{"report_id":"3f3ead06-194d-4b02-a4b6-8a7b5827207f","version":6,"status":"done","tags":[],"date":"2026-01-04T15:01:18Z","url":{"schema":"http","addr":"pippincoin.org","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"104.21.67.177","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"pippincoin.org/","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"title":"Pippin l Official Airdrop","dom":{"size":8319,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1101)","md5":"94c67e670c423225aca7c4f35889121a","sha1":"a1a479aa218500ea65110aa5e0cbc23703dc5e76","sha256":"cb5fa31cc16e37f8eb60d9c4aaf45a4fe87d9ef134c5296bcdbc8ed2975aeeb4","sha512":"27c8c8d898e983eb1e5473909b0bea765d79116c778ec6036f67a705c7b1dcdd5390e6cf57baf89bfd37b85b2537be08514c4b63d6a010e771cd5236da654f1e","ssdeep":"192:FZ4Q7NdNqt292nMI04LHKPc1RcWiBtIErUqU7GVzK2yhpGKOTdaC:b4ZwgPLH+c1RcWkgqU7Gc2yh4hB","tlshash":"6a02969188f091726082ca95ee9b6b1e3f556063f79e8104bfae0bd49fc6d83ec07558","dom_hash":"domhashf14b89c065963f3d39eab646d52e2660","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"pippincoin.org","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"104.21.67.177","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-08T15:01:18Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"pippincoin.org","ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":9,"request_count":9,"received_data":1186855,"sent_data":4169,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"pippin.love","ip":{"addr":"185.199.108.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2024-11-11","domain_rank":0,"first_seen":"2025-11-23T13:36:29.603513Z","last_seen":"2025-12-20T04:26:18.494871Z","alert_count":0,"request_count":2,"received_data":4609,"sent_data":893,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"pippincoin.org/script.js","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"eabe79ae26a4be3755be64d8e9a1bfbc","sha1":"41ea8556477e66fc6970a1abffb1306e5fd22aa3","sha256":"c2cfe9d9c3962ae5f52a40711befb5e88eaf9b8d0a8c92d53e30d57e3d13cec4","sha512":"dae0d617bb83106bef24f8ee13c87b1fa6351adbb928b4859802e4dccaa47accb926bd647a8c3d95a4b131c2b76566ca2e7b702f729d378738e397a1adc901fb","ssdeep":"","tlshash":"a951f07b315024305efe2bd69b570718f625a113394385a9beec46484fb5f41acabecc","size":2921,"data":"","first_seen":"2025-11-23T13:36:34.231106Z","last_seen":"2026-02-14T11:27:39.432205Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/primer.desktop.umd.js","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"4290b48746e1ca87e92b540d872f3e31","sha1":"1393546dc51e8faf625e2507e8a0df55c03c7ebe","sha256":"2a3a7585a4396d46abf3ba2bbbf6cff3f9e2bbd8cb18c7e0629f57fb84237c33","sha512":"61b8e6267a8b81b7868d3a63627b771b878cdb9bcb53b3401f33ebdce202dc3644a12bf0d64ac6d716e48ecefd1c07bcaa10523ea73da418f47db30204899106","ssdeep":"6144:yMgB6oemDH9E44pI1zjcq+GjJkJlHnwXWRTH:PgDuXI6DGjJkJ+GRTH","tlshash":"e4a452c75cc5285cc36663e71819504fb59317a9cbcc6bc6af2db6daa0ea80111e7fc2","size":468251,"data":"","first_seen":"2025-12-20T04:26:22.714102Z","last_seen":"2026-02-14T11:31:17.555755Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"9011844c11b03fc2118cb8b50a8e35e7","sha1":"c125a3ca322f5e84727f07356334a138a3d77ce0","sha256":"c159c1d84630661ded9665c6da91d5ba3e372fb1cca4eed6da379e3751885247","sha512":"bf4ec7e61443cc541e1ea1b052190b5dcce06d08a03877febabea0ef7316d984aee4715bf9c88a9b496c6939d9f25c4fddf9f8edb51262f8678c8a36e7c9960d","ssdeep":"6144:cW+9AAC3EtlO6XleZKDzlSMUG/JkBtBB+dGfTr:HXXGsKg7G/JkBkMfTr","tlshash":"aba475c75cc6285cc36677e71c19404fb5931badc78c6bc6ae2db69aa0ea40111e7fc2","size":461193,"data":"","first_seen":"2025-12-20T04:26:22.717447Z","last_seen":"2026-02-14T11:31:17.629637Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fqrcode.adaptive.esm.js%3Ft%3D29458980%26u%3Dzd6PSfzCuYzRBNZkGDY5MjU2NDUxMjhjZmYzYzM0MDI3ZTdiZE1VpuBueJiG7M8SuQ","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c835ce0aa761a791b29ba4c102a85e28","sha1":"828e40328ca8ff740f1090e6f63e170c1592a62c","sha256":"4ee6631554867dc1bfadbfe5f4b4ebf4cec5164ba142f8db92f840c2028496cf","sha512":"49cefc3ca9614cebafe201eef12b5cdebcdd19da6ab30f530d7a81a8ef91fca5f02eb63108b8056c2dbd4c22b8b337aae939a712f4a876bdeef21a1e2a9f3225","ssdeep":"6144:9ujB8gltIeTM5/S8g6zRhNgDzQebuazBzqXQPkBAUvVdZcml4L:ihltVM/g6ZszQeqazNqXQcBvK","tlshash":"29d4bcec970a167788cb97b6423363afef884d1a236b3c406ec19cd1574a74e53ea15c","size":641034,"data":"","first_seen":"2026-01-01T19:22:06.925398Z","last_seen":"2026-03-30T11:52:16.142566Z","times_seen":405,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"pippincoin.org/script.js","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:55.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\netag: W/\"694f3873-b69\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JoUZEjL8OyVP%2B9Bknqbjy2zDN9sfhboTjFMvqdAy2nOGRUvawD0bVSOmrPI4UNgYZt4TDb6HKHexssTq2vqLkrxgIA%2BUpf5v3klmekgG\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9b8b9bb9398a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2921,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"eabe79ae26a4be3755be64d8e9a1bfbc","sha1":"41ea8556477e66fc6970a1abffb1306e5fd22aa3","sha256":"c2cfe9d9c3962ae5f52a40711befb5e88eaf9b8d0a8c92d53e30d57e3d13cec4","sha512":"dae0d617bb83106bef24f8ee13c87b1fa6351adbb928b4859802e4dccaa47accb926bd647a8c3d95a4b131c2b76566ca2e7b702f729d378738e397a1adc901fb","ssdeep":"","tlshash":"a951f07b315024305efe2bd69b570718f625a113394385a9beec46484fb5f41acabecc","first_seen":"2025-11-23T13:36:34.231106Z","last_seen":"2026-02-14T11:27:39.432205Z","times_seen":6,"resource_available":true,"data":null}},"time_used":286,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/img/pippin-logo.svg","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:57.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /img/pippin-logo.svg HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:57 GMT\r\ncontent-type: image/svg+xml\r\nvary: accept-encoding\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"694f3873-470\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fKTPTblCr0SeiUu8LrM6S3cEngWRREeAetIKV8kkPG5V7s2oVb52hPGG2UeCzPhtkBFHAv%2FIlOYP9vh2CYti0A6PWvB0CKuxcrdVtUp2\"}]}\r\npriority: u=6,i=?0\r\ncf-ray: 9b8b9bc06b3a8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1136,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcbb3cc8f0f84e3c58f54f5aca42c861","sha1":"6b8250c472cc40717999ceff524d07901fb3d844","sha256":"4f532d3e02096933b109dd0f7bd6303d1ca6e11f488baa0b5076ab1f332c1181","sha512":"76483288e765a69002e74a61cc1e73caa4f6004418b609f2ac6021b7a38456bb010e377144a0e7bec4e4f69d6704c500ca0eea5de559d19bd521b9fb5cd0a828","ssdeep":"","tlshash":"fb21f9909a1929a4ea55816a9f183039522bb6d766072045384e2170bf903dfaff7fec","first_seen":"2025-11-23T13:36:34.225048Z","last_seen":"2026-03-21T06:21:26.579772Z","times_seen":15,"resource_available":false,"data":null}},"time_used":221,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fqrcode.adaptive.esm.js%3Ft%3D29458980%26u%3Dzd6PSfzCuYzRBNZkGDY5MjU2NDUxMjhjZmYzYzM0MDI3ZTdiZE1VpuBueJiG7M8SuQ","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:57.