDcQh6cbhDc/hDc+hDcShB","tlshash":"da22224a54915133022391bead6bd35272e765038eaa7c10b7ec12844fad87d37fcaf9","size":10371,"data":"","first_seen":"2025-08-04T10:13:59.515755Z","last_seen":"2026-05-15T20:09:18.760892Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.J5Ydo5S004s.O/am=AAAACA/d=1/exm=el_conf/ed=1/rs=AN8SPfp9kUudaw1ulzJ6ulh6qwmK1UutdA/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6891c31a5a2f4ed015baac4b8ef6af18","sha1":"78e3b3dbda9e8da48be3aa450d70b07f8425ad29","sha256":"c403d4b45232885d921caabac303ac7ca86802f1eda84ee3fc0e22bb799754d3","sha512":"813ef52764583851542c3cb767af4f7b4ad1824b147566181be857bac4cdc5962be2418ddf18d371618c2ac78de8470c26d099195633dc05052d3a6808e749f9","ssdeep":"3072:qqFlY023LyM3AstLl8qYCTVuPJHk9P2uvFqgpHdzOCL/ITbEEXQnioigy7Q:003JEwEdzuToEXQ9","tlshash":"5694e9d9b2a374529262f8e1e07f0057b53dac5bb4484cacb249d8d66eb08095273f7f","size":419568,"data":"","first_seen":"2026-05-14T18:32:40.231546Z","last_seen":"2026-05-15T22:27:05.290297Z","times_seen":312,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"050f015b716da191bccf7489d8932210","sha1":"003573f29a421cc7d330c512287149eaa1aad8d7","sha256":"003efd94027836b8352483f3349548b8d6a243a7d424720c69b2c9cb52f3fb36","sha512":"71d3179ccada820d11d841dd77484780b6b0ab3834498272e7f49b84ca1d6870c9fa8f6a0c4c86c1a35ad9a51955d1a7ec2cd38c39f9e2b71127970fa44e1574","ssdeep":"","tlshash":"49511d61606ca01b9513c5d1f8a23eeef0de0068c77568d07e1c29cfebda8bb049716e","size":3011,"data":"","first_seen":"2026-05-12T00:53:06.806578Z","last_seen":"2026-05-15T22:34:56.487497Z","times_seen":32,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"579bcb88f2082f515c1f86a87f9c0202","sha1":"acbd5e57260837eb464eb2b8fe572a70ceb50fa3","sha256":"e8d4219c21a1a002fbab59961a3755b46eb1264ba1a59d3af9bb78ec38556372","sha512":"e7ff4f95e129c50d88a651e2e52f0ad4c924ce5f98d151c444d7d106ac50a4d50556444b5281478acae99134242060d5badc4395178b8104693735bd981108e2","ssdeep":"","tlshash":"18f0dcb30135e819c282c634f6d469bee203c2108a586ca5736c00baf2c825e80cfabc","size":470,"data":"","first_seen":"2026-05-11T21:03:39.096991Z","last_seen":"2026-05-15T22:11:28.102553Z","times_seen":215,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"5ac1f600eaa3a490dca704c80eacbee5","sha1":"69942bd789011afa87f74b7e1f677ea532d79e55","sha256":"6e7a49bd5e898858257b9739d874343d547478fd9622c58ab53ba390bf82dbb7","sha512":"b68d171529f3d25ce2b1a1b38bc3c4a2eaafadee5ca82d23429731cb73dad55a84dfc72dc08f31b93c66e2b8e16f15b2ef52f535789b95a24a1af4f657a7dba7","ssdeep":"","tlshash":"86f0dcb30135a819c282c634e5d469bee203d2108a586ca5736c00aaf2c825e80cfabc","size":470,"data":"","first_seen":"2026-05-12T00:56:48.741613Z","last_seen":"2026-05-15T22:42:14.978947Z","times_seen":204,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/savings.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/savings.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:42 GMT\r\netag: \"67e9deae-8f0\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 2288\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2288,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"90af00fe0aeec81ff5c570bb2545fffa","sha1":"8a0ba5ce2c2f47dce34a1f4f2669f4ce036275b9","sha256":"3268c6ca073553721af6bf5f7d90c440f1f7ddc39bf0c3b305d6a24f9d4bf5e1","sha512":"2acb7d47b66f92e9593bd69ceb175c79dc9fd4fcb3a665d737a32333648b36bfcdca8e7bb424d58c892c0c5d9dc992b96c52728bbf4e2ab68da1a50b0115c3c8","ssdeep":"","tlshash":"61412ddc556c46068848ad13124767eefe623e0c6d49918130527f0252f0fd1d9c5e6b","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.724867Z","times_seen":19,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":317,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/personalized.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.076Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/personalized.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:32 GMT\r\netag: \"67e9dea4-bf58\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 48984\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":48984,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 421 x 422, 8-bit/color RGBA, non-interlaced","md5":"e293965eda982b97db55ebb592428e55","sha1":"6b5bbedfc34eadd5465a95192a55e18f3a2580c3","sha256":"1e7ea6c9c3b5da54b824011b3de5bff240c4e1f5992f0150e04f181a6029feca","sha512":"ac3488ac456aac5c6e3833d2ceaa6b62f169479ebf095e9ebe3075c6ead176738be6b48921bb31f9c4d4be114f9834f598b4f1deada75698660b347af5be047a","ssdeep":"768:UuQQPWXRr5Mrun5fk64G82mXNfCQrBKFwsbasQfd4oVaqlyuRhdrwqjUwtYQg9:g7XRrSy5MUQ9fXrBlsbu/P3dz09","tlshash":"cc23f26edf005372d282c653bb752c90f16240c7a6a57a4ba6f5b09f3ecab0c7851d9c","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.765686Z","times_seen":18,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3967\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 11 May 2026 17:44:53 GMT\r\nexpires: Tue, 11 May 2027 17:44:53 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 09 Apr 2026 01:12:55 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 354116\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20284,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20284), with no line terminators","md5":"fde4f72b90fe807270db3c332dd058df","sha1":"7ef4d70af01c38a7f80a7650be25f63aff4ba751","sha256":"ab31c9be358d2107fc1158434c7aeaaf15f82e3e405ed67ab236b5ac232ed159","sha512":"9bef39350af557afeb10cb71068426ab28befaf5295359954787be06a5ce0993d69e8f5018a5a17c44311d294dd1a87a6f82edd0f5743df0149b8e4e53061695","ssdeep":"192:nvqx/EhZINcrXsfg0SgG8CqA3uku9SJFzvQVMbnUIfIxIVVpTrecfzPtcmt4v78l:gMF8Sb3i0JFzourUqWMVpTrdfzPtcBG","tlshash":"c492872057aed01967efa82364d36dff71d444db90123eeaaf5a7352cd821f231ea214","first_seen":"2026-04-13T20:43:22.641436Z","last_seen":"2026-05-15T22:25:50.199029Z","times_seen":6426,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":16,"dns":1,"connect":8,"send":0,"wait":9,"receive":1,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/Rene_Community_Focus.jpg","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/Rene_Community_Focus.jpg HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/jpeg\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:32 GMT\r\netag: \"67e9dea4-1b368\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 111464\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":111464,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1990x1326, components 3","md5":"831894c19f51d42b8b626b5990cdea49","sha1":"2dd4d1919483a0686187328c9ed128f2d6d08e45","sha256":"975ff049a1e0fe62b7465b269465c40339d070ab9645a16824864e8203863325","sha512":"6895eff3250254b5eda885ea4de3b5d6e1223e897415ebf92a69f0be8f79265703c915ccf23d7bb26881a3d03de73e69d0bc92c96311a912ce16a1ad283e1405","ssdeep":"3072:bDKStJ3FQToZ96O85tV0P4DCapWtgMuSCg:bDbt+O810P4zpuuSCg","tlshash":"8db31203f9c91bbfc15781bd933e8f08eb15ed20a6917838d1cba4ab5a9724bcd05467","first_seen":"2025-08-04T10:13:59.458326Z","last_seen":"2026-05-15T20:09:18.739447Z","times_seen":4,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":216,"receive":102,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/jquery-ui.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.081Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/jquery-ui.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-8115f\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":528735,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1004)","md5":"8ea2a1b1b523a029d725ec34f722acba","sha1":"c8197cd3348dc1fc3fc7dc257cdd6f58f4f78f10","sha256":"4aa1fd822c88873eaa291a7c2abdd692a57fbf9327c0dd7a784838e19d70cf13","sha512":"80910ddf67e83ec9b0242b97359b98d17ba9a92156bd0e705f9bf1fa32f8d5842f5f18d73ae98e6454e9d321e7fa6c8b75b81f0b0966016dec92e94a981e5171","ssdeep":"12288:pJemHFgym/blyHCcmMw/W/EE+abQRbLrVhDdRBj:qlyHCcmMw/W/EE+asFhDdRBj","tlshash":"51b4a6c9f39c265a857a32595c2e42cdb23c8075e60058bfbc5d59dc29a883c43bbf79","first_seen":"2025-08-04T10:13:59.485457Z","last_seen":"2026-05-15T20:09:18.730851Z","times_seen":4,"resource_available":true,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":488,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/main.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/main.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-7e7\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 637\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2023,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"f67d2df475edaa32630fe6fe5676ca01","sha1":"8a57dd51698509136ad3263c45f9517dd089d719","sha256":"4c3e2acc3de96a41deab892916f0da28e3b9d86d197e1199a5e29d55eced95fa","sha512":"fd6ee45ba2baf977bea9d4092ffcc1c30ecbcb02a6b988ed038a673c74e23bd9efa824a1b0c10c3f62cf6fb29ec97a55756fb233e11dc847af75b4a3e91662df","ssdeep":"","tlshash":"af41bb18b4f2341020fb7074db9f52402a052017834ace50bcbeabde6f542b886a57af","first_seen":"2025-08-04T10:13:59.439895Z","last_seen":"2026-05-15T20:09:18.731733Z","times_seen":4,"resource_available":true,"data":null}},"time_used":527,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":526,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/card-bg.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.555Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/card-bg.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-df0a\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 57098\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":57098,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1069 x 1127, 8-bit/color RGBA, non-interlaced","md5":"af69d890e09df0e98731bfb2fa8001c4","sha1":"abee941e63f6b43e35a480fd1e7f1a789455a92f","sha256":"0cac283f260e04201577749e9199037e6e63bdfeae4643e397dcc7033a5afdc6","sha512":"8af25300b289b8a3e5ec81379c8788be19b0c3c6c22a41218ccca54d3b8d4ca41260c1cc1bf306e47098d5fa0c73f415125373fc0828a7893d555275f747d457","ssdeep":"1536:Nl4tkqmkfj4HIflDE7xPaZsNrO6xmEWATVrt00kekV:rHofJsPmsNSumXATV3RU","tlshash":"534302b828250e25cfcd95bb95aceb1c5531391320de3d701a35fd3e7c7a8870e98a19","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.70815Z","times_seen":16,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/jquery.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/jquery.min.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-1538f\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 31287\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":86927,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-05-15T22:15:20.779913Z","times_seen":128577,"resource_available":true,"data":null}},"time_used":488,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":482,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/slick.