{"report_id":"3d3be92a-7753-419b-9592-a0c966518696","version":6,"status":"done","tags":[],"date":"2026-03-21T05:07:58Z","url":{"schema":"https","addr":"moonshot.ad/","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"104.21.33.68","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"moonshot.ad/","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"title":"Just a moment...","dom":{"size":38234,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1784)","md5":"96d86d7dde625f974e4b6f536db27f80","sha1":"f3b883a737528903c8b2bdd2597bfd77dd6aee62","sha256":"bbac34b3f055080f605a84226a8c8891cd7dda07232ba4efaa1c889c281a835e","sha512":"46f73b300a485130031c67eb576b4c0556e739e6ef066904ee666158f674b4067e20430f05ffae078fb1496fa1a22fc63458610a4838e2f5f37be2c69041963f","ssdeep":"768:U998xnbeBubll6xowxWFfD+vvrx9maldx:i988BubllrpD+vvBbx","tlshash":"dc03b51695f70186a403d3b82bfb772527319013ca0acd6cbf9c5384cf4a69dada67c8","dom_hash":"domhash2039cf478475716bb01a30979d1809f6","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"moonshot.ad/","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"104.21.33.68","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-25T05:07:58Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-21","alert":"Sinkholed","trigger":"moonshot.ad","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"moonshot.ad","ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-21T05:07:58.75403Z","last_seen":"2026-03-21T05:07:58.75403Z","alert_count":4,"request_count":4,"received_data":150423,"sent_data":1749,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"use.fontawesome.com","ip":{"addr":"172.67.142.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-10-18","domain_rank":6983,"first_seen":"2017-01-30T04:43:25Z","last_seen":"2026-03-16T00:16:25.089673Z","alert_count":0,"request_count":1,"received_data":34060,"sent_data":445,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"moonshot.ad/static/main.js","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"069e18fb1decad0bb730cecd4024e469","sha1":"7904f0bc3333a9b98ba68d151787a4404d05b7b2","sha256":"8c27c851d737097cca99ff3666a2f57ded469e96943ad94d8e97f01480288d34","sha512":"ac6f2e5fff19e593449d2b9d0a4c3bebbe1a285abdc47dbb0065dab4c44860372ba1912067a79308309708742e31310002cf2ef5a4ef43f510e3a55808ec0cbe","ssdeep":"768:qwoPum5BfHgdEYsje76/KwWzTcb1DsjUsRkoMctckwxHdAAC9zUWRYlTunT:cHgYe7eKw6qwUckontSxC9zH","tlshash":"2b736457bb43b5dd010fa2bc2537b104e2a7e5a3c95884b8b77cef916c3468a4687e34","size":79248,"data":"","first_seen":"2026-03-21T05:08:02.533626Z","last_seen":"2026-03-21T05:16:09.141219Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"moonshot.ad/static/main.js","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshot.ad/","date":"2026-03-21T05:07:37.457Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot.ad","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 00:36:34 GMT","end":"Thu, 30 Apr 2026 01:35:11 GMT"},"fingerprint":{"sha1":"36:9B:E9:79:F9:4D:60:2A:E4:DB:AB:F9:86:12:BF:B6:65:7E:25:96","sha256":"F1:3D:FC:5C:83:9F:33:4A:3F:8D:AA:8F:7B:61:AA:B6:15:5B:F8:A8:49:83:94:1E:03:38:5F:95:A0:4F:0F:35"}}},"request":{"raw":"GET /static/main.js HTTP/1.1\r\nHost: moonshot.ad\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot.ad/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 21 Mar 2026 05:07:37 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nebtPhMNstHDJokkqeBWYvW2iK%2F6OvNafgXnagZLa09eQ%2F7twB2i97XnvKOopgNVU5W6Q303Tt7lQqj0HUGzDvL6vFkbnA%2FRvHk%2F\"}]}\r\npriority: u=3,i=?0\r\ncontent-disposition: inline; filename=main.js\r\nlast-modified: Fri, 13 Feb 2026 23:19:08 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"1771024748.592-79248-2037778785\"\r\ncf-ray: 