{"report_id":"1e49a9d2-f2f6-4537-a920-291cb34889f6","version":6,"status":"done","tags":[],"date":"2025-10-20T17:48:35Z","url":{"schema":"https","addr":"tr.ee/7atAQR","fqdn":"tr.ee","domain":"tr.ee","tld":"ee"},"ip":{"addr":"151.101.130.133","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"title":"Quitting! 30b Giveaway,up to 600M for each player (level based)."},"submit":{"url":{"schema":"https","addr":"tr.ee/7atAQR","fqdn":"tr.ee","domain":"tr.ee","tld":"ee"},"ip":{"addr":"151.101.130.133","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-24T17:48:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":3}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-20T17:48:12Z","timestamp":1760982492,"ip_dst":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.5","port":34236,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortener Service Domain (tr .ee) in TLS SNI","source":"{\"timestamp\":\"2025-10-20T17:48:12.579236+0000\",\"flow_id\":1908833620091425,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.5\",\"src_port\":34236,\"dest_ip\":\"151.101.2.133\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2060809,\"rev\":1,\"signature\":\"ET INFO Observed URL Shortener Service Domain (tr .ee) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_03_12\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0011\"],\"mitre_tactic_name\":[\"Command_And_Control\"],\"mitre_technique_id\":[\"T1102\"],\"mitre_technique_name\":[\"Web_Service\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"URL_Shortener\"],\"updated_at\":[\"2025_03_12\"]}},\"tls\":{\"sni\":\"tr.ee\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eba44f65697d964bf3f3303ea1a046aa\",\"string\":\"771,49199,0-23-65281-11-16\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3326,\"start\":\"2025-10-20T17:48:12.549409+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-20T17:48:16Z","timestamp":1760982496,"ip_dst":{"addr":"172.18.0.5","port":51630,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"196.251.86.14","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 45","source":"{\"timestamp\":\"2025-10-20T17:48:16.964360+0000\",\"flow_id\":2066830434791908,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"196.251.86.14\",\"src_port\":443,\"dest_ip\":\"172.18.0.5\",\"dest_port\":51630,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400044,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 45\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2025-10-20T17:48:16.946660+0000\"}}"}],"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-10-20","alert":"Phishing Block","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"www.runescape.com","ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2000-01-10","domain_rank":500109,"first_seen":"2012-06-03T04:29:58Z","last_seen":"2025-10-07T20:20:16.18256Z","alert_count":0,"request_count":23,"received_data":775635,"sent_data":10546,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"analytics.tiiny.site","ip":{"addr":"3.10.126.206","port":443,"asn":16509,"as":"AMAZON-02","country":"United Kingdom","country_code":"GB"},"domain_registered":"2020-04-21","domain_rank":5183494,"first_seen":"2022-07-02T08:24:07Z","last_seen":"2025-10-18T15:52:42.961786Z","alert_count":0,"request_count":2,"received_data":2018,"sent_data":931,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"tr.ee","ip":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2010-07-04","domain_rank":38970,"first_seen":"2015-09-02T12:25:53Z","last_seen":"2025-10-17T11:07:57.056849Z","alert_count":0,"request_count":1,"received_data":50581,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"t.co","ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2010-04-26","domain_rank":232,"first_seen":"2012-07-25T19:09:44Z","last_seen":"2025-10-20T03:52:48.07254Z","alert_count":0,"request_count":2,"received_data":2518,"sent_data":1994,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}]},{"fqdn":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","ip":{"addr":"196.251.86.14","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"domain_registered":"2025-04-05","domain_rank":0,"first_seen":"2025-04-22T11:28:39.84021Z","last_seen":"2025-08-15T13:07:24.44077Z","alert_count":4,"request_count":2,"received_data":775,"sent_data":1149,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]},{"fqdn":"mineraflorajulia.pe","ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-08-18T11:46:10.310365Z","last_seen":"2025-08-18T11:46:10.310365Z","alert_count":41,"request_count":41,"received_data":838909,"sent_data":21169,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Facebook Pixel","description":"Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising.","website":"https://facebook.com","common_platform_enumeration":"","icon":"Facebook.svg","categories":["Analytics"]},{"name":"Modernizr","description":"Modernizr is a JavaScript library that detects the features available in a user's browser.","website":"https://modernizr.com","common_platform_enumeration":"","icon":"Modernizr.svg","categories":["JavaScript libraries"]},{"name":"Tiiny Host","description":"Tiiny Host is a web hosting service for static sites with support for custom domains, SSL, password protection, and built-in analytics.","website":"https://tiiny.host","common_platform_enumeration":"","icon":"Tiiny Host.png","categories":["PaaS"]},{"name":"Twitter Ads","description":"Twitter Ads is an advertising platform for Twitter 'microblogging' system.","website":"https://ads.twitter.com","common_platform_enumeration":"","icon":"Twitter.svg","categories":["Advertising"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-20T17:48:12Z","timestamp":1760982492,"ip_dst":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.5","port":34236,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed URL Shortener Service Domain (tr .ee) in TLS SNI","source":"{\"timestamp\":\"2025-10-20T17:48:12.579236+0000\",\"flow_id\":1908833620091425,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.5\",\"src_port\":34236,\"dest_ip\":\"151.101.2.133\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2060809,\"rev\":1,\"signature\":\"ET INFO Observed URL Shortener Service Domain (tr .ee) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_03_12\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0011\"],\"mitre_tactic_name\":[\"Command_And_Control\"],\"mitre_technique_id\":[\"T1102\"],\"mitre_technique_name\":[\"Web_Service\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"URL_Shortener\"],\"updated_at\":[\"2025_03_12\"]}},\"tls\":{\"sni\":\"tr.ee\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eba44f65697d964bf3f3303ea1a046aa\",\"string\":\"771,49199,0-23-65281-11-16\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3326,\"start\":\"2025-10-20T17:48:12.549409+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-20T17:48:16Z","timestamp":1760982496,"ip_dst":{"addr":"172.18.0.5","port":51630,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"196.251.86.14","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 45","source":"{\"timestamp\":\"2025-10-20T17:48:16.964360+0000\",\"flow_id\":2066830434791908,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"196.251.86.14\",\"src_port\":443,\"dest_ip\":\"172.18.0.5\",\"dest_port\":51630,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400044,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 45\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2025-10-20T17:48:16.946660+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"0a5af6b60cb18544354f6418581ef48c","sha1":"bcfc86dd8e87653d980aa40151beb6cee662ad3f","sha256":"65b127da2de1db46749ef32807bb5a4fa9a9a8f057df2b25881c6aa9c40452e6","sha512":"cd7c8179ea09b7c2a552d60821038818dde02a18cf39c1e1c3ace2f32096b0bee03e6ccedee2749e6a33ca844539fe55588a99798f61e23215984d7f39f2c6c3","ssdeep":"","tlshash":"31e09248a50a083004a732993e7e7004a5301157686aedf83ace21c80f6e72f93a7ecc","size":415,"data":"","first_seen":"2023-03-09T12:06:20Z","last_seen":"2026-03-29T15:20:43.780087Z","times_seen":88,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"0a5af6b60cb18544354f6418581ef48c","sha1":"bcfc86dd8e87653d980aa40151beb6cee662ad3f","sha256":"65b127da2de1db46749ef32807bb5a4fa9a9a8f057df2b25881c6aa9c40452e6","sha512":"cd7c8179ea09b7c2a552d60821038818dde02a18cf39c1e1c3ace2f32096b0bee03e6ccedee2749e6a33ca844539fe55588a99798f61e23215984d7f39f2c6c3","ssdeep":"","tlshash":"31e09248a50a083004a732993e7e7004a5301157686aedf83ace21c80f6e72f93a7ecc","size":415,"data":"","first_seen":"2023-03-09T12:06:20Z","last_seen":"2026-03-29T15:20:43.780087Z","times_seen":88,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9e28b0b310876cafd5eb024b4a37bb89","sha1":"d84b20a99f7f8f34af4655ff65529a53211dfed3","sha256":"60713db9490e9e5826374b200902be4faab610a2a8063441ecdc818784489afe","sha512":"faae89a2c930fbfc4c1711e14c01281892d3c02652a2bfc4c363d12f41638ed5b8319b497419f7e1aecdef0bd3896368e80381e6958de645dd36cce5f5f7ad8e","ssdeep":"","tlshash":"2d1102f74d2e802467101a67ec5f380d864b6779dcc8afd1f80d94156d