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/plugin/slick.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-15b7b\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 16075\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":88955,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"5f8f4aed010e1afe499184d8197309f9","sha1":"097f6a1b4f115e9b6ebefa70d76d830733bcc9ba","sha256":"0aaa4cf927b0e3631cffbe62f6786810aa65348483cd950e49f634a0881b16b4","sha512":"01c7606b23491608bdff75c6e6ef468155d948ba492acbf74c1f8af91614832ee0655dd96ae7c2cb70b14fd608bc5987862f57e22c71d471454577ceebc0a87e","ssdeep":"1536:lXWVBuGGI2R7R+FXDyMibroAPoJATv2UsWNuJ:lXWVLGI2R7R+FTyMibroAwJATAJ","tlshash":"ff93ed0b55e6131294a731bd6bdfc028b3ba91275504ed9cbccc4385afd45288feabe4","first_seen":"2023-03-07T01:06:40Z","last_seen":"2026-05-15T22:07:23.254849Z","times_seen":17416,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":527,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/preloader.gif","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/preloader.gif HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/gif\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-49bc1\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 302017\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":302017,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 800 x 800","md5":"7b926e0e3ff4e38bba110ae354e71ef8","sha1":"b2bfc4ca6694e1e2d3f58ba7b0bf0a28e9e283ba","sha256":"375351c3b853941cd659a5e02535b3611dcee4b441d027c90de2cbff5268ff1a","sha512":"8fb511741c71689d9c907ba760e4244ef78e503bd953b65c815705956e3b4a03622c0b5c882b7f920cb9630e82a8cad49d74d0b4f777aa4ee840c1b02f2c8a49","ssdeep":"6144:nwilMFynA1NlbjeM4QQs2tEoJPHkU0JB5J/H5JY+SpVzHGV6yDXB:RaFD1NlbjeM49s2GoJqJB5J6VzH/CXB","tlshash":"925412e7a53845da612938a81b0994bf447e8cfed496f33a14dfe1c7e28623584c0ed3","first_seen":"2023-07-21T16:38:43Z","last_seen":"2026-05-15T20:09:18.719973Z","times_seen":23,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/momanddaugther.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/momanddaugther.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:38 GMT\r\netag: \"67e9deaa-99d36\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 630070\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":630070,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 754 x 639, 8-bit/color RGBA, non-interlaced","md5":"cd180b22042a660e02d3ba78906924d7","sha1":"0ca7f0906e8ef0d8e277848c8d889283fdf51fdd","sha256":"34f9fe4ca0d395a2f48fefc613cb21b875b989124e43662e6a828bccc6257ad6","sha512":"582a83ed750510173d882f54a79d177a3b9021b5727d3d97d526b015b8cea4b53b5ad5dee277a88915b385a24d56b384a0005198af5ce222ce8527260b4c1ecc","ssdeep":"12288:rRiwlz/SdUAEUesUcQ5I1eeMVwgm2r8N19f92YDrx8PVv9d87c:rJsURHsaIoeMVAJ1DtmOc","tlshash":"32d423512c357638cc9c9f358a16ab94cdc6e524a573fe2a730d713b6d82dcce291a83","first_seen":"2025-08-04T10:13:59.475565Z","last_seen":"2026-05-15T20:09:18.757669Z","times_seen":4,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":92,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/webfonts/fa-solid-900.woff2","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://3riversmyb.com/static/banking/home/css/fontawesome.min.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: font/woff2\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:50 GMT\r\netag: \"67e9deb6-13174\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 78196\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":78196,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261","md5":"e8a427e15cc502bef99cfd722b37ea98","sha1":"a9922842a120a7f1eaced667480c5e185a106d69","sha256":"d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef","sha512":"113775748a4166c07e58c26cf6db7fed473732dc6124b8ee0f0dcc0d6439eb2ab2c5d9e01c67324fdf9de4105349cf30cc5796a0b0e0ce9a08f337b9d4e10b7b","ssdeep":"1536:1iGQV8Q8UOUMUd5UY3qyCkHQCCz2LL1F+u3MHLGxe3U:QVWuF33qy7HQchFz8HnU","tlshash":"3273121cf567643ef6a8e05f3c38256d4fd5c724e2e68a06748db808c4ce71d90879b6","first_seen":"2023-04-05T08:37:56Z","last_seen":"2026-05-15T22:15:35.355778Z","times_seen":142399,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":42,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260513","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"172.217.20.174","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:35:05 GMT","end":"Mon, 13 Jul 2026 08:35:04 GMT"},"fingerprint":{"sha1":"30:DD:C1:AE:17:67:59:0A:2A:9C:1D:E3:B9:38:B2:60:4A:10:C7:AE","sha256":"BD:51:17:8F:71:1E:94:3E:35:23:87:1C:DF:5B:1F:F0:37:5C:FD:D7:2D:BD:B0:43:B4:F3:3D:65:5F:10:7C:3D"}}},"request":{"raw":"GET /gen204?sl=en\u0026nca=te_ap\u0026client=te\u0026logld=vTE_20260513 HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ncontent-type: image/gif; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Fri, 15 May 2026 20:06:50 GMT\r\ncross-origin-resource-policy: cross-origin\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-ZDC40gaPrUxueJCkR34-Eg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'\r\ncross-origin-opener-policy: same-origin\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nreporting-endpoints: default=\"/_/TranslateApiHttp/web-reports?context=eJzj4tDikmJw1ZBiEOLhuPVz7gU2gQcTlu9jVFJKyi-MLylKzCvOSSxJLU4tKkstijcyMDIzMDU01jOwiC8wAAAt4RML\"\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nset-cookie: __Secure-ENID=33.SE=ZnZbP_kySUgYh4gHT5Nk9aqLWQsFoi7ilS4uipiMf0Dfo2JnU_bP3VsPNUHnDPtE4FpxGlHb90rOjZ7MFmyf79ur_9_mvq9733ibwj6m3Z0KBVodCm6iawIGrp1xKPy2RFhMgDAF6gSXiW_eq9bVjQlBo6T83BuCMUUM1Wani-cpcz0BQS272nO4nJPn4VhxrX4HQUVwqVgwbJ_F-3mezqlzdbnZUzD1bBw-uH0nqBo; expires=Tue, 15-Jun-2027 12:25:08 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"image/gif; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T22:20:41.080999Z","times_seen":15239822,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:07:00.225Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"OPTIONS /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-goog-authuser\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://3riversmyb.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser\r\ncontent-type: text/plain; charset=UTF-8\r\ndate: Fri, 15 May 2026 20:07:00 GMT\r\nserver: Playlog\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-15T22:20:41.080999Z","times_seen":15239822,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/jquery-ui.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/jquery-ui.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-8e06\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 8425\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":36358,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (2363)","md5":"66810976a9fc09bf26feca19a5f711ea","sha1":"4d26ad4ac2f6c8b576e1341e0a6d3c8cf999587d","sha256":"8adb435b9ff20da9c991b24114b6d5c7878ce1cd77e742061f66a8a8bd47cf55","sha512":"a4a541c9efb65037dcfb4c229f3a25e761a1d5a5b1dfe15adf0c5412da18f5214a1044568742f02d1eed0e59268c18394244bb1df30c017ff7aa7c48bf1982c1","ssdeep":"192:10OW02ANbMD6l2n+brGtUQnSMfps3+eYQY+h572hk/xrAY5Y6BjSmMErEURHllPf:xMD/+vaW1eyH/PiF5fydQtDDS25gb","tlshash":"29f20c316a432919ba1bd1a425a11bf7d32f1342ee2b6e7f60aa345cc3d54e0c0bf5b4","first_seen":"2026-05-07T19:56:59.950531Z","last_seen":"2026-05-15T20:09:18.738189Z","times_seen":3,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/arafat-font.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/arafat-font.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-392\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":914,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"dba36d850d1551be0d4913f94b004208","sha1":"88a46e44634d9f79d87cac43ea7283ca30fd2a70","sha256":"6fd90ece2beae421ec12012d2333d7821f6c7f4e06e841ce33e347c2876d548e","sha512":"eec6f714e28321aa927db4ca6e781b81ce7ffba5cde53d7c213b8163f3f7ca0787f38f88726a26eae72019b88237c9e72df1c9024d12558ec9d0a44e794c3e4c","ssdeep":"","tlshash":"1f113a50654670c267618c4ef3da1755ca4ab023a945cc67fb2eaa1c4ff6a2d42c0f2e","first_seen":"2025-08-04T10:13:59.513377Z","last_seen":"2026-05-15T20:09:18.764925Z","times_seen":4,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/tab-card-11.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/tab-card-11.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-2b4\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 692\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":692,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"9b97d5dfa54cb8bb748d4cad446952bc","sha1":"d73fe77977959d2cecef7e6bec28850d0cccee1b","sha256":"af837428d4057e97bc18d08313613f36e7525622e7d9004f3978d852407f4d39","sha512":"f8cb7773c22073979074043326697c15ca1fdb6eaeb862a8194f50b8244e14c60774a92aa861017f600b01817e442c951b1de4d5484f2acf922c664e735ec0ce","ssdeep":"","tlshash":"d90144ce2513be5fc58ecfb7171e88909531428abe861347e752323cc31a208483a5f7","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.706268Z","times_seen":23,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":456,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/tab-card-22.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/tab-card-22.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:40 GMT\r\netag: \"67e9deac-31f\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 799\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":799,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"34907dd14fef2cc4a4a7e6f4e8fce849","sha1":"ae118445412d0c6e83a2985d1e3b47bb4306b256","sha256":"f5e509d1fba27ba8fcaef98130caad341061ad70c3a708a9b365c73dc6ab828a","sha512":"9d3e7af82e45946b3bb924c12bf6a122e220322c9113f912255cb746dc4ccff2c9c0592f7b67582d765c4434bacf38280b262b4043ca818d3df2a608330371f8","ssdeep":"","tlshash":"800181da170223dad0cea8f890354234b6732c2d0b3ba5464f931e248521c2538d9db9","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.733463Z","times_seen":23,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/fontawesome.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.083Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/fontawesome.