9dfa6f1f1c29783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":79248,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"069e18fb1decad0bb730cecd4024e469","sha1":"7904f0bc3333a9b98ba68d151787a4404d05b7b2","sha256":"8c27c851d737097cca99ff3666a2f57ded469e96943ad94d8e97f01480288d34","sha512":"ac6f2e5fff19e593449d2b9d0a4c3bebbe1a285abdc47dbb0065dab4c44860372ba1912067a79308309708742e31310002cf2ef5a4ef43f510e3a55808ec0cbe","ssdeep":"768:qwoPum5BfHgdEYsje76/KwWzTcb1DsjUsRkoMctckwxHdAAC9zUWRYlTunT:cHgYe7eKw6qwUckontSxC9zH","tlshash":"2b736457bb43b5dd010fa2bc2537b104e2a7e5a3c95884b8b77cef916c3468a4687e34","first_seen":"2026-03-21T05:08:02.533626Z","last_seen":"2026-03-21T05:16:09.141219Z","times_seen":2,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":53,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-21","alert":"Sinkholed","trigger":"moonshot.ad","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot.ad/favicon.ico","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moonshot.ad/","date":"2026-03-21T05:07:37.639Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot.ad","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 00:36:34 GMT","end":"Thu, 30 Apr 2026 01:35:11 GMT"},"fingerprint":{"sha1":"36:9B:E9:79:F9:4D:60:2A:E4:DB:AB:F9:86:12:BF:B6:65:7E:25:96","sha256":"F1:3D:FC:5C:83:9F:33:4A:3F:8D:AA:8F:7B:61:AA:B6:15:5B:F8:A8:49:83:94:1E:03:38:5F:95:A0:4F:0F:35"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: moonshot.ad\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot.ad/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 21 Mar 2026 05:07:37 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ORsGANeIWf6UQO4WfLmtHh7uSVBVDHmElbkqvNJWZ8%2F7Er2TQtgJQeQUDdwzgaz39bo00S3vymGF8CVznfyRpeOaublalM5W2eYV\"}]}\r\npriority: u=6,i=?0\r\ncontent-disposition: inline; filename=default.ico\r\nlast-modified: Thu, 12 Feb 2026 02:19:33 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-cache-status: REVALIDATED\r\netag: W/\"1770862773.284-15086-3135966160\"\r\ncf-ray: 9dfa6f203c37783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"01811a21b06db7866262f93226d5214c","sha1":"aaf2268b01dfd116745b6306192d101ded01a5f5","sha256":"52c814e0b3d04819f4d82070e9634a5b05366a6da09f396d505c062813fbe853","sha512":"ecc1c9258376b9e0dfdee750631dc15a3406fd79e2633ed91809324cb11b6a6cb46e9a27e5c9d7bf287f86b6e9b969fd0f4282ae3011844a0c5cb22207bbfd72","ssdeep":"384:jvrAnbZFox5SiF86QuR1RElYyO1q+QHHH:jE6VSuR1RElYT6H","tlshash":"5d6229d33bc05ca8fc7ace38a8561e0616f57e7b280ddb270491f83b85774a1b0b1992","first_seen":"2026-03-21T05:08:02.535085Z","last_seen":"2026-03-21T05:16:09.143573Z","times_seen":2,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-21","alert":"Sinkholed","trigger":"moonshot.ad","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot.ad/","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-21T05:07:37.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot.ad","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 00:36:34 GMT","end":"Thu, 30 Apr 2026 01:35:11 GMT"},"fingerprint":{"sha1":"36:9B:E9:79:F9:4D:60:2A:E4:DB:AB:F9:86:12:BF:B6:65:7E:25:96","sha256":"F1:3D:FC:5C:83:9F:33:4A:3F:8D:AA:8F:7B:61:AA:B6:15:5B:F8:A8:49:83:94:1E:03:38:5F:95:A0:4F:0F:35"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: moonshot.ad\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Mar 2026 05:07:37 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7uPE1Sco0%2BzjFS3MX87TZPGgEEw%2Bg7fz2KoEqlvIKEM5l%2FKUntg4bTXr9XB1%2BTQ1ecjYVL%2FD%2Bge26%2B6gZefYTnOv9bAmN75uFQ2R\"}]}\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9dfa6f1d9fb64e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38263,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1784)","md5":"b1cd62615fb1f04a169dffc87423aec9","sha1":"a5ed92439f79974c36b75e3c107bdc6767ffa4b7","sha256":"8fdca412924f57e52b905a922eb9971739c01473f7ab167344c78a9243a807b0","sha512":"a79fb877bb1fa378066ac3c6764c6313e268a559f9f9d65c8bc4017f67d87c039025d6f377d66b5c7ef19cf1b43069262624894d621e150ad808ddf5d5421b4f","ssdeep":"768:g998xnbeBubll6xowxWFRD+vvrx9maldI:W988Bubllr3D+vvBbI","tlshash":"9103b51695f70196a403d3b82bfb772527319013ca0acd6cbf9c5384cf4a69dada67c8","first_seen":"2026-03-21T05:08:02.536558Z","last_seen":"2026-03-21T05:16:09.146711Z","times_seen":2,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":82,"dns":71,"connect":1,"send":0,"wait":89,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-21","alert":"Sinkholed","trigger":"moonshot.ad","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.0.0/css/all.css","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.142.