{"report_id":"da3e4382-298b-4d06-ba9a-67734f82c186","version":6,"status":"done","tags":[],"date":"2026-04-05T14:56:23Z","url":{"schema":"http","addr":"ryosweb.com","fqdn":"ryosweb.com","domain":"ryosweb.com","tld":"com"},"ip":{"addr":"74.0.48.133","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"rizveryosco.com/","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"title":"Next Generation Script Exploits","dom":{"size":16729,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"26c96ff90726b092fb81178703d3e2ef","sha1":"8a3c0b1c9f94c71366b7cab876cf1a227831143b","sha256":"aece52aee58b8ed4cc050a779f8ea39636b1e07db008b17ddd0ff29e51da6aa7","sha512":"a6959ff89099580e5565893088fa8bf8cb92c5839e030f9c9983e505583e22d6317cc3689c30bfa60b77c6298116703f41154cbeb395c12a16e4db8d8e8f7526","ssdeep":"192:38HrmOOI5olB/vfFskP8AAvmDz43JBel7ox+eh+/GvOunBn0ng1u4r31Xi:MHrmOOT1w5bth+No0mA","tlshash":"7f72d739e9f15173006340c2eae693676fbbd117c5120045f2ed17ac1fd2d8d961bba9","dom_hash":"domhash7f94b26bb8996be9d92162986b79023f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ryosweb.com","fqdn":"ryosweb.com","domain":"ryosweb.com","tld":"com"},"ip":{"addr":"74.0.48.133","port":0,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-10T14:56:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"ryosweb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"ryosweb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ryosweb.com","ip":{"addr":"74.0.48.133","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"domain_registered":"2025-03-02","domain_rank":0,"first_seen":"2026-02-04T03:24:16.013632Z","last_seen":"2026-02-04T03:24:16.013632Z","alert_count":2,"request_count":1,"received_data":513,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"rizveryosco.com","ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"domain_registered":"2026-04-02","domain_rank":0,"first_seen":"2026-04-04T20:33:05.795325Z","last_seen":"2026-04-04T20:33:05.795325Z","alert_count":8,"request_count":4,"received_data":33242,"sent_data":1794,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"rizveryosco.com/","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ac74116e6311b562188429f53453a03","sha1":"41fbdbcaa14aeb3b769872dac079cbb4e9a2ea82","sha256":"eab0f10f29a881b4b6e286a0795eddf3ee0f66eff46260e2f7fd9c1aced6bbd7","sha512":"ccc66ddf115a04c57692c411dd68107a2803c1abf5591921e1d5b5dd44191e218e455baa8c322b6bf463f97ac16e874b88d154391b23e31788bf47d67e6708ae","ssdeep":"","tlshash":"4ce05e3d1723496082332155daaba306e57010b32418c855f99cad8cffa9a45a8a3ac9","size":325,"data":"","first_seen":"2026-04-05T14:56:25.941894Z","last_seen":"2026-04-05T14:58:29.706947Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rizveryosco.com/script.js","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"introduction_type":"scriptElement","is_inline":false,"md5":"b2174430e97194b6a42e4b42ec59831e","sha1":"68128d80b952dc8a22d7f526d97d432468bd8360","sha256":"95ff84ebd0e05d241d3c8e6bd21910976bbf380ad2dffe56bd585118d6c81b67","sha512":"75fa4a0ec418505221ef4ed7d833d94ab8b20fadee440a01669845db73a1df134afed5ba8e7a61b2958d372fb9bd24890ecc8e0b4eb60fbdfd680a1778bd8434","ssdeep":"","tlshash":"e051bd2b12b2203580a7716a93df8b887a3a104b7406cd563f5c4b4e1fe1da569f3ee5","size":2712,"data":"","first_seen":"2026-03-27T14:56:41.775218Z","last_seen":"2026-04-05T14:58:29.70627Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ryosweb.com/","fqdn":"ryosweb.com","domain":"ryosweb.com","tld":"com"},"ip":{"addr":"74.0.48.133","port":443,"asn":3257,"as":"GTT Communications Inc.","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-05T14:56:01.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ryosweb.