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fqrcode.adaptive.esm.js%3Ft%3D29458980%26u%3Dzd6PSfzCuYzRBNZkGDY5MjU2NDUxMjhjZmYzYzM0MDI3ZTdiZE1VpuBueJiG7M8SuQ HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:57 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\nvary: Accept-Encoding\r\ncache-control: max-age=2592000, must-revalidate\r\netag: W/\"9c80a-go5AMoyo/3QPEJDm9j4XDBWSpiw\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=qrcode.adaptive.esm.js\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 01/04/2026 15:00:57\r\ncdn-edgestorageid: 1056\r\ncdn-requestid: 867f83665ee7c88c43ccc4c90518b806\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qiu%2B27cCxdPtYYF3lYOX15%2BD0zsfS0gVswwumrJCzph%2FNMEsNUMLnkGc9aBurCeps9vsL3mV2A8mtIqPOQT5OkJ9U9aTVVXku3rk7W9L\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b8b9bc07b3c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":641034,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c835ce0aa761a791b29ba4c102a85e28","sha1":"828e40328ca8ff740f1090e6f63e170c1592a62c","sha256":"4ee6631554867dc1bfadbfe5f4b4ebf4cec5164ba142f8db92f840c2028496cf","sha512":"49cefc3ca9614cebafe201eef12b5cdebcdd19da6ab30f530d7a81a8ef91fca5f02eb63108b8056c2dbd4c22b8b337aae939a712f4a876bdeef21a1e2a9f3225","ssdeep":"6144:9ujB8gltIeTM5/S8g6zRhNgDzQebuazBzqXQPkBAUvVdZcml4L:ihltVM/g6ZszQeqazNqXQcBvK","tlshash":"29d4bcec970a167788cb97b6423363afef884d1a236b3c406ec19cd1574a74e53ea15c","first_seen":"2026-01-01T19:22:06.925398Z","last_seen":"2026-03-30T11:52:16.142566Z","times_seen":405,"resource_available":true,"data":null}},"time_used":690,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":506,"receive":184,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org//secureproxy?s=%2Fjmpd%2F","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:58.134Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"POST //secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pippincoin.org/\r\ncontent-type: application/json\r\nContent-Length: 2196\r\nOrigin: https://pippincoin.org\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2196,"data":"{\"route\":\"8XUwkBv9vhPYfVpD1fxb7EC65sUXJdqr\",\"payload\":\"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\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncast-mode: default\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"e1-cpVdy5+svpQ6ydD4J7trBjQCPIs\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9998\r\nx-ratelimit-reset: 1767538918383\r\ncdn-proxyver: 1.43\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 01/04/2026 15:00:58\r\ncdn-edgestorageid: 883\r\ncdn-requestid: d4aa7e8d8da71043d04d701c9d0b86db\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2Q7lFw5ocpbM%2FFHKd9jw56Cc%2FiP1KatuO9HB4HIru1dxOwk1GXI1GNWxO4e1GkS%2BV2fcMGScMkjAvcOIP4wUw6rVMyn6K3x%2F%2FnEeZyQt\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9b8b9bc75c708deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":225,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"d0760ead8d6ca294de16e89eb8d6eb82","sha1":"72955dcb9facbe943ac9d0f827bb6b0634023c8b","sha256":"20903c687e55826e42f50002a9253a11a6b17a53af4cf10fe60eed9d731ab831","sha512":"4ca76bf3d10ee32176ecad293ad1b4b6f48e06861a1bc2bf0986abc8e4812f7c8b87dd4136cef76a2a0981e226c886237e47ab7bc50646340c0f517efa58db5f","ssdeep":"","tlshash":"10d0a784d225c9d98d9556025b9195ec2d0a18d6ef1545942a720113c5113b6d87a4b1","first_seen":"2026-01-04T15:01:23.722413Z","last_seen":"2026-01-04T15:01:23.722413Z","times_seen":1,"resource_available":false,"data":null}},"time_used":549,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":546,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/style.css","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:55.