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-1473d\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 20685\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":83773,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1421)","md5":"dd75ad847be1558e4ce448fad63e0b3e","sha1":"51b28b4a950e9aa5bc918362df705c3fbc6caee4","sha256":"489409fc515812957074907899e413ca7d0958649eda1af9783b7b1a962f4834","sha512":"1e04935f600df96bde6c881d8c59c81ce881876b6fca0161e581cda4e6663d59e8d42f9fb65154772ff8401752e23f0dbed015623dcb7e6c4e890ef70180049e","ssdeep":"1536:5ZkVIXAM0o+iFhkUcKD8mVIH6UifcSS+AVaKEhgXMWZHV8VC:yUFpcA8m3cSS+AV+hCF","tlshash":"0083835c9de361a25e13703d8bef4508b275d2032818dc55bd8ce2919f6ca2c52f6bde","first_seen":"2025-08-04T10:13:59.470744Z","last_seen":"2026-05-15T20:09:18.718415Z","times_seen":4,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":517,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/wow.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.088Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/plugin/wow.min.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-1fdc\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8156,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8099)","md5":"3f3d63e2feea51da5ea907e80e74d75d","sha1":"ca546ef8e982c4b9d1ad43ad38fc702d0cb1d873","sha256":"1041568a299093ef168fd78f8b54c27d1cf0cdfae8e870de0769ba1174c6bc05","sha512":"20d9a51ac9b5ec340c4b9a5053fc35cf0c1e29514d8aa41d7f45f0f13270f64416f9652efe7aae63b0bef7bd4637f5d56667a8aff8ac0d61f88bb50fab0b40b3","ssdeep":"192:tmEE6yAmu6qUxbU5C9nrr1GkEPIAeJ3KO4poIJ:EEE/Amu6qUxVBxGkAI///IJ","tlshash":"93f1baa5374a70718e9b6176c92f0202a532256e74d4c8ec747cddd4aeb4a29336bf3c","first_seen":"2023-03-07T01:03:18Z","last_seen":"2026-05-15T22:00:54.876009Z","times_seen":1317,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/jost/v20/92zatBhPNqw73oTd4g.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/jost/v20/92zatBhPNqw73oTd4g.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26576\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 May 2026 01:50:14 GMT\r\nexpires: Sun, 09 May 2027 01:50:14 GMT\r\ncache-control: public, max-age=31536000\r\nage: 584195\r\nlast-modified: Tue, 09 Sep 2025 18:31:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26576,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26576, version 1.0","md5":"928f4210aa4859fcfdb853d2c6329589","sha1":"d3fc5b412c86d44da139622eb1712e22c3c510e0","sha256":"7726a5cd6f3c0e876c028ea2a643d45f7aad4b0f164b70966c669f4a4668f4b9","sha512":"41af246a04d784717cf33d2b4d03aaf639f37e4b1fa71694efeb65cc17369b4634ba6f51c202411b566c1f14f20cb69aba3f60a76ee740365fa9b135a51e878d","ssdeep":"768:c/bdLR0K3WlvjqHiGVNQsbQbVBjDcOrMNZYYH4V+:wTzW7qHijHVBjRrM3BY4","tlshash":"dac2e0c934e88a02d2cce133115e65511f98e170ba4e55aed5efe1dfcd98b403d88e86","first_seen":"2024-09-30T20:29:44Z","last_seen":"2026-05-15T22:23:37.143042Z","times_seen":21222,"resource_available":false,"data":null}},"time_used":249,"timings":{"blocked":97,"dns":1,"connect":20,"send":0,"wait":8,"receive":2,"ssl":117},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/bootstrap.min.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/bootstrap.min.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-260c5\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 24218\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":155845,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65307)","md5":"d76139bd0c05e8e15502fc2994690e9a","sha1":"3533b11ffa4eb0ab41f89d2850593d5eb4b45b5d","sha256":"94e688c764f154e797c6dc0040566900051f88ebe119ad2aaee2bef02981d4f4","sha512":"07fb1ad3c533c7155b2d63aab6209f5c76f5df4ad16fe1b7358586bb4176c3b25a6e989c51b46ee1a2aa831e7e9a348e1e4540fefe8e06eb0cc4aa9a169ce662","ssdeep":"1536:d0bwW83RipVVsEBpy0cuJcf22RWb5CyVUpz600I4fu:d0bwlyVUpz600I4fu","tlshash":"5ae3a3d7f581241dd4a7c259a0d1bffd052f4586e3025babb0277bb88b8a6c70963e4c","first_seen":"2024-06-20T12:47:52Z","last_seen":"2026-05-15T20:09:18.735535Z","times_seen":11,"resource_available":false,"data":null}},"time_used":217,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":97,"receive":120,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/plugin/nice-select.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/plugin/nice-select.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-fa7\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":4007,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a7ace323b9fc8a831a6e64feb23fa0b9","sha1":"9317ad29306bc72eb3fa92981be8141fcd394e7c","sha256":"c13280e79f74109c5e3854822c0f0c972d0a57245c95b0b3762f9788bd918f8d","sha512":"b87b828a0726bf70724ea050404c278175a4ec4fcd68f60ff821609699173e74506d2b9b26610436087e8ad44361b595d1f519994cfb7c3ffe24375e4050f9f8","ssdeep":"","tlshash":"2781e2779b530141642a876fafd62b582339c003b826cdacbbdd960b8f0d5dc94e6747","first_seen":"2023-04-05T04:47:26Z","last_seen":"2026-05-15T22:00:22.642824Z","times_seen":3434,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":93,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/tab-card-2.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/tab-card-2.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:44 GMT\r\netag: \"67e9deb0-47f\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1151\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1151,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"940167853de8168864d3803dd8d17959","sha1":"3bed58ea11052888d13e7ba4e2d0f1d06490f405","sha256":"fddfa6f9c17612f7b0aadc011c398d9267cc685807e9fc84dab77d6b1428f7af","sha512":"9422315d5558eb5daf09291b182662943e2de16817e25effdda25f72f2293184373dd1111299c4c02cf76e4ae7024e882908a44f681a96a9b3353bc6abf18fef","ssdeep":"","tlshash":"ca21cabe3e637ac9c74c45ef54191934e8cc3c262578892a7bc3eda3401617458586d2","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.721952Z","times_seen":23,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":455,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/jost/v20/92zatBhPNqw73oTd4g.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/jost/v20/92zatBhPNqw73oTd4g.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26576\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 May 2026 01:50:14 GMT\r\nexpires: Sun, 09 May 2027 01:50:14 GMT\r\ncache-control: public, max-age=31536000\r\nage: 584195\r\nlast-modified: Tue, 09 Sep 2025 18:31:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26576,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26576, version 1.0","md5":"928f4210aa4859fcfdb853d2c6329589","sha1":"d3fc5b412c86d44da139622eb1712e22c3c510e0","sha256":"7726a5cd6f3c0e876c028ea2a643d45f7aad4b0f164b70966c669f4a4668f4b9","sha512":"41af246a04d784717cf33d2b4d03aaf639f37e4b1fa71694efeb65cc17369b4634ba6f51c202411b566c1f14f20cb69aba3f60a76ee740365fa9b135a51e878d","ssdeep":"768:c/bdLR0K3WlvjqHiGVNQsbQbVBjDcOrMNZYYH4V+:wTzW7qHijHVBjRrM3BY4","tlshash":"dac2e0c934e88a02d2cce133115e65511f98e170ba4e55aed5efe1dfcd98b403d88e86","first_seen":"2024-09-30T20:29:44Z","last_seen":"2026-05-15T22:23:37.143042Z","times_seen":21222,"resource_available":false,"data":null}},"time_used":391,"timings":{"blocked":168,"dns":3,"connect":20,"send":0,"wait":11,"receive":4,"ssl":181},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3967\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 11 May 2026 17:44:53 GMT\r\nexpires: Tue, 11 May 2027 17:44:53 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 09 Apr 2026 01:12:55 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 354117\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20284,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20284), with no line terminators","md5":"fde4f72b90fe807270db3c332dd058df","sha1":"7ef4d70af01c38a7f80a7650be25f63aff4ba751","sha256":"ab31c9be358d2107fc1158434c7aeaaf15f82e3e405ed67ab236b5ac232ed159","sha512":"9bef39350af557afeb10cb71068426ab28befaf5295359954787be06a5ce0993d69e8f5018a5a17c44311d294dd1a87a6f82edd0f5743df0149b8e4e53061695","ssdeep":"192:nvqx/EhZINcrXsfg0SgG8CqA3uku9SJFzvQVMbnUIfIxIVVpTrecfzPtcmt4v78l:gMF8Sb3i0JFzourUqWMVpTrdfzPtcBG","tlshash":"c492872057aed01967efa82364d36dff71d444db90123eeaaf5a7352cd821f231ea214","first_seen":"2026-04-13T20:43:22.641436Z","last_seen":"2026-05-15T22:25:50.199029Z","times_seen":6426,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/fontawesome.min.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.033Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/fontawesome.min.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-e7f6\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":59382,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (59195)","md5":"150b840b2f586f6321da7e5d75c39f9c","sha1":"855a86f444352194e813e2da668c6e18908aaec3","sha256":"dad85a085570004871df356e363f602bc3940adae9c7e1b40e0625ded9c3d0fa","sha512":"f628abdd29c99ce6e0ce38e2cd61dfa012cf98d8201c8844f5252a942691998820bf1d3180effc91f04d2afa22dc26d6888a4ba04ace84753f8707fe693028f2","ssdeep":"768:5Oh31IPiyXNq4YxBowbgJlkwF//zMQyYJYX9Bft6VSzb:5O0PxXE4YXJgndFTfy9lt5P","tlshash":"d443fbb8e54c01cab731c44bef81b2bc61b6f73de5914d95f00e691c2ad26a811c5fba","first_seen":"2025-08-04T10:13:59.511466Z","last_seen":"2026-05-15T20:09:18.69895Z","times_seen":4,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/notification.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/notification.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-119\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 281\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":281,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"3d8d0cc56be3ae72cfe343b8d352e492","sha1":"88f405b2cf22ed920e7a5bba2bd5aeb2373a2d67","sha256":"1c4745dfae81bdf2d922f6989f314ac9efeae5947f855f7589973b421dc16e1d","sha512":"2672ab6e82e458fe27d3aa46dff5fcb1f7fa66e10b1596d6315a48201d037b98a7556d89ea7f5b0ae43a80b3846174c70c51f0e84370e407dcedd4d230161ae1","ssdeep":"","tlshash":"1fd0ebf6a0b0083f830ccf36d3bb80206c364c0d0192308bac225033010fc968ea63c3","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.724115Z","times_seen":24,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":218,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/loan-2.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/loan-2.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:42 GMT\r\netag: \"67e9deae-809\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 2057\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2057,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"a71902ed0d9f7c10daf133bbe1e8ee11","sha1":"401a37efe548cfdd3a5f1a225da7633a49386b01","sha256":"18930428b7242a5a46184cfebf67c163a2f801c17b0411a4e3149a9fb8d0bff4","sha512":"8d17da5fdfa199e2057b23a13af22ccb6ee8b85ea2e4e876be6701628e5eb04b7d3b3f3f6c08268d083ebbb1a53c0e2c62d3b9b2c699f7aafb54ae2c4e0c496e","ssdeep":"","tlshash":"4041182dbec8675e61c9a63cd51e409533b381ae45b8151f0fe0794926229700e8c736","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.725575Z","times_seen":18,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/bootstrap.