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 22 Mar 2026 20:19:37 GMT","end":"Sat, 20 Jun 2026 20:19:36 GMT"},"fingerprint":{"sha1":"60:D1:59:EF:29:31:0C:1A:46:76:F9:24:13:CC:3B:25:77:8B:AA:87","sha256":"D3:10:69:D8:65:C9:17:A7:AD:49:4B:50:8A:B6:0B:8B:DE:29:4B:59:8B:D5:6C:0A:01:15:73:15:41:B4:EC:A0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ryosweb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 14:56:01 GMT\r\nContent-Type: text/html\r\nContent-Length: 191\r\nConnection: keep-alive\r\nLast-Modified: Thu, 02 Apr 2026 07:37:54 GMT\r\nETag: \"e2-64e75474f1a54-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":226,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"b8b4e609043ff481c59de50170381c73","sha1":"dc88fd287e43d4f70a1d5e4118acc2ae8d71b446","sha256":"c7c8f03b33dd3cfe0aff1926f3a73819a1e2245ae426697363086d66375b276d","sha512":"fd5afb7148e040357faa4065205f0a2b33f8aeb76d378222abe0afcdb08fb543185fe7379c7d9ac9da7bcb841919387af4528c7694097abd11a8086d3061e18c","ssdeep":"","tlshash":"5ed0238594a30406d0d186c049f3f32c145ef5972041c68535cc73025f5578b4cc347d","first_seen":"2026-04-05T14:56:25.937874Z","last_seen":"2026-04-05T14:58:29.704512Z","times_seen":2,"resource_available":true,"data":null}},"time_used":202,"timings":{"blocked":89,"dns":42,"connect":19,"send":0,"wait":23,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"ryosweb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"ryosweb.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rizveryosco.com/","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-05T14:56:01.817Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rizveryosco.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 06:40:43 GMT","end":"Wed, 01 Jul 2026 06:40:42 GMT"},"fingerprint":{"sha1":"87:9D:8A:BE:D5:68:0E:D1:A1:C0:43:EA:34:00:F4:E6:E5:95:FF:CC","sha256":"4E:1A:D7:97:CB:76:81:EA:A3:23:22:BD:BC:3C:99:92:87:0F:17:B3:18:5B:4D:22:74:19:C7:F0:F3:AF:67:5B"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: rizveryosco.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ryosweb.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 14:56:01 GMT\r\nContent-Type: text/html\r\nContent-Length: 4227\r\nConnection: keep-alive\r\nLast-Modified: Sun, 05 Apr 2026 12:06:50 GMT\r\nETag: \"3ba1-64eb5629cf95d-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15265,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"4b3f55ff4d047fc1c1fc561cabcb21b8","sha1":"9bc4f4df65cb3758f8cffe19152355fdf0cdeddf","sha256":"59a739f2354fb25c22e42b9dad6a851e3403f2cca3dea4c57f0e31ee9e155ecf","sha512":"b6e4d7bb530db754c5823d9612ff5ac5c8d6ec46f137ed6df54e032ee0fea58d284fda14cd9724df1aa353ef8e55cbed799ef4a20dc69a67266728eac17e4f16","ssdeep":"192:lyHrmOOI5olBThfP8RmD41Bm7ox+eh+/GvOunBouXPVNM:4HrmOOTBc1lth+NookLM","tlshash":"0c62936ae9f1a173016340d3daa6a3677fe6d417c1060000f0fc57ac1fd6e8aea1b69d","first_seen":"2026-04-05T14:56:25.938827Z","last_seen":"2026-04-05T14:58:29.705351Z","times_seen":2,"resource_available":true,"data":null}},"time_used":327,"timings":{"blocked":141,"dns":62,"connect":38,"send":0,"wait":41,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rizveryosco.com/style.css","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://rizveryosco.com/","date":"2026-04-05T14:56:02.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rizveryosco.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 06:40:43 GMT","end":"Wed, 01 Jul 2026 06:40:42 GMT"},"fingerprint":{"sha1":"87:9D:8A:BE:D5:68:0E:D1:A1:C0:43:EA:34:00:F4:E6:E5:95:FF:CC","sha256":"4E:1A:D7:97:CB:76:81:EA:A3:23:22:BD:BC:3C:99:92:87:0F:17:B3:18:5B:4D:22:74:19:C7:F0:F3:AF:67:5B"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: rizveryosco.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rizveryosco.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 14:56:02 GMT\r\nContent-Type: text/css\r\nLast-Modified: Thu, 02 Apr 2026 07:37:33 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69ce1cbd-350c\"\r\nExpires: Mon, 06 Apr 2026 14:56:02 GMT\r\nCache-Control: max-age=86400\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":13580,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text","md5":"7c16fa07fac41e7044e62de7f6cd9832","sha1":"84d48eded8476899cf72676b70eed6e5f36e1248","sha256":"f58f6bd1d36fb1fc489afead4f184ed12362615151b3624217f888b0482ebebf","sha512":"464f527a4a8136d7523ea780a1a79060e0d33f4aac928383060fa151b6ad5f8a5a776b304c2776492dc77910e167558ddc31acb6897c0d1655576e7c3c7c88dc","ssdeep":"192:dpEBj+eOKI3A3qFsxb0bWMDLs3ZCvB+h5h7LaLsp1qOehg4Il+O3xYA+MvzPULpX:d1Fsx9BEyAUA","tlshash":"4952345966a71999781f982517ff97c4739ca087cc0dce7e3acd21548f893b8a0a2f4c","first_seen":"2026-03-27T14:56:41.774198Z","last_seen":"2026-04-05T14:58:29.702686Z","times_seen":7,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rizveryosco.com/script.js","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://rizveryosco.com/","date":"2026-04-05T14:56:02.115Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rizveryosco.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 06:40:43 GMT","end":"Wed, 01 Jul 2026 06:40:42 GMT"},"fingerprint":{"sha1":"87:9D:8A:BE:D5:68:0E:D1:A1:C0:43:EA:34:00:F4:E6:E5:95:FF:CC","sha256":"4E:1A:D7:97:CB:76:81:EA:A3:23:22:BD:BC:3C:99:92:87:0F:17:B3:18:5B:4D:22:74:19:C7:F0:F3:AF:67:5B"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: rizveryosco.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rizveryosco.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 14:56:02 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Thu, 02 Apr 2026 07:37:33 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69ce1cbd-a98\"\r\nExpires: Mon, 06 Apr 2026 14:56:02 GMT\r\nCache-Control: max-age=86400\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2712,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"b2174430e97194b6a42e4b42ec59831e","sha1":"68128d80b952dc8a22d7f526d97d432468bd8360","sha256":"95ff84ebd0e05d241d3c8e6bd21910976bbf380ad2dffe56bd585118d6c81b67","sha512":"75fa4a0ec418505221ef4ed7d833d94ab8b20fadee440a01669845db73a1df134afed5ba8e7a61b2958d372fb9bd24890ecc8e0b4eb60fbdfd680a1778bd8434","ssdeep":"","tlshash":"e051bd2b12b2203580a7716a93df8b887a3a104b7406cd563f5c4b4e1fe1da569f3ee5","first_seen":"2026-03-27T14:56:41.775218Z","last_seen":"2026-04-05T14:58:29.70627Z","times_seen":7,"resource_available":true,"data":null}},"time_used":201,"timings":{"blocked":80,"dns":1,"connect":38,"send":0,"wait":38,"receive":0,"ssl":42},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rizveryosco.com/favicon.svg","fqdn":"rizveryosco.com","domain":"rizveryosco.com","tld":"com"},"ip":{"addr":"147.45.41.219","port":443,"asn":210644,"as":"Aeza International Ltd","country":"Austria","country_code":"AT"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://rizveryosco.com/","date":"2026-04-05T14:56:02.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"rizveryosco.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Apr 2026 06:40:43 GMT","end":"Wed, 01 Jul 2026 06:40:42 GMT"},"fingerprint":{"sha1":"87:9D:8A:BE:D5:68:0E:D1:A1:C0:43:EA:34:00:F4:E6:E5:95:FF:CC","sha256":"4E:1A:D7:97:CB:76:81:EA:A3:23:22:BD:BC:3C:99:92:87:0F:17:B3:18:5B:4D:22:74:19:C7:F0:F3:AF:67:5B"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: rizveryosco.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://rizveryosco.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 05 Apr 2026 14:56:02 GMT\r\nContent-Type: image/svg+xml\r\nLast-Modified: Thu, 02 Apr 2026 07:37:33 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69ce1cbd-1ba\"\r\nExpires: Mon, 06 Apr 2026 14:56:02 GMT\r\nCache-Control: max-age=86400\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":442,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"81c76c10bc20d8f88ab20b542025265b","sha1":"75aa3470706f1f27f2c4775825d31663318df2d6","sha256":"077df9e4e5c60fa9c75edee478f0e587ba4efda7deac4657dad93302142e7d66","sha512":"ac80021077f48f209d97888cacee5f96543a75d122b975b1bba873f23e9ce89634c45b539f4f33ca9ac77d44913ee2b0bdd738dada718ab11f606ee383fae8b3","ssdeep":"","tlshash":"e8f0e525d4e98423c128a381db64a8fa271dc1e392a58214b5ee3f183f5c4f668477a8","first_seen":"2026-03-27T14:56:41.776159Z","last_seen":"2026-04-05T14:58:29.70359Z","times_seen":7,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-05","alert":"Sinkholed","trigger":"rizveryosco.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}