1.1.1.2 Started to resolve to localhost 127.0.0.1

I’m using 1.1.1.2 at my home router, yesterday suddenly a subdomain i use a lot (services.copsis.com) started to resolve to localhost instead of the real ip, changed to 1.1.1.1 and it resolves ok.

What happened or what changed, why do 1.1.1.2 started resolving 127.0.0.1 ?

$ dig @1.1.1.2 services.copsis.com

; <<>> DiG 9.11.5-P4-5.1+deb10u1-Debian <<>> @1.1.1.2 services.copsis.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26269
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;services.copsis.com. IN A

;; ANSWER SECTION:
services.copsis.com. 60 IN A 0.0.0.0

;; Query time: 41 msec
;; SERVER: 1.1.1.2#53(1.1.1.2)
;; WHEN: jue jul 30 09:34:46 CDT 2020
;; MSG SIZE rcvd: 83

$ dig @1.1.1.1 services.copsis.com

; <<>> DiG 9.11.5-P4-5.1+deb10u1-Debian <<>> @1.1.1.1 services.copsis.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53804
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;services.copsis.com. IN A

;; ANSWER SECTION:
services.copsis.com. 1997 IN A 189.207.248.214

;; Query time: 31 msec
;; SERVER: 1.1.1.1#53(1.1.1.1)
;; WHEN: jue jul 30 09:34:30 CDT 2020
;; MSG SIZE rcvd: 83

They made it into one or categories and got blocked.

Please report it here if you feel it needs a review

https://report.teams.cloudflare.com

I feel like one of their malware threat feeds has gone bad recently. I’ve had several sites incorrectly categorized in the last week or two. Haven’t experienced many issues before that.