1807a20afee4","size":1009,"data":"","first_seen":"2025-10-20T17:48:42.456549Z","last_seen":"2025-10-21T00:44:33.148769Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"e580ec918e93de83d7e1783acdf2cf9e","sha1":"48e3b8a433cd5f606f2a15b42887183263a8871e","sha256":"d7bab2912d4e1aefd8db2dd9d14ec8dc3941e13fc3767afb88d2675d3fa891ea","sha512":"6f98edcea3a446a12de13991fdf45d4494173ce4915382ff12640cd59108ed3d674d6f1b1016e44c842c66c64eb37cba2b54c578c2cbf8db05e6b87abc4e2bcd","ssdeep":"","tlshash":"b0d0c93d6d7e0d74213c83bb20592318b521618ca9d0f4a0f98c10052d4d34a32e8197","size":213,"data":"","first_seen":"2023-10-15T02:01:19Z","last_seen":"2026-03-29T15:20:43.781604Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"9028b853992e7d27c89fe535002647bb","sha1":"75d41afcbb0956fec01f894e75bb9bd32889a1fb","sha256":"20ff5f943b4b4c342385d001cd1ce10c74d41f20da9a1f84560982dbf98185ac","sha512":"7f11bb6fd6323ae78ad50eda63e57d9cb295cbb1cae9e797e537e6a8ac82965a6e0cf3906040cc0e2d51f0267fb9a69ca067208620bafe8a2e2185113eedc9c2","ssdeep":"","tlshash":"0821446f22f30121437f76afa52b15c87110822b2956d853b50c926c4f91f49d8f35fe","size":1425,"data":"","first_seen":"2025-08-05T14:38:11.382017Z","last_seen":"2026-03-29T15:20:43.782562Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"analytics.tiiny.site/js/plausible.js","fqdn":"analytics.tiiny.site","domain":"tiiny.site","tld":"site"},"ip":{"addr":"3.10.126.206","port":443,"asn":16509,"as":"AMAZON-02","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"5fce354514318424fd93ceb724f574d0","sha1":"4555a156f92cf24c5e68b965597019655b893ac2","sha256":"7eec3429c76cb48e5fd457c5afb71b7cf34bc4298d53023bae8aea715443b4a9","sha512":"c71512329ee1145bf975e068db5b3ab3c17d16b3cd1b3c0632c1e6e695e4e3f4ba57f0346afc0a0de67d92b0e076099f53d052ab4629752fe37a656ee3d26740","ssdeep":"","tlshash":"8521a59b6812f675cc789a62aa3f731631377174b805a4126002c6523c24e9f837cece","size":1332,"data":"","first_seen":"2023-03-07T01:03:26Z","last_seen":"2026-04-01T16:37:13.254034Z","times_seen":1120,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"6152883f4f6c4e3bd40dce8bc499df1a","sha1":"c43527bcfbea4c9ff9abb4c1e12d750bf7cc7b33","sha256":"b5996de9a181a50f2670b6d80e6a2831ed636a85c25d28885b7f154fc53e9cc2","sha512":"abb36af0c736dbed522e3ff6f2669d68bfb670bd7f4d687baf01e9709c0cdbb9a7fb784caf26ba0dda212e9b6531566adf9c3692de0d9e3e4892425423d2580a","ssdeep":"","tlshash":"fb11eb1e1af80e310a29d1afa447a80a31564b2b246add96ff8c423d4f9c74584f02fc","size":1074,"data":"","first_seen":"2025-08-07T12:19:40.433271Z","last_seen":"2025-10-21T00:44:33.225158Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"introduction_type":"scriptElement","is_inline":true,"md5":"b2d0e53c72a6eebce04ff87d6415434a","sha1":"76f28ed492417a8886d8b3dd1592906c4a436bc8","sha256":"02d1916f029cdf15a8fb895d99529624b61367c3acb2cbd43759c304262b5d61","sha512":"20015af258dfbba1427742e7cab3b65487d90650c6e5f47004d30f40d720702def4667f75302829a68482c2c1ed9f6066880f7d9c37ecb7568035ae020a9d5c9","ssdeep":"","tlshash":"4ee02654292d68a39aa02a3c12bb860a31d6164235d40ea1c6da89c43932ccf841ae58","size":339,"data":"","first_seen":"2023-10-15T02:01:19Z","last_seen":"2026-03-29T15:20:43.783552Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/ho9n24qfzh.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/ho9n24qfzh.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 3126\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3126,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced","md5":"429705d40cff657d49ae2b429e90335b","sha1":"8d40c42d5d0ed2605987635c124fe7dbcb05eb65","sha256":"545b3e8ea059e3d2f6074767e17eb835f55c51a7b4b366d833618e69e69aa3f8","sha512":"ceadae9e5440dea3d88c5b7f1a2eb623c2392a27d3ea7bc6806cf216b81b48cdc4aabef0ef70c56e20746b2fa41d9a844015afb0a50aad7425e8f8b49f79f06f","ssdeep":"","tlshash":"41518d3773b7d4ec52a137fce281127024a040ab638a98c4c580addfd7d7239d4a899a","first_seen":"2023-10-15T02:01:19Z","last_seen":"2026-03-29T15:20:43.76015Z","times_seen":93,"resource_available":false,"data":null}},"time_used":2782,"timings":{"blocked":2592,"dns":0,"connect":0,"send":0,"wait":190,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/vendor-151.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.587Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/vendor-151.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1633,"timings":{"blocked":1310,"dns":0,"connect":0,"send":0,"wait":323,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/functions-152.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/functions-152.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1970,"timings":{"blocked":1704,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/arrow_black.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/arrow_black.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":694,"timings":{"blocked":527,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-20T17:48:13.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1 HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 28 Aug 2025 17:24:10 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 50106\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Facebook Pixel","description":"Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising.","website":"https://facebook.com","common_platform_enumeration":"","icon":"Facebook.svg","categories":["Analytics"]},{"name":"Modernizr","description":"Modernizr is a JavaScript library that detects the features available in a user's browser.","website":"https://modernizr.com","common_platform_enumeration":"","icon":"Modernizr.svg","categories":["JavaScript libraries"]},{"name":"Tiiny Host","description":"Tiiny Host is a web hosting service for static sites with support for custom domains, SSL, password protection, and built-in analytics.","website":"https://tiiny.host","common_platform_enumeration":"","icon":"Tiiny Host.png","categories":["PaaS"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Twitter Ads","description":"Twitter Ads is an advertising platform for Twitter 'microblogging' system.","website":"https://ads.twitter.com","common_platform_enumeration":"","icon":"Twitter.svg","categories":["Advertising"]}],"data":{"size":50106,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2153), with CRLF line terminators","md5":"f8e6f5a924cff4c4fba7b6d89804c5c5","sha1":"1f5e8f24b9c7dfed27d6b1981095c142ce3e1ab8","sha256":"1f48f97e49b3ee80b3ac1296adc7682134856170c0e78cd9d62b6e6f94b9a9da","sha512":"e447424585e64a2ba3829157f683f6ae0233fa4303f58352c64ec0591f67f90d75ad33c3818f064cc568c8451fd7f811c4d06bfd2233db4c5fde2852ec2b457d","ssdeep":"384:sU3DGKaI++GvIU/fYJ9l1v0F7CGtkbb/XUGInyVCfHPSYEMFfPamMB1i2Qea5:soDzaIJGvBfC18F7ebodaCvPyu2Qea5","tlshash":"6523a36369026d37c73316fbe111bf98e4a7c74ada814851f8ec2b9327d1ea7d007199","first_seen":"2025-10-20T17:48:42.399663Z","last_seen":"2025-10-21T00:44:32.514329Z","times_seen":3,"resource_available":false,"data":null}},"time_used":2159,"timings":{"blocked":798,"dns":415,"connect":187,"send":0,"wait":191,"receive":372,"ssl":194},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/l8868fls69.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/l8868fls69.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 92350\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":92350,"size_decoded":0,"mime_type":"image/jpeg","magic":"ASCII text, with very long lines (65505)","md5":"263efa76b506ef25de8d22c5799cf401","sha1":"7d3544f581ca543370a082a9d6f6b4b4d8e6d5ed","sha256":"e6d9733aea3f4e7444d2566a05cee98dc4647a4e76918dd4d83af2baa44c2a4d","sha512":"b95cea229782cb085a8a4ebbccbc214a334017a26d983b2f985ae97924ddc4a5c33d7e4a05ccd599b1a284e9a4ba6bb557d9fbf01a3104b484cba9b9eac0d27c","ssdeep":"768:fLDmd375tb4fz6t7CauX3ErEkCJ0tRLindp6DQY7i9o734JGZyX1MXe0VMsfsIJK:fL+7Hb9zHqeDOeD3k3ZP4meDxeDb5ihe","tlshash":"e493f9356681302df637d12afda2af8d603d9105d2130ebde97d29359dcb2ee0277688","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.775335Z","times_seen":87,"resource_available":false,"data":null}},"time_used":1882,"timings":{"blocked":1315,"dns":0,"connect":0,"send":0,"wait":189,"receive":378,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"analytics.tiiny.site/js/plausible.js","fqdn":"analytics.tiiny.site","domain":"tiiny.site","tld":"site"},"ip":{"addr":"3.10.126.206","port":443,"asn":16509,"as":"AMAZON-02","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.tiiny.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Aug 2025 18:37:46 GMT","end":"Sun, 23 Nov 2025 18:37:45 GMT"},"fingerprint":{"sha1":"D5:75:BD:D7:B6:24:DE:CE:97:C4:8E:B2:95:25:7C:04:22:9B:69:25","sha256":"48:FA:18:3A:B0:38:0B:BD:58:5F:C9:1A:12:72:20:DA:69:28:EC:D7:30:97:CF:F4:D3:94:0B:01:8D:A3:6C:2A"}}},"request":{"raw":"GET /js/plausible.js HTTP/1.1\r\nHost: analytics.tiiny.