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\netag: W/\"694f3873-3ae4\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PbHGDSO3jM8tVlmfVXsTkt8cexJbqQXw9JzxvFgI5jcSN0ulLC4EGYj32UV%2BcQHnEAX1QxkB42GIGaqHE%2Bq3j5cLt0eVjHUPxUxabFKs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9b8b9bb939868deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":15076,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"0b55df83888134f9d1f74177f7a926b9","sha1":"46517c23dbe76ae26675287701ed9e933221804b","sha256":"0f68f060bb091046af4055f4d6ba04ca27f078472619bfc90ae7409c92b8d8d0","sha512":"1b137fec78fe84dc1302c0c10293aefc9ac63253863e79183aead1e8d192011bc723c0d0b59cae5999de14506bb243a3ee7c672fa19d854e7cccb5b8ace146f7","ssdeep":"192:cACJB9Dh/9cSWUXChYJ9E9iMG2Nr0+vxZmB20ir9zhyrt9Be9w51+ykE9Ec9NeMC:7szhZxC","tlshash":"dc62de24ea04184a7473e3786fb3d758e3e68063d34666ae7fd4a1508ff526086a5fcc","first_seen":"2025-11-23T13:36:34.24799Z","last_seen":"2026-02-14T11:27:39.437294Z","times_seen":9,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/primer.desktop.umd.js","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:55.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /primer.desktop.umd.js HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\netag: W/\"694f3873-7251b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a%2FLy4tEF9OaTVSyUa3gl69si5NwE%2BC%2BzgNpZvpL%2B20ZIBBDKSKhc1BulnHXZFdzJieiHfkDvyXMVC2Z27CF5U%2F2e0q0idecLdgKgzn7t\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9b8b9bb939888deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":468251,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65159)","md5":"4290b48746e1ca87e92b540d872f3e31","sha1":"1393546dc51e8faf625e2507e8a0df55c03c7ebe","sha256":"2a3a7585a4396d46abf3ba2bbbf6cff3f9e2bbd8cb18c7e0629f57fb84237c33","sha512":"61b8e6267a8b81b7868d3a63627b771b878cdb9bcb53b3401f33ebdce202dc3644a12bf0d64ac6d716e48ecefd1c07bcaa10523ea73da418f47db30204899106","ssdeep":"6144:yMgB6oemDH9E44pI1zjcq+GjJkJlHnwXWRTH:PgDuXI6DGjJkJ+GRTH","tlshash":"e4a452c75cc5285cc36663e71819504fb59317a9cbcc6bc6af2db6daa0ea80111e7fc2","first_seen":"2025-12-20T04:26:22.714102Z","last_seen":"2026-02-14T11:31:17.555755Z","times_seen":8,"resource_available":true,"data":null}},"time_used":352,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":215,"receive":137,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippin.love/assets/images/pippin-logo.svg","fqdn":"pippin.love","domain":"pippin.love","tld":"love"},"ip":{"addr":"185.199.108.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:55.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippin.love","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 01 Jan 2026 18:02:10 GMT","end":"Wed, 01 Apr 2026 18:02:09 GMT"},"fingerprint":{"sha1":"2A:E8:8E:DF:77:EF:F9:0C:7F:54:FF:B2:5C:68:6C:2B:55:F4:E1:2B","sha256":"ED:64:2D:19:F3:71:20:4F:31:8F:B4:B9:54:E0:45:77:1F:F2:06:34:AB:CD:61:5C:8F:AB:AC:3A:74:C0:9F:C9"}}},"request":{"raw":"GET /assets/images/pippin-logo.svg HTTP/1.1\r\nHost: pippin.love\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 17 Mar 2025 23:58:05 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"67d8b70d-470\"\r\nexpires: Sun, 04 Jan 2026 15:10:56 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: A07D:83D7F:F54E672:F899C32:695A80A7\r\naccept-ranges: bytes\r\nage: 0\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410033-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1767538856.988384,VS0,VE131\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 6dbba84d8cd3966d81ef63baae90b7921c00d70f\r\ncontent-length: 431\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]}],"data":{"size":1136,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcbb3cc8f0f84e3c58f54f5aca42c861","sha1":"6b8250c472cc40717999ceff524d07901fb3d844","sha256":"4f532d3e02096933b109dd0f7bd6303d1ca6e11f488baa0b5076ab1f332c1181","sha512":"76483288e765a69002e74a61cc1e73caa4f6004418b609f2ac6021b7a38456bb010e377144a0e7bec4e4f69d6704c500ca0eea5de559d19bd521b9fb5cd0a828","ssdeep":"","tlshash":"fb21f9909a1929a4ea55816a9f183039522bb6d766072045384e2170bf903dfaff7fec","first_seen":"2025-11-23T13:36:34.225048Z","last_seen":"2026-03-21T06:21:26.579772Z","times_seen":15,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":99,"dns":68,"connect":13,"send":0,"wait":145,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pippin.love/assets/images/pippin.svg","fqdn":"pippin.love","domain":"pippin.love","tld":"love"},"ip":{"addr":"185.199.108.153","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:55.