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://moonshot.ad/","date":"2026-03-21T05:07:37.454Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Feb 2026 03:44:58 GMT","end":"Sun, 24 May 2026 04:44:53 GMT"},"fingerprint":{"sha1":"0C:5A:E2:01:10:8C:15:2B:47:73:4B:2D:0B:04:A9:CB:C4:D5:87:DE","sha256":"8A:BA:58:86:7D:78:23:12:27:76:D9:DA:25:26:4E:8B:3B:98:BF:CB:D1:33:A9:B0:4F:4C:17:B3:6C:58:38:24"}}},"request":{"raw":"GET /releases/v5.0.0/css/all.css HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot.ad/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 21 Mar 2026 05:07:37 GMT\r\ncontent-type: text/css\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R9e7pNZUhpLRVzLxbbVNk9%2BdpvhdFXaqBGmKA8RP%2Bg6yo04kLyL73rYm0HR1ezJsUvfBX3lwYFJV70J7SMyzc90e3bVWWF0p2MD6TJf28JVEYC8%3D\"}]}\r\ncf-cache-status: HIT\r\nage: 2479864\r\ncache-control: max-age=31556926\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Sep 2023 01:44:05 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\netag: W/\"e35d9c4ebaea0573df8e4a9505b72eea\"\r\ncontent-encoding: br\r\ncf-ray: 9dfa6f1f29150731-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":33407,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (33229)","md5":"e35d9c4ebaea0573df8e4a9505b72eea","sha1":"5fbb384cd8cd7a64483e6487d8d8179a633f9954","sha256":"9f29f2bbb25602f4bdbd3122c317244f8fd9741106ffd5a412574b02ee794993","sha512":"c571015753b927017b3bec2b1c0b0103de27dcc5e805e1daf8a1459e0f797aba38ff0592f93cbec80b98f574b18455ddbc65a1f38a8aed5acf14eb8ce2d7265c","ssdeep":"384:Wb+rB31zxcjzc61CrDam31bvG91QCQ/HUMNYmB1vcv/PEsQ/4j:731zxcfc6IyUFv61dQ/0MOm3izQ/Y","tlshash":"1ae23fb8e50c41d6a731c44bff82b36862bafb3cd5850d95f00e6d1c29d16a911c9fba","first_seen":"2023-05-21T18:27:18Z","last_seen":"2026-06-13T13:54:13.913121Z","times_seen":1690,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":13,"dns":2,"connect":1,"send":0,"wait":9,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot.ad/favicon.ico","fqdn":"moonshot.ad","domain":"moonshot.ad","tld":"ad"},"ip":{"addr":"172.67.159.135","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moonshot.ad/","date":"2026-03-21T05:07:37.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot.ad","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 30 Jan 2026 00:36:34 GMT","end":"Thu, 30 Apr 2026 01:35:11 GMT"},"fingerprint":{"sha1":"36:9B:E9:79:F9:4D:60:2A:E4:DB:AB:F9:86:12:BF:B6:65:7E:25:96","sha256":"F1:3D:FC:5C:83:9F:33:4A:3F:8D:AA:8F:7B:61:AA:B6:15:5B:F8:A8:49:83:94:1E:03:38:5F:95:A0:4F:0F:35"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: moonshot.ad\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot.ad/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 21 Mar 2026 05:07:37 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9guonLV7ER%2FiRRnkYhxpXtk3j6nHkaT6Bivlww2GurXBl0YKJ0r1n2hP%2BP%2BCeUbgX%2FMpDrlHHvY7C8fokcr0iCszEMmCf4brI6MK\"}]}\r\npriority: u=4,i=?0\r\ncontent-disposition: inline; filename=default.ico\r\nlast-modified: Thu, 12 Feb 2026 02:19:33 GMT\r\ncache-control: max-age=14400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-cache-status: MISS\r\netag: W/\"1770862773.284-15086-3135966160\"\r\ncf-ray: 9dfa6f1f1c28783d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15086,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"01811a21b06db7866262f93226d5214c","sha1":"aaf2268b01dfd116745b6306192d101ded01a5f5","sha256":"52c814e0b3d04819f4d82070e9634a5b05366a6da09f396d505c062813fbe853","sha512":"ecc1c9258376b9e0dfdee750631dc15a3406fd79e2633ed91809324cb11b6a6cb46e9a27e5c9d7bf287f86b6e9b969fd0f4282ae3011844a0c5cb22207bbfd72","ssdeep":"384:jvrAnbZFox5SiF86QuR1RElYyO1q+QHHH:jE6VSuR1RElYT6H","tlshash":"5d6229d33bc05ca8fc7ace38a8561e0616f57e7b280ddb270491f83b85774a1b0b1992","first_seen":"2026-03-21T05:08:02.535085Z","last_seen":"2026-03-21T05:16:09.143573Z","times_seen":2,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":69,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-21","alert":"Sinkholed","trigger":"moonshot.ad","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}