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 1332\r\nConnection: keep-alive\r\naccess-control-allow-origin: *\r\ncache-control: max-age=0, private, must-revalidate\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1332,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1332), with no line terminators","md5":"5fce354514318424fd93ceb724f574d0","sha1":"4555a156f92cf24c5e68b965597019655b893ac2","sha256":"7eec3429c76cb48e5fd457c5afb71b7cf34bc4298d53023bae8aea715443b4a9","sha512":"c71512329ee1145bf975e068db5b3ab3c17d16b3cd1b3c0632c1e6e695e4e3f4ba57f0346afc0a0de67d92b0e076099f53d052ab4629752fe37a656ee3d26740","ssdeep":"","tlshash":"8521a59b6812f675cc789a62aa3f731631377174b805a4126002c6523c24e9f837cece","first_seen":"2023-03-07T01:03:26Z","last_seen":"2026-04-01T16:37:13.254034Z","times_seen":1120,"resource_available":true,"data":null}},"time_used":266,"timings":{"blocked":106,"dns":60,"connect":24,"send":0,"wait":25,"receive":0,"ssl":49},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/2jos0cjr9a.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.488Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/2jos0cjr9a.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 15886\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":15886,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"ba3fe9032585b5a5203d4035bd0aa568","sha1":"eba559203c1d47e8e0ec406f6b51419b7fd55d19","sha256":"a1dbf47eba94f5f61f68066aac9c8c06d122a71917b30e3c42a7f3dacc0b899d","sha512":"bf15a53d665f3a8371aa7bc87d81068765a6f5fc3a537c66ebc27c012e7a3328aef0d3ceb0a5e0c3d5aaeeb4d3d100cf005a99a79f48faa206f279a26fb983ca","ssdeep":"384:HxBpp+o8sotmBHG37/bot5Y0vweZLb1MkPPMl2uANvuPXv3j:Hxd+pXcBmL/bq5hvw+LOMfnuj","tlshash":"9e62c0d3006c3b1a8aad884258d7ade5d4df5ae41f8f141c4a5c74066f2f58b78543b3","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.75071Z","times_seen":69,"resource_available":false,"data":null}},"time_used":2835,"timings":{"blocked":2643,"dns":0,"connect":0,"send":0,"wait":191,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/6-box-top.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.836Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/6-box-top.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 29262\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:38:28 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":29262,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 996x310, components 3","md5":"6754930d6841279ee9139b33f53c144c","sha1":"455ece4b0738f1399bbe0d8220d72a152745002c","sha256":"e3696cc2572c73e523e9a1ea343844fd5b7d4fafb6887810346b62d006c39230","sha512":"de3945eda7ceab2aaea357e6204e39a58da33b3dbd45d9cfbdfc0f2f356d9837a312f04b07ac6e294ca5f0e08b69fd2a4e743359aaa62ce6fd6769d1793007f2","ssdeep":"768:OUExBuNTiYVnDqLR+9W5FPBtXc1EbqmY2cqvYh/4dW0cfq0:VExBqTnDMR+0Fpa1EKxl/4RcT","tlshash":"e4d2e05e619b204ae71243760309af2f819a48e7f84fdf4c17ca69a77ecd234938c5b4","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.759558Z","times_seen":147,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":237,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/forums/search.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/forums/search.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":503,"timings":{"blocked":296,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tr.ee/7atAQR","fqdn":"tr.ee","domain":"tr.ee","tld":"ee"},"ip":{"addr":"151.101.2.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-20T17:48:12.544Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"tr.ee","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 05 Oct 2025 07:08:24 GMT","end":"Sat, 03 Jan 2026 07:08:23 GMT"},"fingerprint":{"sha1":"56:8A:13:CA:3D:69:D5:B0:1E:86:8D:86:A4:B1:19:51:75:51:DF:E6","sha256":"39:69:91:05:56:F9:28:A6:B7:49:0A:49:9F:A8:BB:D4:8B:2E:3B:8D:1A:DA:DF:8C:8B:25:2F:78:92:DA:9F:FC"}}},"request":{"raw":"GET /7atAQR HTTP/1.1\r\nHost: tr.ee\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\napigw-requestid: SwdamjjpPHcEMpA=\r\ncache-control: no-store\r\nlocation: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nx-frame-options: SAMEORIGIN\r\naccept-ranges: bytes\r\ndate: Mon, 20 Oct 2025 17:48:13 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410032-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1760982493.600730,VS0,VE597\r\nstrict-transport-security: max-age=300\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":50106,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":718,"timings":{"blocked":51,"dns":11,"connect":14,"send":0,"wait":610,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/3r3irs260q.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.460Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/3r3irs260q.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 149891\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":149891,"size_decoded":0,"mime_type":"image/jpeg","magic":"ASCII text, with very long lines (65505)","md5":"c1af66e28265a1766e6ef2c2611cceb5","sha1":"948a7a267d7be7701b9e600dc87b91228d8a8ccd","sha256":"c2cf7d1f13a9ca17db078bca6630477654e8b9f0429c7d4c5b60c248f5a416cf","sha512":"b5ee93916dad01ea54cc90ffe96f567231e7617f006ac9d2fc923c8fde83344ce51c4da0cf4bd73876432968e8543ae15e5dbd5a69923633e139bd76cec44de6","ssdeep":"3072:j/gH4pkwr2pMr7NgvpMJl5EdivId+8hRV79SXU5+8SNza1aQXE4zauviAwSOx+nF:j/S8kwryIevcl5EYIw8p79mU5+8SlaYe","tlshash":"f6e312735096ed2ed17045118351aed27f008867e74c52a2d7a299fdaefeb63b802f1c","first_seen":"2023-06-05T13:51:42Z","last_seen":"2026-03-29T15:20:43.766521Z","times_seen":73,"resource_available":false,"data":null}},"time_used":492,"timings":{"blocked":112,"dns":0,"connect":0,"send":0,"wait":188,"receive":192,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/optimize.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.476Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/optimize.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1319,"timings":{"blocked":825,"dns":0,"connect":0,"send":0,"wait":494,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/modernizr_3_0_0_min-100.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/modernizr_3_0_0_min-100.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1448,"timings":{"blocked":1027,"dns":0,"connect":0,"send":0,"wait":421,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/forums-100.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.591Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/forums-100.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":2037,"timings":{"blocked":1770,"dns":0,"connect":0,"send":0,"wait":267,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/lefwoxiwum.jpg(1)","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.593Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/lefwoxiwum.jpg(1) HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=93\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":2930,"timings":{"blocked":2675,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/_sprite/background-heading-small.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.826Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/_sprite/background-heading-small.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 11003\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:30:06 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":11003,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 221 x 46, 8-bit/color RGBA, non-interlaced","md5":"ad412bd576fddaa2c6f32c10545a8b6d","sha1":"b183c811ebb4b0f481b98dc597eafdee112a344a","sha256":"d3f5a5bb59a3fbb4d53b65f921b30e55068024d25ad9fece22298e7c6211c3d1","sha512":"d7f2e6e4b3b460b297acd6cc31e85ca09c09d32d4b848deaaa3ded72c7a936d135469ecd952c156d71e1a3fdb963055970aa5939600b9f6140c876d070a4fcd2","ssdeep":"192:3r8QQNuV4C2wCzkJXpmW+V0k+vW1IRTbGDRWCP+MC9tW2oOsKq8CjpQzM8YKLN/n:A7S4C2wCzqHk+iIVKICm/tXsKCC3lio","tlshash":"8532c107ceff1864b6e5236640db012cac63d37b5c864b88195172cde87d242706b9b7","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.757409Z","times_seen":129,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":278,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/linkid.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/linkid.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1122,"timings":{"blocked":355,"dns":1,"connect":188,"send":0,"wait":380,"receive":0,"ssl":195},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/forums/bb-buttons.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/forums/bb-buttons.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":938,"timings":{"blocked":635,"dns":0,"connect":0,"send":0,"wait":303,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/gtm.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.477Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/gtm.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1332,"timings":{"blocked":824,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/state.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.478Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/state.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1333,"timings":{"blocked":829,"dns":0,"connect":0,"send":0,"wait":504,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/background-main.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/background-main.