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippin.love","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 01 Jan 2026 18:02:10 GMT","end":"Wed, 01 Apr 2026 18:02:09 GMT"},"fingerprint":{"sha1":"2A:E8:8E:DF:77:EF:F9:0C:7F:54:FF:B2:5C:68:6C:2B:55:F4:E1:2B","sha256":"ED:64:2D:19:F3:71:20:4F:31:8F:B4:B9:54:E0:45:77:1F:F2:06:34:AB:CD:61:5C:8F:AB:AC:3A:74:C0:9F:C9"}}},"request":{"raw":"GET /assets/images/pippin.svg HTTP/1.1\r\nHost: pippin.love\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: GitHub.com\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 17 Mar 2025 23:58:05 GMT\r\naccess-control-allow-origin: *\r\netag: W/\"67d8b70d-86f\"\r\nexpires: Sun, 04 Jan 2026 15:10:56 GMT\r\ncache-control: max-age=600\r\ncontent-encoding: gzip\r\nx-proxy-cache: MISS\r\nx-github-request-id: 1AF2:33CCC:F947637:FC91E1B:695A80A7\r\naccept-ranges: bytes\r\nage: 0\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410033-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1767538856.990477,VS0,VE138\r\nvary: Accept-Encoding\r\nx-fastly-request-id: 2d3ac813bd7b832b43bfe7b870a1ba049db104b7\r\ncontent-length: 605\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]}],"data":{"size":2159,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"66b1938a5247a2553998b300e71c4f1c","sha1":"a2eeb47a2dd8401f46f42657a6874834da3a276f","sha256":"c589f3ddd8b64e04355b9d01a47d0ee39795690cc287a17667c602abff5a6b87","sha512":"7d6ded886b5ee6d9054125cccf77ae41549704e5ad4be07637e32b883bd5c563ee49ba8166d5ee359de85478520995afa4cbe74c38c6dbd8e91591f3d9fcb9c4","ssdeep":"","tlshash":"81412a64a30c1679f62f8368ebad34ab523f70ddd71c20991d901ab0a0942ba5db71ec","first_seen":"2025-11-23T13:36:34.243259Z","last_seen":"2026-03-21T06:21:26.574511Z","times_seen":15,"resource_available":false,"data":null}},"time_used":357,"timings":{"blocked":99,"dns":67,"connect":15,"send":0,"wait":151,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/secureproxy?e=ping_proxy","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:56.564Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /secureproxy?e=ping_proxy HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pippincoin.org/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: accept-encoding\r\ncast-mode: default\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nlast-modified: Sun, 04 Jan 2026 15:00:56 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MVZ37S9Ls%2BY2coJEyQngbT%2FeWUve%2Bdba4QhHCPjo7S5CTOmkH6LJcLnCigJU0COX0aXorE9TjAmMwKmuoYsluauKvzx1VU3p405fomTm\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9b8b9bbd8a9e8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"6fdb087aa3fbfbcb8287a593a0919e61","sha1":"0e514a0662bcb69dc863953d1ce26e3d40e81a87","sha256":"9795c5ff8937f23526ccb207a5684c1fc94a7854e19c021b39d944e51f5baef2","sha512":"be5457d14c930b51b47ab152850c1ceaafe6ef88c8671b48164abbc83410b0c07a1e178540f6cdeac5f2672cadb1d1cbbb3434b3e39bc2c50c4646a2bae57437","ssdeep":"","tlshash":"fe300000300000000000000c0000000000000000000000000000000000300000000000","first_seen":"2023-04-12T09:14:15Z","last_seen":"2026-06-27T20:09:25.867963Z","times_seen":8878,"resource_available":true,"data":null}},"time_used":298,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":291,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/img/cta.mp4","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://pippincoin.org/","date":"2026-01-04T15:00:56.