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/bootstrap.min.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-13398\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 23216\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":78744,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65299)","md5":"2393b5c5354fb9cd89f80c816c547fd9","sha1":"70898d2ccb812ab708ceafc80aaceed98e37095f","sha256":"154cb45e3be1c979811fa21335ab2bcdd4c63e71625b7470a874cae36a8b9630","sha512":"f38e9bed6810fd71187e14982421118cc5768646b6ca48932bda947b222c3c3ad0025284899769ddd3248fdae8b5c3daf2970ae66399d5eb26153ea1ad2e7435","ssdeep":"1536:tp+1ZTPR2t4tXbih05ve8/pwgrEpc9t0vSAIAxCO:MFRIpk0vSAF","tlshash":"1273d6493254b87309ee55a68037460bf3255994b14b802cb9bdadde2b3dc8272b7f78","first_seen":"2023-09-09T14:26:11Z","last_seen":"2026-05-15T20:09:18.717511Z","times_seen":49,"resource_available":true,"data":null}},"time_used":517,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/webfonts/fa-brands-400.woff2","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.608Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/webfonts/fa-brands-400.woff2 HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://3riversmyb.com/static/banking/home/css/fontawesome.min.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: font/woff2\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:50 GMT\r\netag: \"67e9deb6-12bdc\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 76764\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":76764,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261","md5":"f7307680c7fe85959f3ecf122493ea7d","sha1":"fce0da592a3e536d6d5df5b50cb513398d8c5161","sha256":"43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af","sha512":"d115a6f0df1f766fc83a77adeff79da5b0a463c01c13532cf48f29ed53a0c4ef1d87db38b8e492fbc3f97a0d192a9a6f636b837e65fcbeac03bb6f36336ca69e","ssdeep":"1536:UOsj0gqVLsxxVegJ1MvhvVpBJoY+q6G9NjFvzOCvXHYVSGhZJZ6xxsBV:UOsj3sVgmoYp6uRvzHYYsZJ+uf","tlshash":"8373028a852a583dc7fd1134a83c8ff111fba484c64b178c7a7179847b96fd3b4a51ca","first_seen":"2023-04-05T08:37:56Z","last_seen":"2026-05-15T22:23:07.33229Z","times_seen":28193,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/translate_static/img/te_bk.gif","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /translate_static/img/te_bk.gif HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 848\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 12 May 2026 18:22:16 GMT\r\nexpires: Wed, 12 May 2027 18:22:16 GMT\r\ncache-control: public, max-age=31536000\r\nage: 265474\r\nlast-modified: Sun, 25 Jun 2023 02:58:00 GMT\r\ncontent-type: image/gif\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":848,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 59","md5":"daf9b48977041ac85a62dc9b7c16b38d","sha1":"049dcb061470572d06fd83b287ebd1d96e6bb870","sha256":"cb1fd0e051209c32622e91cdeda967e50d80a184b185ac6a656a807986e8eb75","sha512":"99f5f27990b6b5559c751a92c04037f5d42e848a966893484af66d3f66828c29a2dddc8788d7dd4cd835e8ab6d834e74fb3eaa4e2cd72d55b2813d7aab990af2","ssdeep":"","tlshash":"1c018c0cc8700a19e3422fb0ca5b6e0429675b465d88b20fb6aa22c27d04ba48049b1c","first_seen":"2023-04-05T23:29:53Z","last_seen":"2026-05-15T22:11:28.076661Z","times_seen":6153,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/multicultural-family-hugging-on-yard.jpg","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/multicultural-family-hugging-on-yard.jpg HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/jpeg\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:36 GMT\r\netag: \"67e9dea8-1cf0a\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 118538\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":118538,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 951x534, components 3","md5":"ea78d20c9be9561446b6de2eafa8386c","sha1":"12267fbc222ecd1dce33b989d67e397bed1a0bd2","sha256":"59500827665e7d947a5d3cb7edf7197f7886a9412486c4e9aab39a855aa81d32","sha512":"b621c44fc2f90fd2672540fbe6f660ba70e940a6dc506131e44b9564c1f424851a07f0be4bad7f49fa0c33271313d4795758e0d930b5ae5b3428cf772ecef4ac","ssdeep":"3072:XwIcMPsxAdz1eNN0m2MlPsBRXljGSB/LzHGP2hjEJZWDLQWYx7:AIxsxAdMYm2MlABDzmO6DWHYx7","tlshash":"4bc3026c07151a64310ab97942c0f72f546cd11e3982cc7909cfaeb3e363ed8a65fa5e","first_seen":"2025-08-04T10:13:59.483559Z","last_seen":"2026-05-15T20:09:18.747249Z","times_seen":4,"resource_available":false,"data":null}},"time_used":386,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":68,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/loan-1.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.071Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/loan-1.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:44 GMT\r\netag: \"67e9deb0-780\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1920\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1920,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"ac71500ecf2fcb87906b8c34051c6d2a","sha1":"b4fcc3d2fedc95e6003e1ae0fd381e9784ce32dd","sha256":"045d82db37ce6ccbd8086facde9458172587908fda13015c377b24134e9deb42","sha512":"01b61701574891b523d5916803a5db0b68d951eaa9bcbca3f48bfc182a9683c25cf0b3414c8473e6a435443416862f7478fa20d928ff93b19e593b87361ee2bb","ssdeep":"","tlshash":"73415dce6910237da5b64cde943c7252303e74c4d041496834945e76011efce9ba63dd","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.698113Z","times_seen":18,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/loan-22.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.075Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/loan-22.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-4ad\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1197\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1197,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"d9aa0e3dde24bed28a3f05a02af620ee","sha1":"f75cf05a4bc1d65de7af3381cf1635847684acac","sha256":"43a698c65a32afdff450a73b4812a14cafa07c0cb91913c28e1f2ae91b4079ba","sha512":"7b102b3b9f9428d5af462ab6b4025e71aa13c955d8dda1a8d35af2a123f840eda9986fe00bd3debdb4cc5ef2280b07cc581d6b0e8d9632516020925ffb637b74","ssdeep":"","tlshash":"f121e7c373fb84cd68aeaf54001a1c2df5775d890c3800460137bc5a4a40b8876a6a06","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.738798Z","times_seen":18,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/business.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.056Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/business.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:44 GMT\r\netag: \"67e9deb0-7d8\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 2008\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2008,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"9d9b3a0c668ffa37ab47cfbec1d37849","sha1":"35e5fd05fbe2814c6b6e2f0fb008d8fbcf6d17e2","sha256":"c24194256af0da4a0be652448175134690b2d454b954b23f351fd0d2cb235e17","sha512":"479c1d9511939d7dabbf3e367b8f845b09a918deb24c52dd0926b61b2fe6888167bc807562a43d44b09457e8dde1cabb5f1360b20466e42778c42be728991ba9","ssdeep":"","tlshash":"94414a717d04849dab0c4ffb82ef4265cd30914ea12fa2895088e0475e88ef6661b9b3","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.710693Z","times_seen":18,"resource_available":false,"data":null}},"time_used":318,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":317,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/jost/v20/92zatBhPNqw73oTd4g.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/jost/v20/92zatBhPNqw73oTd4g.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26576\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 May 2026 01:50:14 GMT\r\nexpires: Sun, 09 May 2027 01:50:14 GMT\r\ncache-control: public, max-age=31536000\r\nage: 584195\r\nlast-modified: Tue, 09 Sep 2025 18:31:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26576,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26576, version 1.0","md5":"928f4210aa4859fcfdb853d2c6329589","sha1":"d3fc5b412c86d44da139622eb1712e22c3c510e0","sha256":"7726a5cd6f3c0e876c028ea2a643d45f7aad4b0f164b70966c669f4a4668f4b9","sha512":"41af246a04d784717cf33d2b4d03aaf639f37e4b1fa71694efeb65cc17369b4634ba6f51c202411b566c1f14f20cb69aba3f60a76ee740365fa9b135a51e878d","ssdeep":"768:c/bdLR0K3WlvjqHiGVNQsbQbVBjDcOrMNZYYH4V+:wTzW7qHijHVBjRrM3BY4","tlshash":"dac2e0c934e88a02d2cce133115e65511f98e170ba4e55aed5efe1dfcd98b403d88e86","first_seen":"2024-09-30T20:29:44Z","last_seen":"2026-05-15T22:23:37.143042Z","times_seen":21222,"resource_available":false,"data":null}},"time_used":214,"timings":{"blocked":80,"dns":1,"connect":7,"send":0,"wait":10,"receive":8,"ssl":104},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.216Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ncontent-length: 3340\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 May 2026 14:45:43 GMT\r\nexpires: Sun, 09 May 2027 14:45:43 GMT\r\ncache-control: public, max-age=31536000\r\nage: 537667\r\nlast-modified: Wed, 20 Apr 2022 14:24:23 GMT\r\ncontent-type: image/svg+xml\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6225,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2bd5c073a88b83ed74db88282a56ddfb","sha1":"d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650","sha256":"ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09","sha512":"5c6c4a92e93fc0f6a675658cc84f6187fdebd3eee94efd07e24658736cba598f3bc7156b19834b13fb44c1d43fcb7df9fcca7f0a453037e30da76ba8f4b23b89","ssdeep":"96:+R2K3Z4n7tyVwip82hezk6227gLFoXhu1XuE20ot+pVY3YptWDzOzgXK3Zx:ql3KnxyGGMzb7noR20NTww33","tlshash":"c1d1e6f19309d815cd6a83d8cd9b8002aa1f25ddd50ac6cc7639fb3bd1a50eb1d2d7a4","first_seen":"2023-04-06T21:34:37Z","last_seen":"2026-05-15T22:25:50.132741Z","times_seen":65637,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/translate_static/img/loading.gif","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /translate_static/img/loading.gif HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 702\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 12 May 2026 18:01:59 GMT\r\nexpires: Wed, 12 May 2027 18:01:59 GMT\r\ncache-control: public, max-age=31536000\r\nage: 266691\r\nlast-modified: Thu, 03 Oct 2019 10:15:00 GMT\r\ncontent-type: image/gif\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":702,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 16 x 16","md5":"eefaa072b284a305c12c06608333abc2","sha1":"58272721ccc1efda26eaa22354022c7c793edbb6","sha256":"fb6b7bcc1ab09f27db17bcbdf5239ce1d52af34f1fc5125b3fc8528a07848d21","sha512":"c5ccfdcd9ce76de85f043a1733c9f0b620e15babbaf2a5639684c7b2bb8e5a66473c9a83f14cb48d9cb6c6a1c6b36f2c5a28e25abaf131fb85ec5eedecbae4ac","ssdeep":"","tlshash":"5d01dd13f3d50473f66d0075a20cc57f010635daaadad7089a48117cfe1983c5239b82","first_seen":"2023-04-05T11:18:23Z","last_seen":"2026-05-15T22:42:14.950734Z","times_seen":12532,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/plugin/animate.