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 3320\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:34:33 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3320,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3","md5":"cc1d3d840d7ee8887939b6908cbc7e8a","sha1":"697955761005d8914b2999e47b64a041cad8c039","sha256":"3b3357abbb633732a7e77a9289cf60e68e57bdd1dc4641ebaf1d2b9372d5376d","sha512":"4e1886a94dcf51ded93c84fa13a802a8ccd1333efc75ee258803007747b0122d54da68e0df062d09716cae9c504c21cc700066c1c7144b13dc0aa12e13dc9ece","ssdeep":"","tlshash":"0b615c2ce828191af137bebc5731135a470a063b0d0ae39329c1594575db5f9846cf47","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.774164Z","times_seen":158,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":291,"dns":16,"connect":29,"send":0,"wait":30,"receive":0,"ssl":227},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/titles/forums.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.838Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/titles/forums.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":457,"timings":{"blocked":284,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/tblRoughBreak.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/tblRoughBreak.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":650,"timings":{"blocked":501,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/uwt.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/uwt.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1218,"timings":{"blocked":364,"dns":1,"connect":189,"send":0,"wait":465,"receive":0,"ssl":196},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/fbevents.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/fbevents.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1225,"timings":{"blocked":365,"dns":1,"connect":189,"send":0,"wait":468,"receive":0,"ssl":195},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/blk.gif","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/blk.gif HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":3014,"timings":{"blocked":2765,"dns":0,"connect":0,"send":0,"wait":249,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/7qxv4u8z6o.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.584Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/7qxv4u8z6o.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 11862\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":11862,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"15a41add00bc43bb89e6f8838b0f5495","sha1":"2ef45e3153dfb78bb7c7238db44bff310f6f7399","sha256":"d38700a5e949c5aabffa23147f26dff31ac63d46a38d7544a32e71cbb457d2c0","sha512":"141fb9fe6e5518b3943f74682e8c392ba573d1d3e9b314e6971a280430e4417fb87f22e06d0f8cfabb91f76413a419bb8ad16cebd440be71ae3b59c9275ed2e3","ssdeep":"192:KxqWO9jjfLZnwJbWTQkZlfHSn4cSyid2AxFj4SW/e6HLN/ksdbF8Ph9sDdHC:KxqWWVjkkbcBid26V4SMPdbevYdi","tlshash":"9b32c09c97b5a83ddec881a6a4a9a263098e432c14c1f5a53ccd9db747522fe5a103c3","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.755867Z","times_seen":102,"resource_available":false,"data":null}},"time_used":2360,"timings":{"blocked":2168,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"analytics.tiiny.site/api/event","fqdn":"analytics.tiiny.site","domain":"tiiny.site","tld":"site"},"ip":{"addr":"3.10.126.206","port":443,"asn":16509,"as":"AMAZON-02","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.tiiny.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Aug 2025 18:37:46 GMT","end":"Sun, 23 Nov 2025 18:37:45 GMT"},"fingerprint":{"sha1":"D5:75:BD:D7:B6:24:DE:CE:97:C4:8E:B2:95:25:7C:04:22:9B:69:25","sha256":"48:FA:18:3A:B0:38:0B:BD:58:5F:C9:1A:12:72:20:DA:69:28:EC:D7:30:97:CF:F4:D3:94:0B:01:8D:A3:6C:2A"}}},"request":{"raw":"POST /api/event HTTP/1.1\r\nHost: analytics.tiiny.site\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain\r\nContent-Length: 165\r\nOrigin: https://mineraflorajulia.pe\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 202 Accepted\r\nServer: nginx/1.22.1\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nContent-Type: text/plain; charset=utf-8\r\nContent-Length: 2\r\nConnection: keep-alive\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: \r\ncache-control: max-age=0, private, must-revalidate\r\nx-request-id: GHBEQDuieRROmsoACPAB\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"Accepted","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-04-04T17:45:51.547594Z","times_seen":391005,"resource_available":true,"data":null}},"time_used":197,"timings":{"blocked":75,"dns":1,"connect":24,"send":0,"wait":45,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/global/mobile.png?1","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:17.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/global/mobile.png?1 HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 25646\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:46:46 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":25646,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced","md5":"b692c806c50d13ce558c51af1cbd05f3","sha1":"c7b33b2786649648789078cf8dcb3760e2cc3603","sha256":"46f64f2b76a8e127bc064bdb630be9ebd0a106a3ac88c907440b4f33a2858215","sha512":"115a223a265b82f6936877df3fbf6f10ba9be4cc3d8908899ad157be10415cc54f70bad4f1cae2b367cb90bfe6bd6073d5e2b0f81fb9da68e17d87dbd8ce9a5d","ssdeep":"768:bWyd2L/USgura3RxJcg6GR/cdjxfw0++Oz5YZd8FoL:ba/USrSxFhyo0JOIkQ","tlshash":"09b2e134fe96f457e5dda0c280f2310db04b496c6540d3adec1f8bfc98a15aa2a463b5","first_seen":"2023-06-05T13:51:42Z","last_seen":"2026-03-09T12:23:34.21483Z","times_seen":137,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/uc.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.479Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/uc.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1418,"timings":{"blocked":830,"dns":0,"connect":0,"send":0,"wait":588,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/j7bcxf8ijv.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.481Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/j7bcxf8ijv.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 192647\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":192647,"size_decoded":0,"mime_type":"image/jpeg","magic":"ASCII text, with very long lines (65505)","md5":"335cd83950b5f2abe2fdc9d65286f9d0","sha1":"cc8f8f0691ab24e2e405b3eea38f18de7f8274d6","sha256":"cf6ca9f0f285b807b7698e2c2de820e9527f0c6d5f7b40d307b0ff5643f47147","sha512":"d5d4cdee0ba33712ca79b3d6d1f66c95fdbb455ed38b264ff996c740d2449eab9c2ddffde072f6bdd9c079fc3999732bf1fa852726beb9554689416a4eaa1c2c","ssdeep":"1536:p0aozFmzKk62nBxXyMtmCN6XpE8ndeMi8Fpn3D3m9fz2bX9iJOgXcPs9EIyL:80WVbX8ap","tlshash":"c914e7366585203df52bc211f8d0b7cd713e9606e5530fbafe6e682aedc60f9022b549","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.767318Z","times_seen":86,"resource_available":false,"data":null}},"time_used":2270,"timings":{"blocked":1325,"dns":0,"connect":0,"send":0,"wait":189,"receive":756,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/forums/badges.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/forums/badges.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":795,"timings":{"blocked":645,"dns":0,"connect":0,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/large_break.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/large_break.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 4325\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:45:49 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4325,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 1x1, segment length 16, baseline, precision 8, 202x53, components 3","md5":"e14aec0e67a204cf88e504de05a42853","sha1":"42b266dcc217328f8d0cb374d49d40aad315ff66","sha256":"c503afacd9d183f9844d51ec7a61d81d992e407ffe176222888e77611171a890","sha512":"3e3f481b757632f1c41050e8a5464643d471bb7e3feafcbec5a5f625e19b5fc058ee7e1c60750fdd222ee7dd62440c103acab921e75535767d1bf719c217cc50","ssdeep":"96:Da8lj2QPy7NT1g/DmnZ0uROK3JrGcL/zQJTRSNJSfUPdCFB+HuCp/b:u8zy7NT1g/anmSOIZGcneRISyoFUFp/b","tlshash":"b8914ac3fa8f2643f519023af1da438ad4e933ad0171970ad758d23788190da86fe29c","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.776519Z","times_seen":152,"resource_available":false,"data":null}},"time_used":765,"timings":{"blocked":735,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/tfa.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.475Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/tfa.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1331,"timings":{"blocked":729,"dns":0,"connect":0,"send":0,"wait":602,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/lbynoqvsax.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/lbynoqvsax.