{"report_id":"3278ab3d-83c7-4b8a-9910-c65a60d427de","version":6,"status":"done","tags":[],"date":"2026-02-13T23:59:28Z","url":{"schema":"https","addr":"copperinucto.com/","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"104.21.2.121","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"copperinucto.com/","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"title":"COPPERINU","dom":{"size":25808,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (343)","md5":"272ca7cc6a7ee8157a5e2f5456c8a623","sha1":"fdd4212c31932688dca1b26b415c8bbd7878baf3","sha256":"2337b67ee5e514353dbe149c5d95ce15e906c4fd6418f66ec74265f90d6c9610","sha512":"5a13f44f7f169c716a9f01e1abf3b1deb1560937112ffd5f8e08ba13ad944dc5826667ab80a7b395b8b4da5624856e463a30a7e1784b7d90cfef17da780b3d3a","ssdeep":"192:pl0NvB7Zkkf0dZUh9fMcgvM1018amZ9p4Kp5KjpbrvpTM2lLCpQ7P4ogNni96lw/:avdZTFaasrpx5T4ogh+1","tlshash":"04c2982422e1156e009386b176a1bb6ade74cf47d92f4e9bf3ed01e31f46c568e53248","dom_hash":"domhash2e122f592f10c507f83f096cb707230c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"copperinucto.com/","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"104.21.2.121","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-20T23:59:28Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"copperinucto.com","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-28","domain_rank":0,"first_seen":"2026-02-12T19:24:31.988409Z","last_seen":"2026-02-12T19:24:31.988409Z","alert_count":10,"request_count":10,"received_data":1566288,"sent_data":4871,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"copperinucto.com/","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"89385bce9daab0f90220aee18cebf3ee","sha1":"2b6b977cd105b9faf1d77311ecf4ed8499d37f88","sha256":"4e5c6a25808e067308fc3e21f1129034808ddf2f00909105de433f8b30e95570","sha512":"217043101027de6495882ab05f5ba323b8f1dd1ca62c653f671aa5c501bf8c90a08da712b3da1638854492fe923960d00691611e8732504b64eec168b1d769ae","ssdeep":"","tlshash":"44c0c0408070ce600c2c00a7607827d43050251d914a60c6c3bd9c87d54cfc04fc8000","size":186,"data":"","first_seen":"2026-01-20T03:01:09.599022Z","last_seen":"2026-04-03T18:19:24.773518Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/secureproxy?s=%2Fipfs%2F_qEVAUVavvzeiYiasp2KRw7531dfc2b686e4c47507eec9adb88115%3Ft%3D1771027147280","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e11228d8cd57fc96e399a645a2541944","sha1":"d865d75585598f6859979d7a9b4d5ab693665cff","sha256":"d8157a40636719ba4c46cc35ae493ecd418e64596939a654aac3deeb05bfbe19","sha512":"9dc7576f6a4dde4d1ee246e5f267f46260e275bfb1deab115eafbfd858f25aabdffbdf9bff85a69d869eb2106bcf2f8ba66c1d3ed1a85332dee5f13622f52498","ssdeep":"6144:/ujB8gltIeTM5/S8g6zRh5gDTIHQHDk2tKM4aaFPjv8DjgYf0PfcfGfr7lFcuUkS:YhltVM/g61skHH2tKBhv8ycKMf","tlshash":"2cf43cceb78d1d7340a263e757b3d82eff880eaa854b595057c29c9122c4fa351e8d9c","size":727189,"data":"","first_seen":"2026-02-13T23:59:29.813845Z","last_seen":"2026-02-13T23:59:29.813845Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"copperinucto.com/","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-13T23:59:06.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:06 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:29 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oB2I0BzPwkdcZndjnuOue8rSRqptcEVTipApgikbat%2FZmCQAEMz1QhWT7u5JAnI2KnzopzhS0ePPb5Yo5MR2y8O%2F%2BcY35pQjs%2BtjhmXPfHc%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9cd847121d8a76ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":25565,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (343)","md5":"89b129dc8b3bb5181892e40bfe1aad8f","sha1":"69729d0675beb1b5541cb3618a6bdf6e058b2297","sha256":"643a8bd95c83ee5eab3159fb8ec4a72ec7c09c5d54e986c0a87253f0487ae8a7","sha512":"30cc3b02c065b247fd761e306b19ac7f3e154ed735839ade2fb08aa4586360c16b252cc0fb1bdd22e9e027bef96e183f39a9a1efebf4c6fb3a729470d1c8d947","ssdeep":"192:/l0NeZkkf0dZUh9fMcgvM1018amZ9p4KpLKjpbrvpTM2lLCpQ7P40k3ri96lw5Z:QeZTFaasrpx5T40k7+Z","tlshash":"38b2972422e1156e009386b1b6a1bb6ade74cf47d92f4e9bf3ed01e31f4ac568d53248","first_seen":"2026-02-12T21:09:52.08062Z","last_seen":"2026-02-13T23:59:29.798128Z","times_seen":2,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":93,"dns":76,"connect":1,"send":0,"wait":266,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/83afe278b6a6bb3c-s.p.3a6ba036.woff2","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /83afe278b6a6bb3c-s.p.3a6ba036.woff2 HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/fe25f2aa16f9ef6d.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 48432\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: \"697a0d58-bd30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K6xvJStstNSLw9i%2FJ2vybBIy6ULo6%2BE5uIjlZhDTT9AjXs8jAVeT6uvK8ioBnlj0htSOfE1DcJ%2BRxrbKDEiUwaPkSb8O17YNlT2bTzLKWzc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd84716fb84120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":48432,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48432, version 1.0","md5":"65850a373e258f1c897a2b3d75eb74de","sha1":"1dc044f4824fd5af6bfed67fee48be70fa069f3f","sha256":"c940764593d0fe5d596be327ca7558855e018039fb78509aa21921fd3644c3e4","sha512":"df2683f3dd9724de589451a47bc608c9925d54b874ad97b733dd465ef41f9db75e9e31604762415c2fc1433d050e45fdefc6ecd7ecadf58d1243d9ca5f4bf74b","ssdeep":"768:3IkDHBYoX5Pi4JxTGz9CDR0s1ROSsA8mF77YNt7wFhVq9oN2WfpdqWjBA:tNYoX53xTl/R8W77YNtUFrWoUWvdA","tlshash":"56230251f5f8624a7fc3003fbc317bd862909fe5996ee5d91288f30225611dd29ee017","first_seen":"2025-05-30T12:57:00.85385Z","last_seen":"2026-06-18T11:20:14.248068Z","times_seen":67361,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":234,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/image.png","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /image.png HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 218249\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: \"697a0d58-35489\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=d29X7ENhyxfF8WUlT3tO15wCWzhS8ulakS2oUtU3TRTRFtmf8AiMOEbxAvK1u%2BCoSkxPTRwwB%2FvunTkeXC2kxDiMxvIBAyvHXPaTZGDlFZo%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd84714ccfe120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":218249,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced","md5":"4e8dede0a40c748669706465c6fae45a","sha1":"a0d47702b0bbd405fc89e81d38392d21b679a690","sha256":"54db717f2739e1321e460c568c426fde2bbad05b68aea4c99891ecd9adae029e","sha512":"777176972e6e7e065b097891ce3a8c614b9a000fbc549aa3b1c7a77e7ecd18a7a1fa5cd6b148a6e1bdb93f08d5e34520d16a7efe77665f20b1c8e41392edf158","ssdeep":"6144:41IUS5SSmyGYGRzrFyWX8qQwfN4LRqiMqEjol:41yS9FF8qteFqiCK","tlshash":"022423c6e618e7e1ddfef802c3d9dd5a782edc9a3ec5113026254bf881d6220606a7f4","first_seen":"2026-02-12T21:09:52.08855Z","last_seen":"2026-03-24T19:51:41.56877Z","times_seen":11,"resource_available":false,"data":null}},"time_used":494,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":194,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/fe25f2aa16f9ef6d.css","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /fe25f2aa16f9ef6d.css HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: W/\"697a0d58-99da\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=i30mgxbbsPO%2F3YJyeWWKr7ErSWJuSKMNPT9i%2BgIS8oeRANSFCIafXT9kyl0QsXp45LNQR0pAzJT4kBTB39%2FuqMghweyHukgrG0JioA5pzSc%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd84714ccfb120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":39386,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (33747)","md5":"2807eca6584f1f9ac54459c7a4c8f863","sha1":"e95c5c3974cc0a6498f82eb4e991058fd066df2f","sha256":"60076e052d59edc1aea4a7578af97bd74d573ed967abfaeeec5bb1ca463273bb","sha512":"21e2330d05b0dc6ed87174f8a7c347c8808ade4a18