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/plugin/animate.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-df07\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":57095,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (460)","md5":"cb67371414710491ee3730390d1efb33","sha1":"2e70ccc82e0ed3de2fd87409e6ca66e7b1a2d285","sha256":"59a1460df6cb458204ec993345ff4964fa7e1a77da4ab7137e50fce8434c1d6a","sha512":"71e59a86d6fd6eeb01a5bd306e2a7cd3828dcaff64629e6318d384443288c8ea261bd954ced6bb20ed27d1b81a565bb3258c5e8603522b0042e3cd17b4c472da","ssdeep":"192:LIQHnIwf2T/awfDZUiduG+MONjnbimZbHMxymDSVbyPiVEzfukrWL7XU+qLmfRvq:LIW6yQ","tlshash":"e443d96929a1104466370a15c7df9e78663ce2a31866ecffb3d2548b8f41fac23cd617","first_seen":"2023-04-05T14:14:46Z","last_seen":"2026-05-15T21:35:11.208981Z","times_seen":6097,"resource_available":true,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":95,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/check.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/check.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:40 GMT\r\netag: \"67e9deac-c3\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 195\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":195,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced","md5":"14c5ed0e6e0414fa042afe390a581633","sha1":"b2407e80d54d9aae9179b6f15eafd3ad6885c03d","sha256":"a813b67282a7e210a5e8d998e7b6008b7f8ecd97b882a7b4051e738175e6e2cb","sha512":"f53022f61c46d99b68263a813309b944a1d46d42f8059bfb9d08379173c34d9d5e24df9e8954b93424026a23ed376467717bcbafdc142b9305cfbe69cb8231e2","ssdeep":"","tlshash":"0ed0c0c663d4cc3c8a8e9eab4c2734a081bf2f2b50114901bf2400291b1c2cc81777f3","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.711306Z","times_seen":25,"resource_available":false,"data":null}},"time_used":453,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":453,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/solutions-business-bg.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.551Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/solutions-business-bg.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:38 GMT\r\netag: \"67e9deaa-2c9a\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 11418\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":11418,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 599, 8-bit/color RGBA, non-interlaced","md5":"f9a3596e1ab7010784c1f2190360070f","sha1":"f0edc3dd783ca9d6e565ddebb76bc6b19fa3ceb0","sha256":"b306ac8bc9d2dca6cad7e7643c9d58f9e62d82e1987abd2f5c63fdfc6813eadf","sha512":"161b862674bf3ffc0d8a162ffcd3fd11f2a8667200d8c17e99164aea5362dc346378b01936f75617987f6a1170759435b2ce11130eefc3cb1bcbe16e9a2edf58","ssdeep":"192:bSLXhnugu+SiLiDlhFRCugXusfpCUbojSr3T8TmARUIPYi9T6666666e:OLXlu3+SSs7Fj9sfpUSDT83UfiZ6666n","tlshash":"6332a2558433842dc97d613d32fbbeb82fb40a5c08d0870e8674ff996c07aaa7cad950","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.756736Z","times_seen":23,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":214,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/right-icon.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.574Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/right-icon.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:46 GMT\r\netag: \"67e9deb2-157\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 343\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":343,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced","md5":"529cbda169cf8fc93c340fef317a8fd3","sha1":"4e78e04d322eb81bda3c12046c5eabd577a90106","sha256":"98e3b4aec5ab105f76138531b3dcfdcd6a88f898481f70c1b3ea14310db9760c","sha512":"722a9417a36980df8b08b972180c7e8e49cb7a6f83184c65a4bd30439ddeeba3d2f240a2ed9e4b192221851357624a7740e45903d579f54ca4ce6d0ac6d4a4b2","ssdeep":"","tlshash":"6fe02dc86a407efad93e3cb2c63810e25c3b2fb6a5e2202fcc064430255ef272a145a4","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.758582Z","times_seen":22,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/sheled.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.057Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/sheled.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:40 GMT\r\netag: \"67e9deac-154\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 340\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":340,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced","md5":"53c7b05674092ce30ed004a12d01b8fa","sha1":"5f59a4ed0491917ee79bc6f9830b51a98ed5ce8d","sha256":"aa6b198572cadd2e962a608861fcd1148c7b9c8df527cd141634dc352b3c820e","sha512":"294f0eeea150abbfd97e63993644cbab4ee97f2a176bcf630d4bfec44fe4e5d1b0e2bcb5f58c1b893c6f8779afe1f1719fe4b97019089839f2e256efcd4f20a2","ssdeep":"","tlshash":"21e0c0c63f103436648a9d73809f16905e6f740a0521550d9ca2011245f4ad4083f391","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.759334Z","times_seen":18,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":317,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Jost:wght@100;200;300;400;500;600;700;800;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.349Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /css2?family=Jost:wght@100;200;300;400;500;600;700;800;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Fri, 15 May 2026 20:06:49 GMT\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9900,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"289007553131f1547c628aa2365bdc0d","sha1":"8878b805dd0a92bb4f2002e9ce45b6a98c71a677","sha256":"b59123fc6635530fe581b9f8b364e0ef8c455a67c6b6d434ff62164d594b3ae5","sha512":"2864942c92ad38ef89c889e0bba242fb1aca6117521cee25f0c17f1062ff2cc6c725bd6cca0291a5be663c52ced06be852ea9edb482de78c127ea23bbfdb203a","ssdeep":"192:JupQpropGvprhGo6ryGVbrTG20rMGz9r1Gs+rWGJPrXGaIrwy:Ju2mc+/ApqDMb","tlshash":"b012af91042be900eb931cc277cebe379e0f61556844c5799efd14d8ec9ed6a436170d","first_seen":"2025-09-20T01:05:37.373952Z","last_seen":"2026-05-15T21:14:29.699773Z","times_seen":195,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":42,"dns":1,"connect":8,"send":0,"wait":19,"receive":0,"ssl":177},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/translate_static/img/te_ctrl3.gif","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /translate_static/img/te_ctrl3.gif HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1412\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 12 May 2026 18:43:16 GMT\r\nexpires: Wed, 12 May 2027 18:43:16 GMT\r\ncache-control: public, max-age=31536000\r\nage: 264214\r\nlast-modified: Thu, 03 Oct 2019 10:15:00 GMT\r\ncontent-type: image/gif\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1412,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 84 x 19","md5":"9afe50090c0bc612953d081295eab5b1","sha1":"71a4da2a622879c29176ecfa5afe1bbe3e8cfa40","sha256":"d228d0256370863119c043f1e5ca8f3930f6999bd9f250434b6d8935f45dc171","sha512":"d7290b951cec51994f3480c32b70de0faeca433b5d99209b044e1d4c12327768de8c344b6bded806d993251e0ee6f98f0dd64f4480e999fbc06abfe3dd8056fa","ssdeep":"","tlshash":"042182b5cc99114a5be1bd27a334899da8b12c56c38d74595436bdb43470f098422812","first_seen":"2023-04-05T08:27:37Z","last_seen":"2026-05-15T22:11:28.042494Z","times_seen":10638,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/element/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:07:00.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"POST /element/log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Goog-AuthUser: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1172\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1172,"data":"[[1,null,null,null,null,null,null,null,null,null,[null,null,null,null,\"en\",null,\"TE_20260513\",null,null,[4,0]]],1871,[[1778875610217,null,null,null,null,null,null,\"[null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,\\\"no\\\",null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,[1,\\\"te\\\",\\\"A2892984-75FC-43C5-A592-51F1C5ACECC3\\\",[\\\"https://3riversmyb.com\\\",null,[\\\"\\\",[],[],null,null,[\\\"navigation\\\",\\\"h2\\\",[],[],[],[null,1000000],[null,11000000],[null,152000000],[null,152000000],[null,337000000],[null,242000000],null,[null,578000000],[null,578000000],5102,4615,29198]],[\\\"translate:page_load_to_initialized\\\",[null,578000000],[1,433000000],null,[]]]]]\",null,null,1,null,null,null,0,null,null,null,null,null,1]],1778875620218]"}},"response":{"raw":"HTTP/3 200 OK\r\naccess-control-allow-origin: https://3riversmyb.com\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Fri, 15 May 2026 20:07:00 GMT\r\nserver: Playlog\r\ncontent-length: 131\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":131,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"JSON text data","md5":"ca0b7e866005f6774d284b9f438ebfd2","sha1":"53644f5ee3640189bdb223473ba6a2d46606c556","sha256":"502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358","sha512":"939c4526c623db033ad40bfdc6c8848a1dcd0ca797f17fbbd89fbec1b49dededc16e89084b3759e62fa0ffc8fe896980b10a1ff8daee22736a70b08f1ee13e2f","ssdeep":"","tlshash":"58c08c50330469e1080e82c8c0026858228c903b46708cf10bbd68125d3234a1004854","first_seen":"2023-04-05T03:14:56Z","last_seen":"2026-05-15T22:20:14.335717Z","times_seen":532435,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/logo.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/logo.