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 16785\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16785,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"e9173f1fce9762e63f6ccaedebcdb56f","sha1":"28e4f3ea6e5f51c3d7ee8a21902bea9472d94284","sha256":"0b1ecb5163fa2128bd78a8f74a3baddbcc55aec085315f586c210509e46e0da4","sha512":"caa4011d36139c72a6b8c1b48c599ff601d2b62597f0edb888b75650bdac310ce7bd00a862d2177d05cdceb2b7d98e2709af2fbc9273d288e06dda7a378a05b9","ssdeep":"384:ovmKPBR6GAuDLvC36a4XT1LbY+3+xkgDtQUxXMmQNAx5UecpUkxuHg:mmKPBRCuDLK3eXFbYvfmUxXMj6vUeTkT","tlshash":"6c72e021d034f474292d1a29ab1a5163edfd5ec9fe86fc20ec02c4b25668e60a38a55b","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.755343Z","times_seen":57,"resource_available":false,"data":null}},"time_used":2452,"timings":{"blocked":2259,"dns":0,"connect":0,"send":0,"wait":193,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/plugins-100.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.588Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/plugins-100.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1707,"timings":{"blocked":1340,"dns":0,"connect":0,"send":0,"wait":367,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"t.co/i/lefwoxiwum.jpg?bci=3\u0026dv=Africa%2FCairo%26ar%2Cen-US%2Cen%26na%26Win32%26255%262560%261440%2612%2624%262560%261400%260%26unspecified\u0026eci=2\u0026event_id=1ead8344-437b-4a91-82a5-cafeec4df23e\u0026events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D\u0026integration=advertiser\u0026p_id=Twitter\u0026p_user_id=0\u0026pl_id=96324f5d-5c10-43d8-8805-2aefd143584e\u0026tw_document_href=https%3A%2F%2Faccount.oldschool.com-cm.ru%2Fm-forum-forums320-321-6265498749-321-6265498749-321-6265498749-321-6265498749-321-626549874-321%2F\u0026tw_iframe_status=0\u0026tw_order_quantity=0\u0026tw_sale_amount=0\u0026txn_id=o3cwt\u0026type=javascript\u0026version=2.3.31","fqdn":"t.co","domain":"t.co","tld":"co"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.co","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 17 Sep 2025 11:46:33 GMT","end":"Tue, 16 Dec 2025 11:46:32 GMT"},"fingerprint":{"sha1":"56:82:B0:56:C7:EA:1E:A0:B7:25:C6:A2:36:2B:79:43:F8:40:FF:26","sha256":"8F:A3:08:77:C8:4E:D5:47:4B:99:20:99:21:4F:E5:74:B3:83:49:36:A0:32:DB:FC:2A:F4:5C:AD:D1:31:AC:3B"}}},"request":{"raw":"GET /i/lefwoxiwum.jpg?bci=3\u0026dv=Africa%2FCairo%26ar%2Cen-US%2Cen%26na%26Win32%26255%262560%261440%2612%2624%262560%261400%260%26unspecified\u0026eci=2\u0026event_id=1ead8344-437b-4a91-82a5-cafeec4df23e\u0026events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D\u0026integration=advertiser\u0026p_id=Twitter\u0026p_user_id=0\u0026pl_id=96324f5d-5c10-43d8-8805-2aefd143584e\u0026tw_document_href=https%3A%2F%2Faccount.oldschool.com-cm.ru%2Fm-forum-forums320-321-6265498749-321-6265498749-321-6265498749-321-6265498749-321-626549874-321%2F\u0026tw_iframe_status=0\u0026tw_order_quantity=0\u0026tw_sale_amount=0\u0026txn_id=o3cwt\u0026type=javascript\u0026version=2.3.31 HTTP/1.1\r\nHost: t.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 20 Oct 2025 17:48:17 GMT\r\ncontent-type: text/html;charset=utf-8\r\nperf: 7402827104\r\nvary: Origin, accept-encoding\r\nserver: cloudflare tsa_b\r\ncache-control: no-cache,no-store,must-revalidate\r\nx-transaction-id: 265309f4e055ae7b\r\nx-xss-protection: 0\r\ncontent-security-policy: default-src 'none'; img-src https://abs.twimg.com; script-src https://abs.twimg.com about:; style-src https://abs.twimg.com 'unsafe-inline'; font-src https://abs.twimg.com https://twitter.com; connect-src 'none'; object-src 'none'; media-src 'none'; frame-src 'none'; report-uri https://twitter.com/i/csp_report?a=ORTGK%3D%3D%3D\u0026ro=false\r\nstrict-transport-security: max-age=631138519; includeSubdomains\r\norigin-cf-ray: 991a585d7875120a-OSL\r\nx-served-by: tsa_b\r\nx-response-time: 8\r\nx-connection-hash: ebaa9e5d8e85ff5953ec64e18cb8a6640d6066128ea5c9e1f91fb76ef5b184a0\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\nset-cookie: __cf_bm=Z2hZsuqRlramf7PxDZp5ytRgFpvrvBKsL8K9HZwDVY8-1760982496.8726428-1.0.1.1-3JcgILTdwjYFIasTAYRbu4f2qB7k39MJe7WcPFTVFi4OMSuup0oxYh9M4s2JYPon2Sp_44g9yboUIRtQCuSyV0Nu2HOZreS8_BJujfdIzZPCZLHsE2gG.SCVASQmyE1I; HttpOnly; Secure; Path=/; Expires=Mon, 20 Oct 2025 18:18:17 GMT\r\ncf-ray: 991a585d7875120a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/global/favicon.ico?1","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:17.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/global/favicon.ico?1 HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 5430\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:47:09 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5430,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"6ed15a1732c57a6789f1f6a5cd4f32e9","sha1":"5b944e60e6c6fcf028add1154765e6ee9b5e229a","sha256":"cb311cebea24b22552fba01ae140cd6af84588ba7a0df28d0f83057116f149e9","sha512":"d273c1572b3facabf69d5fb2c403db4c53187befd886e7d3d80bababb0a7b89485998cd6c3cbb259ba7b3abc02d784707bae9c7e8254ce9168f542fa18699166","ssdeep":"96:Fy8x72mp8SWiMccGRprooYZdF64bfH5RPFfJCxgO9UdUXG25:U8xSA8cNtYZdF64rH5RPyWkUdqn","tlshash":"47b1e449ae95de05c7063bf44aa5f13641cc4fd2bc16815297b8b88bb230e6ffc4252c","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-09T12:23:34.213728Z","times_seen":176,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/saved_resource.html","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:15.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/saved_resource.html HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":774,"timings":{"blocked":442,"dns":0,"connect":0,"send":0,"wait":332,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/divide.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/divide.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":602,"timings":{"blocked":454,"dns":0,"connect":0,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.co/i/lefwoxiwum.jpg?bci=3\u0026dv=Africa%2FCairo%26ar%2Cen-US%2Cen%26na%26Win32%26255%262560%261440%2612%2624%262560%261400%260%26unspecified\u0026eci=2\u0026event_id=1ead8344-437b-4a91-82a5-cafeec4df23e\u0026events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D\u0026integration=advertiser\u0026p_id=Twitter\u0026p_user_id=0\u0026pl_id=96324f5d-5c10-43d8-8805-2aefd143584e\u0026tw_document_href=https%3A%2F%2Faccount.oldschool.com-cm.ru%2Fm-forum-forums320-321-6265498749-321-6265498749-321-6265498749-321-6265498749-321-626549874-321%2F\u0026tw_iframe_status=0\u0026tw_order_quantity=0\u0026tw_sale_amount=0\u0026txn_id=o3cwt\u0026type=javascript\u0026version=2.3.31","fqdn":"t.co","domain":"t.co","tld":"co"},"ip":{"addr":"172.66.0.227","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"t.co","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 17 Sep 2025 11:46:33 GMT","end":"Tue, 16 Dec 2025 11:46:32 GMT"},"fingerprint":{"sha1":"56:82:B0:56:C7:EA:1E:A0:B7:25:C6:A2:36:2B:79:43:F8:40:FF:26","sha256":"8F:A3:08:77:C8:4E:D5:47:4B:99:20:99:21:4F:E5:74:B3:83:49:36:A0:32:DB:FC:2A:F4:5C:AD:D1:31:AC:3B"}}},"request":{"raw":"GET /i/lefwoxiwum.jpg?bci=3\u0026dv=Africa%2FCairo%26ar%2Cen-US%2Cen%26na%26Win32%26255%262560%261440%2612%2624%262560%261400%260%26unspecified\u0026eci=2\u0026event_id=1ead8344-437b-4a91-82a5-cafeec4df23e\u0026events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D\u0026integration=advertiser\u0026p_id=Twitter\u0026p_user_id=0\u0026pl_id=96324f5d-5c10-43d8-8805-2aefd143584e\u0026tw_document_href=https%3A%2F%2Faccount.oldschool.com-cm.ru%2Fm-forum-forums320-321-6265498749-321-6265498749-321-6265498749-321-6265498749-321-626549874-321%2F\u0026tw_iframe_status=0\u0026tw_order_quantity=0\u0026tw_sale_amount=0\u0026txn_id=o3cwt\u0026type=javascript\u0026version=2.3.31 HTTP/1.1\r\nHost: t.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ndate: Mon, 20 Oct 2025 17:48:14 GMT\r\ncontent-type: text/html;charset=utf-8\r\nperf: 7402827104\r\nvary: Origin, accept-encoding\r\nserver: cloudflare tsa_b\r\ncache-control: no-cache,no-store,must-revalidate\r\nx-transaction-id: de2a4dc8465f14e9\r\nx-xss-protection: 0\r\ncontent-security-policy: default-src 'none'; img-src https://abs.twimg.com; script-src https://abs.twimg.com about:; style-src https://abs.twimg.com 'unsafe-inline'; font-src https://abs.twimg.com https://twitter.com; connect-src 'none'; object-src 'none'; media-src 'none'; frame-src 'none'; report-uri https://twitter.com/i/csp_report?a=ORTGK%3D%3D%3D\u0026ro=false\r\nstrict-transport-security: max-age=631138519; includeSubdomains\r\norigin-cf-ray: 991a584f4a21120a-OSL\r\nx-served-by: tsa_b\r\nx-response-time: 7\r\nx-connection-hash: 889d053a3c1fae7069523a737f0989034fa5c44361357aab78a5cc5b3e651619\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\nset-cookie: __cf_bm=1LPT0zKl182s2VRW7WmhN2P_bKX9EiEdNQRIYA4TnwM-1760982494.6013293-1.0.1.1-ZCBVTDzPQOvtkKWLh01ayRoU5Umh.4uoEv9X4VdudrdEXgQRAJLyruuBKdJQE8AGDELdMc539PPQ5RzERdh8Vry6Tntdmz8PdqLUm0AitcLjdyVJmFw_uWhMncKTQ_52; HttpOnly; Secure; Path=/; Expires=Mon, 20 Oct 2025 18:18:14 GMT\r\ncf-ray: 991a584f4a21120a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare Bot Management","description":"Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.","website":"https://www.cloudflare.com/en-gb/products/bot-management/","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":172,"timings":{"blocked":8,"dns":3,"connect":1,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/sprite.png?2","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.861Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/sprite.png?2 HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 38223\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:38:29 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38223,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3090 x 71, 8-bit colormap, non-interlaced","md5":"e55028f6206cc881a6cc4198aba76392","sha1":"9a4854ce5353fddb755e62208b3f94a1efe2d3a1","sha256":"80d9fa07ecb860e8fd96df0813dffb6d215b754509df91a4a3cac55844e9c958","sha512":"0f6a72e49f49ad096fffa6075224d63eef59f845d0e1059fc207594efe671354b9dcb136aa90906d9aeb17622c79da48c3777db8325abae354e4a7b1a9ed499f","ssdeep":"768:RtiSBz0a6yQYbsGRb0WLCLC1RG8L3B0uJ1PuWwR0MRnPIghVzOiJB:JBzp6PYXF0jOI8zB0uJQFR5n1OiJB","tlshash":"4c03f105239dd28ee58db1e582dae3c6854c2136ff63beb685cc4343c10a57a459ecbc","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.779247Z","times_seen":146,"resource_available":false,"data":null}},"time_used":776,"timings":{"blocked":745,"dns":0,"connect":0,"send":0,"wait":30,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/global/language_selector/nl.png?v2","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/global/language_selector/nl.png?v2 HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":944,"timings":{"blocked":762,"dns":0,"connect":0,"send":0,"wait":182,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru/webhook","fqdn":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","domain":"gematy.ru","tld":"ru"},"ip":{"addr":"196.251.86.14","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:17.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 03 Oct 2025 17:35:32 GMT","end":"Thu, 01 Jan 2026 17:35:31 GMT"},"fingerprint":{"sha1":"DD:C7:E8:7A:8F:9C:7D:B0:96:02:7D:A2:48:9D:2A:A2:72:98:D1:49","sha256":"89:6F:6B:20:87:82:71:E8:28:0A:82:14:28:83:05:68:9D:C3:51:50:4C:75:DB:EF:5A:6C:B6:2F:A2:4F:5A:2C"}}},"request":{"raw":"POST /webhook HTTP/1.1\r\nHost: oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mineraflorajulia.pe/\r\nContent-Type: application/json\r\nContent-Length: 165\r\nOrigin: https://mineraflorajulia.pe\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://mineraflorajulia.pe\r\nAccess-Control-Allow-Credentials: true\r\nVary: Origin\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":36,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"8032a6e84dc29f8d0e0a99450df684f3","sha1":"33e813805f070caf2e5f3cf02f3c800e2731589c","sha256":"97e3db2ed8dd500eb7148b97051f63a26141124d10279e04f568bc8b8a66fdc9","sha512":"1c7cf39ff7dae940106c8271604d7f5aa7e6a3b5eb8d239869df37caf723cad1ec2f6a29fe72de94f32c8a98411f7c2157f578e3918758aee097aef73d7f867d","ssdeep":"","tlshash":"fc80043301510c1f40400330704430311551004d370535f055dc41cd470c0d04110f05","first_seen":"2025-04-22T11:28:47.951984Z","last_seen":"2026-03-29T15:20:43.765408Z","times_seen":22,"resource_available":false,"data":null}},"time_used":468,"timings":{"blocked":34,"dns":0,"connect":0,"send":0,"wait":434,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-10-20","alert":"Phishing Block","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/bm8fl7sw4y.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.486Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/bm8fl7sw4y.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 14148\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":14148,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"9a695ec3d8beadce0c1575df3d41e0ce","sha1":"5d303ff86fe80d76d35f11bbfd7d412d22ca37af","sha256":"d01b8945542dc3321f2c05a670a437d17c34d51fd4c2620f5f6948fe8af612fb","sha512":"d0c14db7816efe16ab84a25003e4e77145b821c93120d1517dab03fc93c5c4edd7f484b781751f56843d0442c97d39b17ae958fb17c2b1e22b9d10f53f2d475d","ssdeep":"384:m++goa/9wex39IR0YQ6Qg4B/7G0XzdMartFOTzRI:m++goswLHToBDRXzd7rnOJI","tlshash":"c552d007e403e8bf95893992d0459d336cb06e19dffb44ea94b84a0280f188ddca5fb9","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.772797Z","times_seen":51,"resource_available":false,"data":null}},"time_used":2769,"timings":{"blocked":2579,"dns":0,"connect":0,"send":0,"wait":189,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/s0zwfrztke.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.490Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/s0zwfrztke.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 16941\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16941,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"f50befe3c4613eb68599fe2e95eceb7c","sha1":"75a8c8c2bf1867886b4379422ec234bdf9983ee1","sha256":"e434764030bb7d1c82fa01906d4177f850dd8999d3074e7d90da5bfcb25d7fcb","sha512":"6c7b86b521fdedae9b4546927e83f7f11c20a415a969d69f5caba55dc74488ac390605c678f9f5826251371af66e85f517b3335feb91dc077f0c18c94f2084a2","ssdeep":"384:xOSsW+P+G5EKiN68A8QavUGaoF5CS9egl2XPeiI/IF:0SsV+uE5+avNF5CSIglAPWIF","tlshash":"f972d0bc7be5a776e83e001b8d9f448e12e07aa7113fba1eb013841508f0a75513e1a1","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.764902Z","times_seen":57,"resource_available":false,"data":null}},"time_used":2640,"timings":{"blocked":2262,"dns":0,"connect":0,"send":0,"wait":193,"receive":185,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/sprite-btn.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.856Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/sprite-btn.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 4051\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:44:15 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4051,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 12 x 300, 8-bit/color RGBA, non-interlaced","md5":"31f78f57a9595a946210ea45e7295846","sha1":"e4e71e00250cc70f5a475ef0b1d13208bc1913d8","sha256":"b337eafcbcf2e984edf5c5a36b9100f415e8dfaf1ef35d3a2d4f815657aab3f1","sha512":"0262835773e74adc04c3e41434cc71f95e991b996ec26f423a1368ea0b6b17ce01ee55da3d4aa4efb0dbd4971db39b096c2417c9917f49b7fb7dae5bd91e93a7","ssdeep":"","tlshash":"95817cf483782432bb0708b7762e86917c27626922efc02d39d18244a75cc1b9de3d59","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.753531Z","times_seen":115,"resource_available":false,"data":null}},"time_used":718,"timings":{"blocked":688,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/pixel.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.474Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/pixel.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1032,"timings":{"blocked":478,"dns":0,"connect":0,"send":0,"wait":554,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/f.txt","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.483Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/f.txt HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1637,"timings":{"blocked":1328,"dns":0,"connect":0,"send":0,"wait":309,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/header_bg_set.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.806Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/header_bg_set.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nContent-Type: image/png\r\nContent-Length: 55711\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:16 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:47:48 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":55711,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 493 x 174, 8-bit colormap, non-interlaced","md5":"0a4e437aad7ff01b876d976c38386639","sha1":"67ee922f79f63896666f8c071a208d16ee058be3","sha256":"ef3c7b65ae6bc8cac818bd7342b72c26405f4b863efc3770961ef8266c5e912b","sha512":"bd20fba0a066d4877d42d041b12ea279ce71023d7a4558b5b534008e065bcc4dabd48c1f2cd5b8682d976d7c5f7ba82711867167f305ff3c147a96321b8bacfe","ssdeep":"1536:5Oa61xPfC6MQuXLfYHa8M1N5dmy2w4b35g9ql3nMVU:2xCNLg68WDx4W9qFmU","tlshash":"a94302e134e80939735ab056cb841186b6f4e47336beaaa00ee7f7aed15c07116cfd24","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.753045Z","times_seen":153,"resource_available":false,"data":null}},"time_used":438,"timings":{"blocked":171,"dns":28,"connect":32,"send":0,"wait":63,"receive":32,"ssl":110},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/header_play.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/header_play.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 2051\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:45:29 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2051,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 130x60, components 3","md5":"6930f5b7a65b8a817e05aa03fc16ddba","sha1":"ab52051bd12687bdfc6a5e589d55c7029061d645","sha256":"f9a0a2163bcbec6643af92f71e88e7720f74d5b05280289d5768f853c86c6e97","sha512":"1a7672360766838dd3162c7cc8870b00c329b613ec7d5de8c01bc66cbc5fd477223c88de4dfea1137b3c51d15d56e6b2dcfa35db7fc486ed616bccfa8da7f7a0","ssdeep":"","tlshash":"f041e6e66050ba03fa301532cea50c62e343dc046bb06e93741b5fb96ebba508dc6268","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.769631Z","times_seen":120,"resource_available":false,"data":null}},"time_used":808,"timings":{"blocked":349,"dns":21,"connect":108,"send":0,"wait":108,"receive":0,"ssl":219},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/global/arrow_green.