f66707f5f0296b8f07c4d86c0b16694ab7d6403aced0cf700563c6ed8bd8db564e4ebdee514e710500f43f","ssdeep":"384:cOhQsOH1OZsO+DYCr3CnTs6uWo+XG4FJJSkS1XjSBAoKjijr9kJpyO:gBvbr3CnTs6uWo+XLh0Xj6AoKjOM","tlshash":"cb03c864f232d97fed63a8f6b3ccb81d6108708acd7517d9fa26221256c77f60962b10","first_seen":"2026-02-12T21:09:52.092216Z","last_seen":"2026-02-13T23:59:29.811004Z","times_seen":2,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":266,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/secureproxy?s=%2Fipfs%2F_qEVAUVavvzeiYiasp2KRw7531dfc2b686e4c47507eec9adb88115%3Ft%3D1771027147280","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.283Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /secureproxy?s=%2Fipfs%2F_qEVAUVavvzeiYiasp2KRw7531dfc2b686e4c47507eec9adb88115%3Ft%3D1771027147280 HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:08 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: max-age=2592000\r\netag: W/\"b1895-2GXXVYVZj2hZl516m01atpNmXP8\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=DVJbaxZcVbEzNoHl9FKamg.js\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 02/13/2026 23:59:08\r\ncdn-edgestorageid: 883\r\ncdn-requestid: 222c06ea7b1543f59d265018d571b8bf\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0ibb36NKEp276cjjc03lNyluFvx%2FhkZU4isOf2AoHpqkCARtfXVZnzyemuoLDYni3w1%2B4oKE2k6%2Fqv6nnUfNd4JNM75xpi6ds1Gx%2BDGBG3M%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd847168a1e120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":727189,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"e11228d8cd57fc96e399a645a2541944","sha1":"d865d75585598f6859979d7a9b4d5ab693665cff","sha256":"d8157a40636719ba4c46cc35ae493ecd418e64596939a654aac3deeb05bfbe19","sha512":"9dc7576f6a4dde4d1ee246e5f267f46260e275bfb1deab115eafbfd858f25aabdffbdf9bff85a69d869eb2106bcf2f8ba66c1d3ed1a85332dee5f13622f52498","ssdeep":"6144:/ujB8gltIeTM5/S8g6zRh5gDTIHQHDk2tKM4aaFPjv8DjgYf0PfcfGfr7lFcuUkS:YhltVM/g61skHH2tKBhv8ycKMf","tlshash":"2cf43cceb78d1d7340a263e757b3d82eff880eaa854b595057c29c9122c4fa351e8d9c","first_seen":"2026-02-13T23:59:29.813845Z","last_seen":"2026-02-13T23:59:29.813845Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1002,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":797,"receive":205,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/2a65768255d6b625-s.p.d19752fb.woff2","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.347Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /2a65768255d6b625-s.p.d19752fb.woff2 HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/fe25f2aa16f9ef6d.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 38460\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:29 GMT\r\netag: \"697a0d59-963c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wjKCNWLFlStNmOOdzPUR0VQxbeE3GyHc6i%2BSMVNIaZOz5DGlEFB%2F8ks%2FQQW6XL5YNwMDDou%2FFQEJqU4dbaS%2FVKm57C58mg4HHupBAyz52p0%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd84716eb60120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":38460,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 38460, version 1.0","md5":"6da252de0cbc8a69b5d5c2e0e3f67722","sha1":"613a720fdf61e1c6f30818dee6517963a68e2e3e","sha256":"5d91eb5d522a03081946c44c8ca17c902230dfed5f0f9b5014262135d47b15b2","sha512":"54be801ab4db662f9db902ee580b2ba17c3f5b2fb8a9fc4871597c44c191c10acbc7a10c3219391b6f1beabb3f91bd883eef4cd968ca497cc8216238d212c98e","ssdeep":"768:ZCNlkG/MvYW+ATIdtH66hgjNd7PMiy6A0eRBGwCJdUu5nLct:aEwWMa6hgxVUiARBVMdFLU","tlshash":"4303f10ffbb3f38a846454b72a62c8f855a2e201a5ad5c0df7c830127492bd19e3d5e5","first_seen":"2025-09-13T18:39:29.216218Z","last_seen":"2026-06-18T10:55:50.052845Z","times_seen":4372,"resource_available":false,"data":null}},"time_used":321,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":266,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/caa3a2e1cccd8315-s.p.853070df.woff2","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.361Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /caa3a2e1cccd8315-s.p.853070df.woff2 HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/fe25f2aa16f9ef6d.