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Fri, 25 Apr 2025 12:35:35 GMT\r\netag: \"680b8197-2d79\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 11641\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":11641,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 403 x 100, 8-bit/color RGBA, non-interlaced","md5":"3d9b1ba22f3545d61ace1008d4fd5770","sha1":"4eec0278c5bead1db879bc43fb42603dc9dabd52","sha256":"a46e0999233a21b9c854c81fea03c570a9430c599823d28c9df6ea280c65e4d4","sha512":"afd841404d8cca6b5dab199afe4fe2822ee2283c7e8619512caa93e98827fa861e6fe86e8a463053a5f0cc9544503aec7decc7324bc2e603ff4ac338e444b8a3","ssdeep":"192:c9GgaxDlUWN6m+cgKv8rupcq3miJJECtp+kfFQb5NdxNzaXl6T9nMQUOcWq:H1xpUWkcgKv8qT2iJJECtpJuNXN0XQUx","tlshash":"5632cfd35a491db03cf8e1fa023b8650bc627b566bd2d3429242f5be3402d731d66f62","first_seen":"2026-05-07T19:56:59.898335Z","last_seen":"2026-05-15T20:09:18.700178Z","times_seen":3,"resource_available":false,"data":null}},"time_used":219,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":185,"receive":34,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/arrow-right.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/arrow-right.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:42 GMT\r\netag: \"67e9deae-fa\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 250\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":250,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 15 x 14, 8-bit/color RGBA, non-interlaced","md5":"16726df05f89fbdfa5dbb6e6a317869e","sha1":"3fd681756bfec1a07433977647dd64a780879a98","sha256":"33cafdce4821f581973603dce9d61429f099366fb93fb14762a7bc6393b4349f","sha512":"dcac08cbbd06394e8305288bd84f8646462ac0aee472efc50f216fde6b312dc9f9dc7c910d0fecdd034c48703d9e0d6286316c30b384448b66553404840f163a","ssdeep":"","tlshash":"59d095eed7485c6ac30d0bf75127214468733b1c44d1200c1c6a7430741cf85410d3d3","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.723391Z","times_seen":20,"resource_available":false,"data":null}},"time_used":317,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":317,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/card-img-2.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/card-img-2.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:36 GMT\r\netag: \"67e9dea8-131ab\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 78251\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":78251,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 350 x 209, 8-bit/color RGBA, non-interlaced","md5":"e4b8d0d183a209dfaad58e7ec2dedc59","sha1":"266bc18948edc9cba780d14b67735a6788f63e17","sha256":"395cf005b0c826dfa880ac92c9b2321f6d65c8feda4564cd9b9585b04bc103bb","sha512":"570dbe7a14eac7a654e63d0d64ed454c6f0ab19fc5bae4c877fd52d36f48e55f60e061b808e24b0340a768e289b469db18a70140cab5c926ecb6fd8e781ef4a0","ssdeep":"1536:Ung0yzo6cZQH0e2/C+JPDi9XxQNCbS1JogWK+uFpgs3ZWz:Ug0yzLUe2/C8DiANCbSMPK+u73i","tlshash":"0b73028c1bd6100e636a1ed3d71b7ca09d4de8f6264284b17acc3b2371f589ed249985","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.707027Z","times_seen":17,"resource_available":false,"data":null}},"time_used":455,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":430,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/tab-card-1.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/tab-card-1.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:42 GMT\r\netag: \"67e9deae-429\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1065\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1065,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"6e4c1ba2ea479331e95e1ecb144cbd35","sha1":"4c1ff5d52c0050583ac9e1abf852c1ed515e7d22","sha256":"f29c14011bbdec671bf32a0f8eee5c76d55d02de6176f720438eb171ab5ff785","sha512":"5f3a5b683690a3b645e8672a17ac6e85e7f33be2b3f0f81e18b420c7d2eb3c9b8e9f523defa7b72c7fb7469020cbbbee647c9bfbe6647990f181d8d3e33ba454","ssdeep":"","tlshash":"d911e997e7808077e4fee682b0ee88505c7f5275923558a02a3cd071103292c71c736f","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.760092Z","times_seen":23,"resource_available":false,"data":null}},"time_used":456,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/call-action-bg.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/call-action-bg.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/static/banking/home/css/style.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:34 GMT\r\netag: \"67e9dea6-b860\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 47200\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":47200,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 354, 8-bit/color RGBA, non-interlaced","md5":"d162d0f3a02cf63733eaecc63506d8c3","sha1":"22c18f1a058c60f13b0256b2d033fff8f53223d8","sha256":"ccb79b3be0ea47dc3cd359ba05ba9e56118464dc1447ef93a4853bc9c9ea281d","sha512":"1ee39625ecc1d85a25614eb84f55f11134f34322ed922230f97e3143e1a1c1801f58f2f4103d57044b5bf8ad25acd0d3c5c4a8488f913de6c4bc3c9c1938c89a","ssdeep":"768:dOG6ff4QUb+jyYFuS4WwC+eR/TgKNnZ+Mp4LxQu+rX7Ax9eaBCMziUa8a0o50BT:qf4QUyjkWD+eNgKVP4LCu+rX6eaSwQG","tlshash":"ba23e08dda6504c0d066307278b9abb146617b9f3652eb9b8371e10079e32f41b7eef4","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.708788Z","times_seen":19,"resource_available":false,"data":null}},"time_used":218,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":217,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1597\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Tue, 12 May 2026 18:12:01 GMT\r\nexpires: Wed, 12 May 2027 18:12:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 266089\r\nlast-modified: Fri, 30 Jun 2023 18:58:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1597,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced","md5":"c4a931d597decd2553aac6634b766cf2","sha1":"6ec84fb4a2745b4b71520241be77db1fd1013830","sha256":"f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e","sha512":"4932e0f7f38085a7c52539bdd5c7f470740e560a4471bea30d12ef9e3efe77f6bbfac28d26c62a245c43d98ebf74c824b2b414843080a27edf1563a5f874ac84","ssdeep":"","tlshash":"7c310afff39e8cec419e764069ba5965a362cd68233e928f14499592e4d007710f5f41","first_seen":"2023-04-05T08:27:37Z","last_seen":"2026-05-15T22:42:14.923499Z","times_seen":12875,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/style.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/style.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-1a17d\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 15775\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":106877,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"a1b912f03285db485bacb8aa79e2f10f","sha1":"54ffbf5f871a91d8071caf5aa84be9361150d5fe","sha256":"93fee9267138fb734254f5b3f3272bc58c4a7ee6a56cc22ca131d4cc2f48dc26","sha512":"80b2c3145bd9fba277128bc61fd9b640df1fc0f0f665b9b640cf2f20aa98f4e20095e22a862cf4d089c9bb011609c258ff84f93518cc7e58f3c0c68939cbfb11","ssdeep":"3072:exyq1apwwH5IU15/Dai204iu2FS70mWyYXM3K6xvNfwJQm1R//BS/WfiFv3r:exyqMpwwZyYXM3K6xvNfwV1R//BS/2mj","tlshash":"b2a36299bab53914796ba13a2c66b70133799081d50ecc7d7af6306cefcc2d405a3b8d","first_seen":"2026-05-07T19:56:59.886828Z","last_seen":"2026-05-15T20:09:18.710041Z","times_seen":3,"resource_available":false,"data":null}},"time_used":186,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":99,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/checking.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.051Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/checking.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:44 GMT\r\netag: \"67e9deb0-647\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1607\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1607,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"ab809d591f2603bd2f391f8c93ef76c5","sha1":"2afb1aa78822adae68a23f0b4c094e69eee36cf5","sha256":"4137f1d2bc0d5721f2fc52dcca432d80b49cbaf25f2d282c7cb092ce91ef5031","sha512":"c3dd930a7a921a13fa9e8053ee935c16c4046eb1a2f74e9be735109a26a7372c8c616e1d369b72f6ecc3eb0699719fe9e327c520ad7157b7b33e89ac73fa083d","ssdeep":"","tlshash":"9f310ab5e3e86de6e5b9943f72541258be7a43371402250d20e53c7ca82ce842226013","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.721199Z","times_seen":19,"resource_available":false,"data":null}},"time_used":319,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":318,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/card-img-1.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.062Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/card-img-1.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:36 GMT\r\netag: \"67e9dea8-17f1c\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 98076\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":98076,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 792 x 476, 8-bit/color RGBA, non-interlaced","md5":"38879b37709e4da1dbbb0bedb544e657","sha1":"315c38f7d6f5613a50afcdf28f3355ae821ddf60","sha256":"a4ce3b3a1b47c45f80cebf6f2fff3d85fb1f3aef17237119bc9c2e075fc05130","sha512":"cbce643141107b09ea930d97bb850ce891c389bad0092d4e4617563216294b150b458c11763fe66cf73197da95a97cb37b1c9086fd94c4ee4c782b9e1eccd187","ssdeep":"1536:Bsp5wFUFDPPayE0lNuKtaiHwMDpvexO3hShA1nH5X+5zWkx9efKmtEYKBK8lZYmg:B2aUFDnM0raibZ61A1ZXGzd9vCEYKBKj","tlshash":"f9a31262524bbb38e67d1adb21d62c303d49fefd2ac35a443b10e46d5042d0a61d1beb","first_seen":"2025-08-04T10:13:59.468508Z","last_seen":"2026-05-15T20:09:18.762419Z","times_seen":4,"resource_available":false,"data":null}},"time_used":431,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/jost/v20/92zatBhPNqw73oTd4g.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.19.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /s/jost/v20/92zatBhPNqw73oTd4g.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://3riversmyb.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 26576\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 May 2026 01:50:14 GMT\r\nexpires: Sun, 09 May 2027 01:50:14 GMT\r\ncache-control: public, max-age=31536000\r\nage: 584195\r\nlast-modified: Tue, 09 Sep 2025 18:31:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26576,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 26576, version 1.0","md5":"928f4210aa4859fcfdb853d2c6329589","sha1":"d3fc5b412c86d44da139622eb1712e22c3c510e0","sha256":"7726a5cd6f3c0e876c028ea2a643d45f7aad4b0f164b70966c669f4a4668f4b9","sha512":"41af246a04d784717cf33d2b4d03aaf639f37e4b1fa71694efeb65cc17369b4634ba6f51c202411b566c1f14f20cb69aba3f60a76ee740365fa9b135a51e878d","ssdeep":"768:c/bdLR0K3WlvjqHiGVNQsbQbVBjDcOrMNZYYH4V+:wTzW7qHijHVBjRrM3BY4","tlshash":"dac2e0c934e88a02d2cce133115e65511f98e170ba4e55aed5efe1dfcd98b403d88e86","first_seen":"2024-09-30T20:29:44Z","last_seen":"2026-05-15T22:23:37.143042Z","times_seen":21222,"resource_available":false,"data":null}},"time_used":370,"timings":{"blocked":162,"dns":4,"connect":21,"send":0,"wait":8,"receive":3,"ssl":168},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/css/plugin/slick.css","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/css/plugin/slick.css HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-6f0\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 532\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1776,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"f38b2db10e01b1572732a3191d538707","sha1":"a94a059b3178b4adec09e3281ace2819a30095a4","sha256":"de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5","sha512":"c11e283612c11dfeec9a3cb42b8a2acdd5ae99dfabe7ffba40efef0dd6bbe8c5b98ae8383d3eeff3a168124c922097eddd703401ee9ac6122f1ebab09bbf7737","ssdeep":"","tlshash":"c931294845b389468416808d5fd7ca6d2bfff0130829e199ba8d1306cfce7d8a9c26b2","first_seen":"2023-04-05T08:37:21Z","last_seen":"2026-05-15T22:17:47.630896Z","times_seen":61655,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":92,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/get-start.