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/global/arrow_green.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not found\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nCache-control: no-cache\r\nPragma: no-cache\r\nExpires: 0\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not found","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":742,"timings":{"blocked":592,"dns":0,"connect":0,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/nl7ptubbi0.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/nl7ptubbi0.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":373,"timings":{"blocked":121,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/yh89m7su52.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/yh89m7su52.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1227,"timings":{"blocked":365,"dns":1,"connect":189,"send":0,"wait":471,"receive":0,"ssl":196},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/zbg3qzp82d.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/zbg3qzp82d.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 3655\r\nKeep-Alive: timeout=5, max=92\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3655,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced","md5":"5b8ef5eeef67e9610a388ea2820bae89","sha1":"d497aa53e546f41370c22573445df48086b056d9","sha256":"b3bb61bbaa72576a30fb469f015a24e740bd5ca0df3fe2ccb638089eb03a9b72","sha512":"6cfaf90a7efc11f92a76556c71af037072a20fb83fb1177b68bf4a855d8cad59c70147fc89ff225269e72267ea3f7b30c111bbf797ff49bd23c00cda2a0274d9","ssdeep":"","tlshash":"8c714b37a346cc31dfb9ad32bb4db46c0728ac2d7145fd6b881a12a11ca7c442615cb1","first_seen":"2023-05-31T01:28:23Z","last_seen":"2026-03-29T15:20:43.763393Z","times_seen":130,"resource_available":false,"data":null}},"time_used":2918,"timings":{"blocked":2730,"dns":0,"connect":0,"send":0,"wait":188,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/rvou5p7muw.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/rvou5p7muw.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 15181\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":15181,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"be13aeb03541bb4afe388e498e5847e3","sha1":"aa42ffaf8f036f0bae38be13ee963393164f4a38","sha256":"9a1698c8924b6cba208887d282b4fa9f2b58019e1c1e5bf04ef297ebcc41fa23","sha512":"be93cf40d3c93f817f046d98329739ad3c927494fd6a8536080e2a7e31cfe6c27eed1a7e4f5368933ecd65c88d5ebdd6d1f4a8c1bbfd33a6d0194f9f7097bd15","ssdeep":"384:7onhZujVU3Rt6jygOhtYtulcjK5GJBHq1:2hZUAvQywuVoDm","tlshash":"1562c0d0d7a03c2d7c74a9649012693bd4e9f15dad231c89731bc32b2928bf7719a6bc","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.778332Z","times_seen":57,"resource_available":false,"data":null}},"time_used":2940,"timings":{"blocked":2750,"dns":0,"connect":0,"send":0,"wait":189,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/content_repeat_y.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/content_repeat_y.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 33586\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:33:12 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33586,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x651, components 3","md5":"bcbddfbbe6d1c84b60604e58fdb74799","sha1":"c7348fb0c9a87e587a730cc0305167151ea19097","sha256":"b85032d24bb961c1bb749a52be5a37198b6a46738d67acefb5b57b09c4bbfa22","sha512":"6d073dfb9b85bc29433597c5ec8877d461fd973af9efe1ad5a9929bf7b002feaa11d834e0365f1619c204e23a833884238fc6a156978837e00f232d1789f919f","ssdeep":"768:c3sOsGaGok/jWlr5ytYyBss9GmZrN7BTXC7zj0n/vFzCae:GhahU3tYyBsscMN9TXC7zI/tzze","tlshash":"12e2e160ec73d2e9f341797e1917bb866d091224ed40a63e8514a33dfc9d39a503e379","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.759066Z","times_seen":152,"resource_available":false,"data":null}},"time_used":1334,"timings":{"blocked":509,"dns":0,"connect":166,"send":0,"wait":326,"receive":1,"ssl":329},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/sprite_splash.png","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/sprite_splash.png HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/png\r\nContent-Length: 544550\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:41:44 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":544550,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 499 x 3590, 8-bit/color RGBA, non-interlaced","md5":"dacddb7ec8e2c60429739437bd8b55fd","sha1":"4ae6e297426c9e4a0ccf6e3f1ca3e5611be3c03f","sha256":"d7c678feb27cd0213e140416454af0ec7f561fd67c26ddc5f9e68a7e0c8e0dbe","sha512":"12d09597b0f1629b517ea5c4650ef220c49d50779139d4ca1db075c676ab9e4c4d1ba61c997b6bcbf7c2009f7560e8d7b10979a2d80622bf17bd65562a25d3e1","ssdeep":"12288:SEiES+7eUVrkULGj6oAzPQDlV6CmbUtVh4QZ8pPHvkST:O5+7t5Cj6jzyV6+nZ8pnkq","tlshash":"97c423169ef4d86feedb20f3c90111ee630884f781919229f015d2b255127bf6b2f28e","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.770994Z","times_seen":129,"resource_available":false,"data":null}},"time_used":887,"timings":{"blocked":343,"dns":0,"connect":281,"send":0,"wait":60,"receive":137,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/w5i0i4tm8h.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/w5i0i4tm8h.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 10754\r\nKeep-Alive: timeout=5, max=93\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10754,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 141 x 42, 8-bit/color RGBA, non-interlaced","md5":"f5e3e8d0a8ca38d35529c1c65c3d9fac","sha1":"40438bdbf6e7991c5a8bea38a6c4f955fdbb457e","sha256":"8194f4c5b5aa6fdb5f3037827875392638207e7bc44aae92a791b6a388b82259","sha512":"a9cc65b3a6791b508913f9e2a2017fa3e7c8cd985ebb991a8a7c6a56c8f9546d18e3e660f6e2ecc39b72838c9172a19534702e1091ea391f2e9ffade6f96e699","ssdeep":"192:RjkZH74BCLqKdj2G2c/DUZDg9BWhbOrttfM0Blv1MP1z0mew9jbQnDIuHegk3/Zn:2p4BwjHoZwBW+tK0BSz0mnQDI/gkPZn","tlshash":"2d22b0676d0091ca646ebc7183cb5b009bede46798a5da15005b0073736ebcbedb78c5","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.75133Z","times_seen":158,"resource_available":false,"data":null}},"time_used":2734,"timings":{"blocked":2544,"dns":0,"connect":0,"send":0,"wait":189,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/f9phz1yfbj.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/f9phz1yfbj.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 114499\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":114499,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x409, components 3","md5":"b4a5a76e0847119d23a6d30ae150e607","sha1":"48fbba3aa98a9f4048fd00e7e92f9498a8abb4cd","sha256":"8bcbf7d0dc04644ce93b859724ac76446a58aa44e5b468e9ff3a6c1539c7d72e","sha512":"4833322983c9716fce7bac04c04c7b07580621d6c4ad6e52bb22435e08a4c482af78dcdaf4ebf718d268db27dc8a11e859fffeb903961f165bf0dc8a020c55e1","ssdeep":"3072:Mq1aNygASwp/HRbqzsDvt6h+Uw3kfv5+UuJS:Mq1agawJuzSvt6I3S5n","tlshash":"82b302eaee214b8a843b44ff8b433e319776b2b435f5621e11452b0895a5ec13ebb644","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.771889Z","times_seen":125,"resource_available":false,"data":null}},"time_used":2936,"timings":{"blocked":2555,"dns":0,"connect":0,"send":0,"wait":190,"receive":191,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/lp2b5m1cr4.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/lp2b5m1cr4.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:15 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 102097\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":102097,"size_decoded":0,"mime_type":"image/jpeg","magic":"ASCII text, with very long lines (65505)","md5":"7aeb3cce7faa332024d129a4a9bd2d65","sha1":"f0c04e0d53fdc0794665dc87f5271f037b1a9797","sha256":"5c4eed55b4a64500b88e6e23b74c860c2f5de50fadafbb6323e429f132031ea2","sha512":"badfe37a841dc55ed17040be61dbc9827305679cc994a1201a6f64fc11f394c94e6dcbd1c529af492ecfcc8125953bd7e8c702a9cdf330496cf73e5d35efd8c0","ssdeep":"768:0pk5HXt/f26BRQoGT63rbnQDmIYM4hW57RLBM31VbVjaoeeuAfNwUROHnI+yLHt5:Dt/f2ClQaz52M1WcR7tys","tlshash":"04a3073625c1302ef61bc375fc956acd71395124daeb06fabdba6151cd9a0fe0237888","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.767872Z","times_seen":89,"resource_available":false,"data":null}},"time_used":2085,"timings":{"blocked":1328,"dns":0,"connect":0,"send":0,"wait":190,"receive":567,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/4otiw7er0d.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/4otiw7er0d.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 15466\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":15466,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"7ede1985b4bb1c79ec8636e77c9855f0","sha1":"3a1fe317bab95f621a1a0f7a1c2ba7d9d2a25a21","sha256":"cb06797a3fbb30ac9b5946277eaa2f57e14fb4cefcbfb187e346f214699b0a45","sha512":"775f196edc29bc6f11de4a3319d924cca14e7534a60dc16f46578c202f23be8df7ec664bc595683eeb868eb48a0a2e1f53f583f93640f00479b5e1b702e4e378","ssdeep":"384:DjoOKj8UChhuL1rjfWj7+SCLwAowxquadKGBzSmq2OmgrfxLlyJi:DjoOKEhu5rj6qSdya5BzSxmgrfxJb","tlshash":"5562c0ebc7a8b4a33be4cb98d83a43589571e86a049044fa505ea265dcec45a1fc3b81","first_seen":"2023-10-15T02:01:20Z","last_seen":"2026-03-29T15:20:43.760837Z","times_seen":51,"resource_available":false,"data":null}},"time_used":2451,"timings":{"blocked":2261,"dns":0,"connect":0,"send":0,"wait":189,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/jagex_global-100.