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 28388\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: \"697a0d58-6ee4\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kfsue9PL08diNZxGP2DYTVR72NE2K7A5xClnWeaVicyTPwC%2F7U3%2BJP3kfWDu%2Bq7XArz7dU64zOOI4BqUrr0W09rCGDApUpKbyecrSBpmnhQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd847170baa120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28388,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 28388, version 1.0","md5":"18bae71b1e1b2bb25321090a3b563103","sha1":"a636827d1fb47f9fddf94d55ed8f25e85155d1ea","sha256":"a29f900a6d603e989449327956e7ac61ea3e6b26ca7426f64e7cccf2cd4aed37","sha512":"e6560e1f68d236883884afa1fa4c2de5ddd6c75e69ddf1057c97f525015aa4306a14fb56c1526141bf2067d24b2ca72ea78e0e518b2bcbaf162056ee4a2b327a","ssdeep":"768:KD+2Y2za0bgeumM+doeWITKGOgUT3CbeZq:KDFzfKJ+SHIGGOh3CbeZq","tlshash":"9dd2e1a0bb98461d35fe1ba096ed42bf4a1d7f4ded7c1a65093b2b80174d4df20d8c68","first_seen":"2025-09-14T11:55:19.751418Z","last_seen":"2026-06-18T10:56:36.187242Z","times_seen":23080,"resource_available":false,"data":null}},"time_used":247,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":209,"receive":38,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/ezgif-8672db118ec139b9.mp4","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.381Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /ezgif-8672db118ec139b9.mp4 HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1595415\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: \"697a0d58-185817\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-range: bytes 0-1595414/1595415\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QvfR4WLSjc2PtRew4qNQogNZLD%2Bkl5T%2FrEih5ssEz749G0a04I1VAzgyuachc6HwRijnOsxxAUiTPXp1Aop4CrUBNWyBdLhZm1Q1tFoFwM8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd847172c03120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":212155,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"b1f2e689205411229cdf210c72e8fd0a","sha1":"4967e1b6db38bc062f12022c84898bc47ee2b36b","sha256":"d3bb6596c244cd523ab901eac0c301402f7416aca3397d5ff3bb290c17bf8515","sha512":"a880bebf74dff7878b93089d5338f0cec714fd95fde64faa5d16939a4b379b6216209e49204d869b209ff50e7d65c7ab160ed7fdeea6b172a962a4a400a51769","ssdeep":"6144:SOykMioDcLOv6UFSDmMCSbXn+bpZ+x5qakstl4iy0PwfLvr:NToDcU6yCbOTEkstl4Lz","tlshash":"0b2412c14759354cc968ad30954c1f2bbaf1eaa2feba934f15d1313c9526303af23ae4","first_seen":"2026-02-13T23:59:29.821544Z","last_seen":"2026-02-13T23:59:29.821544Z","times_seen":1,"resource_available":false,"data":null}},"time_used":337,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":195,"receive":142,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/image.png","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:07.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"GET /image.png HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://copperinucto.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Fri, 13 Feb 2026 23:59:07 GMT\r\ncontent-type: image/png\r\ncontent-length: 218249\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Wed, 28 Jan 2026 13:21:28 GMT\r\netag: \"697a0d58-35489\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ksy4pyp7TL4LPgl%2BoIL3KxMUvY4B5rnvfl%2BL%2BclF%2FomSnRJMZP%2BuiWQydeIHXqdQ9Rrohah%2Fa8bG2zQxIbHEv4EDD%2FZL%2FnGX%2F%2B7HRHIeJbM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9cd84719ed16120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":218249,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced","md5":"4e8dede0a40c748669706465c6fae45a","sha1":"a0d47702b0bbd405fc89e81d38392d21b679a690","sha256":"54db717f2739e1321e460c568c426fde2bbad05b68aea4c99891ecd9adae029e","sha512":"777176972e6e7e065b097891ce3a8c614b9a000fbc549aa3b1c7a77e7ecd18a7a1fa5cd6b148a6e1bdb93f08d5e34520d16a7efe77665f20b1c8e41392edf158","ssdeep":"6144:41IUS5SSmyGYGRzrFyWX8qQwfN4LRqiMqEjol:41yS9FF8qteFqiCK","tlshash":"022423c6e618e7e1ddfef802c3d9dd5a782edc9a3ec5113026254bf881d6220606a7f4","first_seen":"2026-02-12T21:09:52.08855Z","last_seen":"2026-03-24T19:51:41.56877Z","times_seen":11,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"copperinucto.com/secureproxy?s=%2Fjmpd%2F","fqdn":"copperinucto.com","domain":"copperinucto.com","tld":"com"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://copperinucto.com/","date":"2026-02-13T23:59:09.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"copperinucto.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 28 Jan 2026 12:24:30 GMT","end":"Tue, 28 Apr 2026 13:23:02 GMT"},"fingerprint":{"sha1":"E4:22:EA:85:7C:42:C4:B0:90:D1:F2:34:94:FC:74:5F:A4:B9:E6:F9","sha256":"85:3E:CF:9F:BA:7A:2F:C0:F5:E8:88:1F:19:1D:F8:15:E5:E3:AB:F2:B0:FD:32:CE:2A:D8:08:1E:C0:4B:5F:C0"}}},"request":{"raw":"POST /secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: copperinucto.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://copperinucto.com/\r\ncontent-type: application/json\r\nContent-Length: 1383\r\nOrigin: https://copperinucto.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1383,"data":"{\"route\":\"n9POyFeFG1tUtiSU-z9JOx3n\",\"payload\":\"0hqM-6_N52QB7AK_AhoAEwD8ArACEADSAhkAAQIAFQMAAO8nhn2XtsKCATErbDgY7_1oQLQ8hGcCAADhGNUDX88fIW-RO-fpBshsRrg84wgkKYKQzrwPEnuGmu_Fu_kSK0vxkjWjRDmOhy0WAjgmLClSm1muqJaJG85Aacpq0Z-mnT3vbDoslIZKe1gFRCZMApGSrNeG5tZiUJpqNnMNHhLdmwMCUbjR57o0nk2cmS4vVzwkTxsLZpAiwgrtYcgqvWz5O3b2Tf0a_Ppx-Oob_EscLcBlO_-kyR4L0mzggJbCj5zgxKAb9bpYHPVGhWK0C999UBWJ4CBPLzcFpMZxawQzosjjWxzhPTLs9ifs4OaRjlwrlnVmb8BV3EWQpPvvSD7hUuMGbM4m1WMqj2q6Mjx3m_5Vx-_d9nHTAS4nrit10qtjIbnEzoJ7w_bQCj3r5sfQouTuZguwYUXg_dtE5chUNneow1ske1s0Qe0bwadAFswtQCvoW1EWvt-U0Mrd71p-H_yRr2ZbwQH7noV4RgcG73G_InXAjl2r9kHlkJZ6yzO6vGziMGcoNQRUWv5omEfwPSBhIFnYz8f4C8aYzxU6gZwLRzQSZau5dB04pJ6PW5dbYlxMfibRhzLmEp3w6eGmxoFOLO5hFqpdVEL4O0-LndtsAVToiusiURRo9YLeVGFDsrJNmFkSkTOpun-KDJBec1EhnvN1E3D2cxwVKZ9k6Q9XzBgSiC7yuout_sYNxTowQOLtKoi5ft_RPl7C0UVfWCfwyY0Io7PLarhwMaEbQPBo7uH7cGu0G8QANaMmyYyd2so_1c13F1a1NPwWVkm1A2q07swFFR6-0TqgkCvtZwEUmohHYur3_FBl9urBblhRpEOec14ERflGzgPQ9abEyONekVknRhNqGe6C3CeCxasZb5hINYvBfbLEqQ2mgLcfOpwfwUsAsuTpZv1yu6-by4gsiVgxzf7YcC96nKhx7AeloOE0t43pPIA4o3P3zjFISpqA1cpFYon2onBZ6h_0us2g811WShRThVCcBFEOS7-kifJCOQHxTnoiiaQq20E1GVqzHYmdkD3_wxEfegJuZ7lqR_no11uPqv7U1Lc0Ie820DC3q241dwabd42jIjJJriaG2ZSq-HXuoSGeMBNlklpqfhA\",\"challenge\":\"eyJpZCI6IjN5cF9qbFdHRUg4cklKcGViWDdKdlEiLCJub25jZSI6MTkxLCJoYXNoIjoiMDAzZTdkZTAwNzU0ZGUzOGIyZWI2YmM5MGMyYmJhODI0YTBiZGIxM2VlZTBkOGQyMGY1YjNkNTM4ZmQzYWNkMiJ9\"}"}},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Fri, 13 Feb 2026 23:59:10 GMT\r\nserver: cloudflare\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"a-bAsFyilMr4Ra1hIU5PyoyFRunpI\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9998\r\nx-ratelimit-reset: 1771027209321\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 204\r\ncdn-cachedat: 02/13/2026 23:59:09\r\ncdn-edgestorageid: 879\r\ncdn-requestid: 484990a30dc3686b1ab04b87ba709bfc\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BX5%2BGU8XmIcCGs1xS3%2FFEkkV%2FpH7AjxhB3tPdusHtH9TjND3%2BZnxsc7KlobqYY0wB6i3lY3qOrRVo7mPNP5eZH3jrIVxsJY8wGmmorpZFbI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9cd847220bfe120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-18T11:31:23.058553Z","times_seen":16511065,"resource_available":true,"data":null}},"time_used":886,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":886,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-13","alert":"Sinkholed","trigger":"copperinucto.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}