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/get-start.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:32 GMT\r\netag: \"67e9dea4-4f0b\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 20235\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":20235,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 469 x 380, 8-bit/color RGBA, non-interlaced","md5":"5810137776c7c539e0b055159c114f38","sha1":"436a08b06254d6b1f622aa784baabbc10fe6fa21","sha256":"9ec290d9bffeff4f1269349384c43e39f97408391acb6e358992a6d1df5e1cd4","sha512":"4083742d055f3035f083746633a0df71d251de060e363043cdbe4cbc4ff1916e2d5dfc2005878ef7599a0942946c77fba366451494bdcad76c9624317dbb2261","ssdeep":"384:oncEuzs+UiO9HxKzmia7xI7SxMN2T7USikRZkTiUqTPsFyMlVxHJuQjoG3Sji6Gi:TE4s/N7mmJdSMTUwpjTPsnlL4zSKN5lP","tlshash":"b492e029fcd36dfecba0dcf203e888575bd09097b32997a43356165faac9604cc4065b","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.728816Z","times_seen":20,"resource_available":false,"data":null}},"time_used":465,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":461,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/footer-Illu-right.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/footer-Illu-right.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:40 GMT\r\netag: \"67e9deac-8a6c\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 35436\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":35436,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 372 x 437, 8-bit/color RGBA, non-interlaced","md5":"261eb1c300e4069775882203c88a5677","sha1":"3a7c3bace977ecd7de5e0b8622b939de5289fdad","sha256":"66ff78578843d57ce209cbe355c6a6110b50d7733641ac462e0486d15bb39a48","sha512":"e05adcb16e13f76466bd56577942d1d5bba30b891fcc92306bc124888ce0c77d870f47dfe5ddb893f2a1a9e1fd88b0935d1d3abdc9de7664e94b5f03f4995c13","ssdeep":"768:lYM9Qqmygf/FKqP6HjQvEyzNH3BQxCeDNdjk:lYsm7fdKqPIQsyxCEUd4","tlshash":"01f2e15b05532202e110e7c7c30322ed2f26c97f5e74267783b6b8967f86ad548fa2d6","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.712715Z","times_seen":26,"resource_available":false,"data":null}},"time_used":482,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":471,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.google.com/translate_a/element.js?cb=googleTranslateElementInit","fqdn":"translate.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"172.217.20.174","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.091Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:35:05 GMT","end":"Mon, 13 Jul 2026 08:35:04 GMT"},"fingerprint":{"sha1":"30:DD:C1:AE:17:67:59:0A:2A:9C:1D:E3:B9:38:B2:60:4A:10:C7:AE","sha256":"BD:51:17:8F:71:1E:94:3E:35:23:87:1C:DF:5B:1F:F0:37:5C:FD:D7:2D:BD:B0:43:B4:F3:3D:65:5F:10:7C:3D"}}},"request":{"raw":"GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1\r\nHost: translate.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":81948,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (2136)","md5":"1c13d7d8a1e0f42452eb0e1a6cc5c19a","sha1":"b743d04adc898d8ed23a926acd3f724b6a7c9e03","sha256":"b17a7104355225048712a05fbde9a1b65a5c8374818a5f881b00af088541867f","sha512":"97c8a981668c959f13bb9e4a4e3a17fd14955f9f3da901d6992996a54c5acfb03a46fd828838c5e55035873bc556e9ab9cc295e3d04fe7e389abda9bc62f9046","ssdeep":"1536:Xm2R5t/BC65TL5kZ6bUaBoq3KxPGF1RbjmYBCKucbR9xGiHwNWpe:Xj56Fq3KxAFCO3GiZe","tlshash":"c483b8ccb6a574a69357f5a5412f000eb23f68dde8084cacb288d8e1adf4949453bf7d","first_seen":"2026-05-15T20:05:15.435941Z","last_seen":"2026-05-15T20:56:13.390477Z","times_seen":10,"resource_available":true,"data":null}},"time_used":236,"timings":{"blocked":69,"dns":1,"connect":21,"send":0,"wait":37,"receive":0,"ssl":104},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/icon/loan-11.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/icon/loan-11.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:40 GMT\r\netag: \"67e9deac-438\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1080\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1080,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"75b559a91f6767c73825d325738dce2d","sha1":"221c0657de34eade3133d0ca4a8d5db5ab869c35","sha256":"988a9865fe7654595c16dde39d803a07d27895504a81c6e8788a6be9b32e7fe5","sha512":"fa4f6763bc1ee3c3f0096dbef32529e477fb245c1ebca2e742e40518b59b9d147c55edebc211f88e6b6e004519eee09714bdb6746b332892c5eaf6a57f49f8e7","ssdeep":"","tlshash":"be11b6e3b7a6b6657d230927c2c3504010924ae90001da8370bade9cb8b6f8d4a7a751","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.734248Z","times_seen":18,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/footer-Illu-left.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.078Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/footer-Illu-left.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:30 GMT\r\netag: \"67e9dea2-93ed\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 37869\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":37869,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 286 x 287, 8-bit/color RGBA, non-interlaced","md5":"5eebadbf005ea4c3f9f0522638f62909","sha1":"01e5818f2179d71a7b9a72d13b8fd984ff4139df","sha256":"1aac52f23d6b63d580a10c69056489bc7c3dcf615a7a30cbd0cce779f7e9bc1f","sha512":"2f574cf2b4242a1c284baecb32740b27b1a19782dab8d553101f5c92c965b975535c65a6a609c9e4e4b67c3f4b0fba091adb54bc110325b33d2077ffe9deac14","ssdeep":"768:E2oaeiuXOyWp5ucz2H5rzwVylTji5fc6jyNThvVGI6G4G:RVnu8yR0cIc3z9/6K","tlshash":"5703f2370aff29e4eef8b355f3c9b85c85ec4805bdab985a2a0933dc4586473d18d584","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.729969Z","times_seen":26,"resource_available":false,"data":null}},"time_used":473,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":465,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/plugin.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.089Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/plugin/plugin.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-2883\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":10371,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"f07c98f882a9fed613b1766efec93939","sha1":"ca706d9af7a454f71a35aebd7ec69706a473ce94","sha256":"3fe94d7de93317a24c24f58ccba75ca44a1646caa87926af39a9583b2812fdc7","sha512":"c4460ffde31192283b92b949fd7e616182ee3a91385ed2f16fdbcef01d2038ead2719b77b7fe96e5fef86cc28b516ece1fde419ba0901f2336b317f5e0cf3fea","ssdeep":"192:y/cNQyaLhDcNJa/LGhDcNJalh6cN/ay7hDc/hDcNTaxhDcN6yKh6cN6y2gB6cBUQ:y/cAhDcWLGhDcQh6cbhDc/hDc+hDcShB","tlshash":"da22224a54915133022391bead6bd35272e765038eaa7c10b7ec12844fad87d37fcaf9","first_seen":"2025-08-04T10:13:59.515755Z","last_seen":"2026-05-15T20:09:18.760892Z","times_seen":4,"resource_available":true,"data":null}},"time_used":529,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":529,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/images/branding/product/2x/translate_24dp.png","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.240Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /images/branding/product/2x/translate_24dp.png HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 1842\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 14 May 2026 21:26:51 GMT\r\nexpires: Fri, 14 May 2027 21:26:51 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 14 Oct 2021 09:08:00 GMT\r\ncontent-type: image/png\r\nvary: Origin\r\nage: 81599\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1842,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"c69c796362406f9e11c7f4bf5bb628da","sha1":"e489ce95ab56208090868882113d7416abf46775","sha256":"4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82","sha512":"d3ad560ed0fd29be7d2cc434694f09e5a6fbea8b29c0611aecb54a1b73b4d722c53f42a19dae9e3d5d358444e50fb8fffbc39d67ce751bdbc8c861f6f95d3162","ssdeep":"","tlshash":"4e31f9fd129220437101ade72165eef798347c15f412da60ce65ba389c9fe20ed9a619","first_seen":"2023-04-05T07:39:29Z","last_seen":"2026-05-15T22:27:05.267147Z","times_seen":61379,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/images/cleardot.gif","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.153.119","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:37:23 GMT","end":"Mon, 13 Jul 2026 08:37:22 GMT"},"fingerprint":{"sha1":"CC:9E:F8:1A:CF:E2:AE:BD:CA:7B:1C:86:13:7C:06:64:83:8A:3C:32","sha256":"8A:A3:8B:F8:5B:7F:59:EC:FF:62:94:8B:46:FF:DE:AB:43:6A:29:E0:E9:08:F2:56:40:67:7E:01:E2:56:A9:25"}}},"request":{"raw":"GET /images/cleardot.gif HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-type: image/gif\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"static-on-bigtable\"\r\nreport-to: {\"group\":\"static-on-bigtable\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/static-on-bigtable\"}]}\r\ncontent-length: 43\r\ndate: Fri, 15 May 2026 20:06:50 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\nlast-modified: Tue, 22 Oct 2019 18:30:00 GMT\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"fc94fb0c3ed8a8f909dbc7630a0987ff","sha1":"56d45f8a17f5078a20af9962c992ca4678450765","sha256":"2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363","sha512":"c87bf81fd70cf6434ca3a6c05ad6e9bd3f1d96f77dddad8d45ee043b126b2cb07a5cf23b4137b9d8462cd8a9adf2b463ab6de2b38c93db72d2d511ca60e3b57e","ssdeep":"","tlshash":"cb900003cac8c022c2a2c0300a0c03002bbaa8300228030ec0bc30fcec2a3a38c02000","first_seen":"2023-04-05T02:54:04Z","last_seen":"2026-05-15T22:23:23.754836Z","times_seen":70787,"resource_available":true,"data":null}},"time_used":131,"timings":{"blocked":54,"dns":3,"connect":7,"send":0,"wait":17,"receive":1,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/js/plugin/jquery.nice-select.min.js","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.086Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/js/plugin/jquery.nice-select.min.js HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/javascript; charset=\"utf-8\"\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:48 GMT\r\netag: \"67e9deb4-f8c\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1116\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":3980,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"605b2dd672a31ce82c1e065fe2d50e82","sha1":"0e877a32ea82a69623b135bd442e0ea5feaeb95a","sha256":"f936d8af44285700e9ba3aa9788ede4bf8644bffa92d55bb95012c3e58ab79ab","sha512":"c83be3784f8b7dce1fa6c3c60f9afd9a1bbbe78a2128e8f436d98c74a7b5489fb290efcd9264d0b7b5ab0a2f28a26b4df0f24bc2c3ec6c8dfbd7fab3dd6fe8bb","ssdeep":"","tlshash":"9b81101a72d121b294ff30a32a137045b236582be569c5067c5d82f01f9ec30abf6f8a","first_seen":"2024-10-11T08:18:43.376315Z","last_seen":"2026-05-15T20:09:18.726309Z","times_seen":5,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/webfonts/arafat-font.woff","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.906Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/webfonts/arafat-font.woff HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nReferer: https://3riversmyb.com/static/banking/home/css/arafat-font.css\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/font-woff\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Mon, 31 Mar 2025 00:15:50 GMT\r\netag: \"67e9deb6-458\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 1112\r\ndate: Fri, 15 May 2026 20:06:49 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1112,"size_decoded":0,"mime_type":"application/font-woff","magic":"Web Open Font Format, TrueType, length 1112, version 1.0","md5":"1233523414c7b36628401251ed778c22","sha1":"43e87c200b21361409a27fd71197c020cc04ff6f","sha256":"f1ad9269251c6c1ec2810607f505f84729b2d3b50378d3c698d315a17eb606b1","sha512":"4dcf66dbf7c3e2e906a4c5674b173894c8ab8af124b8137c7e5bf651024c27894ffbdf4067d44fe5a234a72c2ccdeb72d3e83d3f87cc6c9a75d7b499290d2505","ssdeep":"","tlshash":"652175ff8f039f39d6005c347c9c9afd7e12c4001e0d188b0d98a14e39dc6429ad6575","first_seen":"2023-10-15T03:45:18Z","last_seen":"2026-05-15T20:09:18.763247Z","times_seen":18,"resource_available":false,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.J5Ydo5S004s.O/am=AAAACA/d=1/exm=el_conf/ed=1/rs=AN8SPfp9kUudaw1ulzJ6ulh6qwmK1UutdA/m=el_main","fqdn":"translate.googleapis.com","domain":"translate.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.201.202","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:49.998Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"25:C3:78:A0:E1:97:BA:8A:CE:43:FA:9C:BF:89:EF:DD:A3:CD:9C:40","sha256":"C1:18:7F:C1:92:8E:D0:83:CA:E8:62:DB:BE:FE:89:B2:84:13:70:FA:0E:40:65:D2:B6:8C:09:37:73:46:4D:4B"}}},"request":{"raw":"GET /_/translate_http/_/js/k=translate_http.tr.no.J5Ydo5S004s.O/am=AAAACA/d=1/exm=el_conf/ed=1/rs=AN8SPfp9kUudaw1ulzJ6ulh6qwmK1UutdA/m=el_main HTTP/1.1\r\nHost: translate.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 121289\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 14 May 2026 17:32:10 GMT\r\nexpires: Fri, 14 May 2027 17:32:10 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 13 May 2026 05:09:30 GMT\r\ncontent-type: text/javascript; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 95680\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":419568,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2481)","md5":"6891c31a5a2f4ed015baac4b8ef6af18","sha1":"78e3b3dbda9e8da48be3aa450d70b07f8425ad29","sha256":"c403d4b45232885d921caabac303ac7ca86802f1eda84ee3fc0e22bb799754d3","sha512":"813ef52764583851542c3cb767af4f7b4ad1824b147566181be857bac4cdc5962be2418ddf18d371618c2ac78de8470c26d099195633dc05052d3a6808e749f9","ssdeep":"3072:qqFlY023LyM3AstLl8qYCTVuPJHk9P2uvFqgpHdzOCL/ITbEEXQnioigy7Q:003JEwEdzuToEXQ9","tlshash":"5694e9d9b2a374529262f8e1e07f0057b53dac5bb4484cacb249d8d66eb08095273f7f","first_seen":"2026-05-14T18:32:40.231546Z","last_seen":"2026-05-15T22:27:05.290297Z","times_seen":312,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":35,"dns":24,"connect":8,"send":0,"wait":10,"receive":21,"ssl":25},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/static/banking/home/images/logo.png","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET /static/banking/home/images/logo.png HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://3riversmyb.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: image/png\r\ncache-control: max-age=0, public\r\naccess-control-allow-origin: *\r\nlast-modified: Fri, 25 Apr 2025 12:35:35 GMT\r\netag: \"680b8197-2d79\"\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-length: 11641\r\ndate: Fri, 15 May 2026 20:06:50 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":11641,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 403 x 100, 8-bit/color RGBA, non-interlaced","md5":"3d9b1ba22f3545d61ace1008d4fd5770","sha1":"4eec0278c5bead1db879bc43fb42603dc9dabd52","sha256":"a46e0999233a21b9c854c81fea03c570a9430c599823d28c9df6ea280c65e4d4","sha512":"afd841404d8cca6b5dab199afe4fe2822ee2283c7e8619512caa93e98827fa861e6fe86e8a463053a5f0cc9544503aec7decc7324bc2e603ff4ac338e444b8a3","ssdeep":"192:c9GgaxDlUWN6m+cgKv8rupcq3miJJECtp+kfFQb5NdxNzaXl6T9nMQUOcWq:H1xpUWkcgKv8qT2iJJECtpJuNXN0XQUx","tlshash":"5632cfd35a491db03cf8e1fa023b8650bc627b566bd2d3429242f5be3402d731d66f62","first_seen":"2026-05-07T19:56:59.898335Z","last_seen":"2026-05-15T20:09:18.700178Z","times_seen":3,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":100,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"3riversmyb.com/","fqdn":"3riversmyb.com","domain":"3riversmyb.com","tld":"com"},"ip":{"addr":"163.61.188.2","port":443,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-15T20:06:48.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"3riversmyb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 14:43:20 GMT","end":"Wed, 17 Jun 2026 14:43:19 GMT"},"fingerprint":{"sha1":"C5:18:F2:8E:5F:CB:FE:F3:8C:67:0B:FA:0D:D8:D8:C9:AC:D5:A8:B5","sha256":"C4:C2:F7:BE:4D:72:35:92:D2:11:53:73:3D:7A:2D:8C:18:E0:25:30:7A:03:43:1C:C6:16:12:D8:C8:F8:5B:BE"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 3riversmyb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=utf-8\r\nx-frame-options: DENY\r\nvary: Cookie,Accept-Encoding\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-encoding: br\r\ndate: Fri, 15 May 2026 20:06:48 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Slick","description":"","website":"https://kenwheeler.github.io/slick","common_platform_enumeration":"","icon":"Slick.svg","categories":["JavaScript libraries"]},{"name":"jQuery UI","description":"jQuery UI is a collection of GUI widgets, animated visual effects, and themes implemented with jQuery, Cascading Style Sheets, and HTML.","website":"https://jqueryui.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery_ui:*:*:*:*:*:*:*:*","icon":"jQuery UI.svg","categories":["JavaScript libraries"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"WOW","description":"Reveal CSS animation as you scroll down a page.","website":"https://www.delac.io/WOW","common_platform_enumeration":"","icon":"","categories":["JavaScript frameworks","Web frameworks","JavaScript graphics"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":29198,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"bc4edf1ca9dac6a1cbec8f08a69ee223","sha1":"c85358a46844ac2ed580d72026184c88e006b266","sha256":"73157923690c2870d76a8186652da17357ae0d0f0e336a5611247593ed796906","sha512":"2343d5e91a4d1a1c4779d8be1488f1e97b048778bf025007acf6af75ac768a877ddb609077f43e82070dbd8428bc9cbaf9e327fa9a5f489e9fb9b27dc948ba31","ssdeep":"192:OhJskSgoS+Yle5oXW5PbzNGGZ2glV/6KLqzeE9s8Bo+kXzPTgwfhtboEzPz9ysoC:hkbo6024yeE9kht8EzPz9ysohM","tlshash":"30d2ac3169f1913705d3909a79365f1aafc0e907c62b46047abc0bc99fe3e8acd57a0d","first_seen":"2026-05-07T19:56:59.894375Z","last_seen":"2026-05-15T20:09:18.764131Z","times_seen":3,"resource_available":true,"data":null}},"time_used":889,"timings":{"blocked":322,"dns":141,"connect":87,"send":0,"wait":241,"receive":0,"ssl":95},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-05-15","alert":"Sinkholed","trigger":"3riversmyb.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-15","alert":"Phishing Block","trigger":"3riversmyb.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"172.217.20.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://3riversmyb.com/","date":"2026-05-15T20:06:50.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 20 Apr 2026 08:36:34 GMT","end":"Mon, 13 Jul 2026 08:36:33 GMT"},"fingerprint":{"sha1":"99:99:69:B2:FC:B4:4F:EA:18:FB:04:4C:0F:8D:3E:40:61:B5:31:00","sha256":"55:6F:9F:9F:5C:FF:31:03:79:C7:88:2B:89:0C:1A:2F:DE:0B:7B:1A:91:6E:BD:C8:7D:60:EF:5A:D9:C7:51:26"}}},"request":{"raw":"GET /_/translate_http/_/ss/k=translate_http.tr.B7Dih9Jyjnw.L.F4.O/am=BBDg/d=0/rs=AN8SPfouA6X-4oqVZ41sMfXPdYPzSvIi1g/m=el_main_css HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://3riversmyb.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"rosetta\"\r\nreport-to: {\"group\":\"rosetta\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/rosetta\"}]}\r\ncontent-length: 3967\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 11 May 2026 17:44:53 GMT\r\nexpires: Tue, 11 May 2027 17:44:53 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Thu, 09 Apr 2026 01:12:55 GMT\r\ncontent-type: text/css; charset=UTF-8\r\nvary: Accept-Encoding\r\nage: 354117\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20284,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text, with very long lines (20284), with no line terminators","md5":"fde4f72b90fe807270db3c332dd058df","sha1":"7ef4d70af01c38a7f80a7650be25f63aff4ba751","sha256":"ab31c9be358d2107fc1158434c7aeaaf15f82e3e405ed67ab236b5ac232ed159","sha512":"9bef39350af557afeb10cb71068426ab28befaf5295359954787be06a5ce0993d69e8f5018a5a17c44311d294dd1a87a6f82edd0f5743df0149b8e4e53061695","ssdeep":"192:nvqx/EhZINcrXsfg0SgG8CqA3uku9SJFzvQVMbnUIfIxIVVpTrecfzPtcmt4v78l:gMF8Sb3i0JFzourUqWMVpTrdfzPtcBG","tlshash":"c492872057aed01967efa82364d36dff71d444db90123eeaaf5a7352cd821f231ea214","first_seen":"2026-04-13T20:43:22.641436Z","last_seen":"2026-05-15T22:25:50.199029Z","times_seen":6426,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}