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/jagex_global-100.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1789,"timings":{"blocked":1531,"dns":0,"connect":0,"send":0,"wait":258,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/lefwoxiwum.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/lefwoxiwum.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 43\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/jpeg","magic":"GIF image data, version 89a, 1 x 1","md5":"377d257f2d2e294916143c069141c1c5","sha1":"b7cae69682cf31dd670b65088db8395acda6ed3e","sha256":"ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957","sha512":"01211111688dc2007519ff56603fbe345d057337b911c829aaee97b8d02e7d885e7a2c2d51730f54a04aebc1821897c8041f15e216f1c973ed313087fa91a3fb","ssdeep":"","tlshash":"4e900403d3c0c001c151d0300d0cc7441344f0305554030f70fc575ddc3d1550c170c0","first_seen":"2023-04-05T06:54:04Z","last_seen":"2026-04-02T19:25:47.588676Z","times_seen":951,"resource_available":false,"data":null}},"time_used":2352,"timings":{"blocked":2160,"dns":0,"connect":0,"send":0,"wait":192,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/analytics.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.470Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/analytics.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:14 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1213,"timings":{"blocked":358,"dns":1,"connect":187,"send":0,"wait":472,"receive":0,"ssl":192},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/y58x7gsq5x.jpg","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/y58x7gsq5x.jpg HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nLast-Modified: Fri, 25 Jul 2025 05:21:28 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 4824\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: image/jpeg\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4824,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 46 x 46, 8-bit/color RGBA, non-interlaced","md5":"58c053e62d6ced30945b17dface9e055","sha1":"b83407d96e2be82d4ab8ec752e269ccee83d4fa5","sha256":"7c392efd2c81fb9d10c969eec7e75fbbf1ed3acd4d07accd982ccdc9125c97db","sha512":"a584905bac6e38c200efea2afa7daf954d6444c8924a6438a45e6be4b5a1597241b6d5b7e49185af1a4cdcd4e07ef57e8602725aa732ce31aa3679b0b418412e","ssdeep":"96:LY23BllEAzKbOf76gRagS1JRCjPr+d3iMlKX8o+1nOT+jEBTO1:Lf7yAz2jgiSjjzMlKX8of+QBT+","tlshash":"e8a17e4ae2118c82bd8297911ae35be786322c80c751a972bbcecc1d05f45fbe0155ef","first_seen":"2023-10-15T02:01:19Z","last_seen":"2026-03-29T15:20:43.768739Z","times_seen":121,"resource_available":false,"data":null}},"time_used":2457,"timings":{"blocked":2263,"dns":0,"connect":0,"send":0,"wait":194,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mineraflorajulia.pe/portal/gtm-100.js.download","fqdn":"mineraflorajulia.pe","domain":"mineraflorajulia.pe","tld":"pe"},"ip":{"addr":"161.132.57.177","port":443,"asn":3132,"as":"Red Cientifica Peruana","country":"Peru","country_code":"PE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:14.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.mineraflorajulia.pe","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 11 Sep 2025 14:30:29 GMT","end":"Wed, 10 Dec 2025 14:30:28 GMT"},"fingerprint":{"sha1":"9A:12:A6:B6:0A:62:5E:5C:8C:BA:01:23:F0:E6:DD:97:6A:72:A1:49","sha256":"83:83:10:C3:51:BF:B4:C7:28:9F:A0:CB:86:8F:BD:DC:6D:7D:C4:3B:E1:54:69:D4:E9:0B:86:66:27:E2:EC:0B"}}},"request":{"raw":"GET /portal/gtm-100.js.download HTTP/1.1\r\nHost: mineraflorajulia.pe\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Mon, 20 Oct 2025 17:48:16 GMT\r\nServer: Apache\r\nContent-Length: 0\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":1893,"timings":{"blocked":1630,"dns":0,"connect":0,"send":0,"wait":263,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"mineraflorajulia.pe","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/background-content-top.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.819Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/background-content-top.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 3150\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:44:11 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3150,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 460x147, components 3","md5":"093b8955a61b439a819083aed2050c75","sha1":"fd86e08be4a42b3d4acada6c8be6e484b017db72","sha256":"c6d33402d873415046d6e168b2a995d1c1c56d7c1cc5bff63806421404838003","sha512":"5c25e0ff4ff92bd7b2f1d84f5fa6c0df27567875aa30606a13cae06c700143b69e66d7a6a12590d08d74b8386fd259f72cd6e25b3e1c12fbbb3234835fc5a9ae","ssdeep":"","tlshash":"14516dd2e529c4d7c8496dba940813890db63f3b9892530e4da7db4c83589818d37385","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.761407Z","times_seen":147,"resource_available":false,"data":null}},"time_used":1182,"timings":{"blocked":506,"dns":22,"connect":162,"send":0,"wait":162,"receive":0,"ssl":327},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.runescape.com/img/rs3/parchment.jpg","fqdn":"www.runescape.com","domain":"runescape.com","tld":"com"},"ip":{"addr":"91.235.140.148","port":443,"asn":44521,"as":"Jagex Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.runescape.com","organization":"Jagex Limited"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Tue, 02 Sep 2025 00:00:00 GMT","end":"Tue, 01 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"93:35:41:BF:9D:80:87:E7:8A:AB:96:AF:E5:BF:F4:A1:18:01:AE:55","sha256":"24:BB:5D:35:6D:2E:7B:08:70:6D:73:FD:F6:32:F8:6A:00:39:7B:F8:FE:24:0E:71:54:9A:60:E1:90:65:D3:E0"}}},"request":{"raw":"GET /img/rs3/parchment.jpg HTTP/1.1\r\nHost: www.runescape.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mineraflorajulia.pe/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: image/jpeg\r\nContent-Length: 9495\r\nConnection: keep-alive\r\nExpires: Mon, 20 Oct 2025 18:03:17 GMT\r\nLast-modified: Mon, 13-Oct-2025 17:41:41 GMT\r\nCache-control: max-age=900, public\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9495,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 230x230, components 3","md5":"c08884a8ba4218c43a41516ab3b1304d","sha1":"4d403567c4724a1dfb278e36548928fe1d1917ee","sha256":"9e33538ee201a20b7a7b9758f711e9ba39b2bc94471c35bc4d5e66725e120d53","sha512":"455edd508e06d181cf48c0ea48f6a5595fd944959f9f0b58fde1eae455f846ea6b00dab5c294c24a0ca8bb0fa4bcfe6aa991d1603095fa99da55b0d591aafeaf","ssdeep":"192:GO9c2Sme2QZK+4gAyPXUn6eZ33KmiBR9SqWAmXcomcvWn1v:/Be2qTJmz33KmiBR9xWPXczD1v","tlshash":"1112ae0674130ac0f0dc3cb928b95c68b8d56d0216e763916dd7ee8ef7aca144daf519","first_seen":"2023-05-07T23:35:04Z","last_seen":"2026-03-29T15:20:43.758033Z","times_seen":155,"resource_available":false,"data":null}},"time_used":747,"timings":{"blocked":717,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru/webhook","fqdn":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","domain":"gematy.ru","tld":"ru"},"ip":{"addr":"196.251.86.14","port":443,"asn":0,"as":"","country":"Seychelles","country_code":"SC"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://mineraflorajulia.pe/portal/medieval-legends-competition-a7m5a6v8t9n5p2e0o1g3q4f6g9q1","date":"2025-10-20T17:48:16.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 03 Oct 2025 17:35:32 GMT","end":"Thu, 01 Jan 2026 17:35:31 GMT"},"fingerprint":{"sha1":"DD:C7:E8:7A:8F:9C:7D:B0:96:02:7D:A2:48:9D:2A:A2:72:98:D1:49","sha256":"89:6F:6B:20:87:82:71:E8:28:0A:82:14:28:83:05:68:9D:C3:51:50:4C:75:DB:EF:5A:6C:B6:2F:A2:4F:5A:2C"}}},"request":{"raw":"OPTIONS /webhook HTTP/1.1\r\nHost: oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://mineraflorajulia.pe/\r\nOrigin: https://mineraflorajulia.pe\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.18.0 (Ubuntu)\r\nDate: Mon, 20 Oct 2025 17:48:17 GMT\r\nContent-Type: text/html; charset=utf-8\r\nContent-Length: 0\r\nConnection: keep-alive\r\nAllow: POST, OPTIONS\r\nAccess-Control-Allow-Origin: https://mineraflorajulia.pe\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: content-type\r\nAccess-Control-Allow-Methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT\r\nVary: Origin\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T17:46:17.157563Z","times_seen":13340936,"resource_available":true,"data":null}},"time_used":267,"timings":{"blocked":109,"dns":55,"connect":18,"send":0,"wait":47,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2025-10-20","alert":"Sinkholed","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2025-10-20","alert":"Phishing Block","trigger":"oldschool.gamevote.jagex.com.challenge.vote.gallery.community.gematy.ru","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}