{"report_id":"4a713684-0e4f-4500-b9c3-ffd2f5c7e4d8","version":6,"status":"done","tags":[],"date":"2025-10-21T07:47:07Z","url":{"schema":"https","addr":"moongates.net/8m8cdspp/ticket.html","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"172.67.166.69","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/ticket.html","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"title":"Checkout | Token 2049 | Moongate"},"submit":{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/ticket.html","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"172.67.166.69","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-25T07:47:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-10-19T22:12:35.4735Z","alert_count":0,"request_count":1,"received_data":519,"sent_data":486,"comment":"","tags":null,"fingerprints":null},{"fqdn":"moongates.net","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-01","domain_rank":0,"first_seen":"2025-10-21T07:47:07.508827Z","last_seen":"2025-10-21T07:47:07.508827Z","alert_count":8,"request_count":8,"received_data":378863,"sent_data":3785,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"app.moongate.id","ip":{"addr":"172.67.72.97","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-07-06","domain_rank":2291082,"first_seen":"2022-12-09T09:54:24Z","last_seen":"2023-05-23T08:27:21Z","alert_count":0,"request_count":1,"received_data":6866,"sent_data":468,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.moongate.id","ip":{"addr":"172.67.72.97","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-07-06","domain_rank":0,"first_seen":"2025-10-21T07:47:07.506358Z","last_seen":"2025-10-21T07:47:07.506358Z","alert_count":0,"request_count":1,"received_data":103812,"sent_data":532,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/ticket.html","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"46d3de6f85e06676105cb9a5097cbd6b","sha1":"a6e52f876f341e974790aadb9e1b43be5f4cce2d","sha256":"0cbd52f478077ecd484db4573e69fb550b09b8327fe0f3a28d4c7342727352a5","sha512":"90242eea0e935684c713432b78229eca27e675bc6d1d99ae23deced81120bcacfed7ce6900cea2c9a191b6d59534b85c10a98e19bf881a5139faec3c49683408","ssdeep":"","tlshash":"24f0828732c1077809eb2aea724287c835118c1348c96018762cda568b33ec2da3b7d5","size":461,"data":"","first_seen":"2025-10-21T07:47:12.23405Z","last_seen":"2025-10-21T07:47:12.23405Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=%27Space+Grotesk%27:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.187Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"04:E6:D3:58:E3:A1:E3:05:2B:C3:56:5D:68:BB:1B:0A:08:C6:E3:FB","sha256":"25:4C:B3:A3:9A:E1:D7:FD:25:B6:BF:E9:AA:97:95:20:5D:F2:15:EA:41:46:B6:6B:01:17:19:26:EC:EF:D3:CA"}}},"request":{"raw":"GET /css2?family=%27Space+Grotesk%27:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 400 Bad Request\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"Bad Request","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-08T08:38:17.057118Z","times_seen":13496014,"resource_available":true,"data":null}},"time_used":300,"timings":{"blocked":127,"dns":0,"connect":20,"send":0,"wait":34,"receive":0,"ssl":116},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/style.css","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /8m8cdspp/style.css HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: text/css\r\ncontent-length: 33195\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\nlast-modified: Fri, 03 Oct 2025 14:00:26 GMT\r\netag: \"364cf-6404186102e70-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nd44cwTeKQbSmanLCyaV8GGw3dUaT%2FhsKUQpYJ6iTMk9Ye1NJ2g%2FeGUzvWNsq75OtY9E%2FfZ%2BoXeDxYOH9KM%2BKPCs6KkgKgSLQhrIlJs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 