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET /img/cta.mp4 HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pippincoin.org/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 206 Partial Content\r\nserver: cloudflare\r\ndate: Sun, 04 Jan 2026 15:00:56 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 864681\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\netag: \"694f3873-d31a9\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-range: bytes 0-864680/864681\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BsPEX8oHXsz9RmQYnnlKLl5LochRoBFQIDDzPRquoAfLiipHmTAAAk6LdPGt45wPMjrBudc60wrPC5ECktXb8VQgEsyNY0kBspoAp5de\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\ncf-ray: 9b8b9bbe4ab38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40142,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]","md5":"7a44d9e02d5564d47afa1664f4bb11d4","sha1":"577aa62adf4a6a4a78011fe1ac4e25cf28d4c021","sha256":"f597f3272f9220a0f88f46a2e2af7235569aec8934436ef6a1bd4179cddc7178","sha512":"b4bf0b8c085d01fcb463ff216ca905858c6627ea807b4a9bd79b877d844e05778326fa0b82b411915f290d5c74759ba4f13c98080971dcb32ac8afc7204f84d5","ssdeep":"768:pzWG5h5ojTGwAy2Uwe9mzswz2r0WXQvityhtjJHbQX1zzTa5P:pz5ouwAQwCgs+2oXvvhrHy1zzTaV","tlshash":"9f033860f345414ec4738bb419b223397696dca9b05ed34bb6bf2b1ea8524f17b028f5","first_seen":"2026-01-04T15:01:23.734123Z","last_seen":"2026-01-04T15:01:23.734123Z","times_seen":1,"resource_available":false,"data":null}},"time_used":317,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":230,"receive":87,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pippincoin.org/","fqdn":"pippincoin.org","domain":"pippincoin.org","tld":"org"},"ip":{"addr":"172.67.179.4","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-04T15:00:55.342Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pippincoin.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 27 Dec 2025 00:50:42 GMT","end":"Fri, 27 Mar 2026 01:49:24 GMT"},"fingerprint":{"sha1":"6F:95:9A:8E:FE:CC:A6:AF:2E:79:0B:73:CC:8E:8A:8E:77:86:1F:C6","sha256":"54:FB:7B:D4:4A:90:AC:BF:30:5F:3D:93:CD:00:68:48:7D:CE:4A:5B:F3:B1:19:00:82:34:0C:E8:C9:2A:CB:D8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: pippincoin.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 04 Jan 2026 15:00:55 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Sat, 27 Dec 2025 01:37:55 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BwnHe92RdkfCTTpcLdP52A6lUrZDVq84NC5HLrZYzs3Ye%2B126H3yVMhalFU%2B47KjhxeXCaj1e6fbJb0142to0PnNLxoMJVk4MSwHxgq1\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9b8b9bb65ed18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":8535,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1095), with CRLF line terminators","md5":"1b288abd9bd4af3fce5398b21c48cb1a","sha1":"495288b6449642a959047bb6bd226e924fe18be1","sha256":"c030cf1daac140df38d9372d1585fc56e03bf40ace1a4b4b2d49f24754e7f671","sha512":"8e78dae932e60769cf0e236438801fa19162229e8af2c3db38b133d2f4f1d0e8eec44e5bdf7e6e8bb9dde44b77269079ad185d859c9de39188669c5daaff1ff5","ssdeep":"192:XANXNiF32yrTR4LHKPc1RcW4wcIErUV6eQMD0Mw6Sh/GZw:DGtLH+c1RcWEgV6eQe0Mw6Shey","tlshash":"230294b0c4d0902260b3c6d6ee9a5ba9fe550053e78e4209bbee17d7afb6e41ec03550","first_seen":"2025-12-20T04:26:22.709765Z","last_seen":"2026-02-14T11:27:39.428225Z","times_seen":6,"resource_available":false,"data":null}},"time_used":415,"timings":{"blocked":73,"dns":54,"connect":1,"send":0,"wait":269,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-01-04","alert":"Sinkholed","trigger":"pippincoin.org","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}