991f249e9d0423eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":222415,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"601f2e577fa3a2d94c86d470754afc77","sha1":"1bd73914a081e7d4f37bda63cd813ffb0390b112","sha256":"976654a76c8ae289a70a2f74019a062aa77d92620097e396952f8e557b4a0727","sha512":"5c21442c93f643709c448baaec7232d658f5fad32be09d26c18ebf45f176a1e9f4c879f658ac4105c1c1f9e7fd6fb8a27a3f0e5938f0205ff75945e31c814535","ssdeep":"6144:11fqdoEEffHvSPToKMFPZONMBza5FwjbM:11fqdoEEfsFwjbM","tlshash":"6d249300a9b3adad2c27911923fdca56332e61479c0ddf5f7be921584f4b3e429dae01","first_seen":"2025-10-21T07:47:12.188486Z","last_seen":"2025-10-21T07:47:12.188486Z","times_seen":1,"resource_available":false,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":84,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app.moongate.id/_next/static/media/moongate-logo.c7733ca2.svg","fqdn":"app.moongate.id","domain":"moongate.id","tld":"id"},"ip":{"addr":"172.67.72.97","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.190Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongate.id","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Sep 2025 16:52:54 GMT","end":"Thu, 04 Dec 2025 17:52:51 GMT"},"fingerprint":{"sha1":"F7:60:05:5E:CE:83:24:D5:80:F2:C2:9C:D8:70:B7:E8:A0:0F:BB:43","sha256":"1F:47:1C:36:B0:D8:94:DB:09:96:6B:87:72:37:24:21:A1:F6:1C:68:B3:E1:9A:E3:FC:0B:16:8C:F9:3A:8B:CA"}}},"request":{"raw":"GET /_next/static/media/moongate-logo.c7733ca2.svg HTTP/1.1\r\nHost: app.moongate.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2251\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 360394\r\ncache-control: public, max-age=31536000, immutable\r\ncontent-disposition: inline; filename=\"moongate-logo.c7733ca2.svg\"\r\ncontent-encoding: br\r\ncontent-security-policy: default-src 'self'; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src * data:; font-src 'self' fonts.gstatic.com cdn.moongate.id moongate-static.s3.amazonaws.com data:; connect-src *; frame-src 'self' *.moongate.id *.google.com *.firebaseapp.com *.circle.so *.walletconnect.com *.walletconnect.org *.stay22.com *.particle.network *.solflare.com *.cloudflare.com *.cloudflareinsights.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google.com *.googletagmanager.com *.particle.network *.gstatic.com *.cloudflare.com *.cloudflareinsights.com; worker-src 'self'\r\netag: \"158ca1391485433bda3ba78e68e702fe\"\r\nlast-modified: Fri, 17 Oct 2025 03:40:12 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-download-options: noopen\r\nx-frame-options: sameorigin\r\nx-matched-path: /_next/static/media/moongate-logo.c7733ca2.svg\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::vmpnj-1761032806308-420b6c8f8298\r\nx-xss-protection: 1\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cw4ZRhtnMMl6Z8hIV9adiPDphAXzO50c0P4swP4eCruRA4gRmz%2BumHMx%2BiS%2FzVpjGEyrDYfPPnBqG0qazNUuVKyW2%2B4rwjeY%2BJz32uIS\"}]}\r\ncf-ray: 991f249f2921dfec-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5124,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"158ca1391485433bda3ba78e68e702fe","sha1":"c3b9b911316b33978cd0f20394220ad89239b3f0","sha256":"05e49789b0f5d4eb67d6436d6f56ae469ea1a31b63a44c3fe8e542742924d794","sha512":"2dca0cb366f2a27ba83e3f7e77a39d8502c920be6cdecd32979c4276d4b6e36763b3e2a70e98861924c86bd5783c8b7c12533cba1b94222b053a1d2701d08d5b","ssdeep":"96:Cw5yultdqs6gViqeGf9R0Jk/IXAiDCootWmCiSg:CwbvT9SXBpnmCih","tlshash":"89b1a6d877d893e4b205f3f5d52204a8f65b70f4db9ac664c3942ed8bb4107d4898dc0","first_seen":"2025-10-21T07:47:12.196485Z","last_seen":"2025-10-21T07:47:12.196485Z","times_seen":1,"resource_available":false,"data":null}},"time_used":230,"timings":{"blocked":79,"dns":60,"connect":1,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/script.js","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.197Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /8m8cdspp/script.js HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 751\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\nlast-modified: Fri, 03 Oct 2025 14:00:26 GMT\r\netag: \"a32-6404186101ed0-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=VTA9FsXt8%2Fg%2Bf5iMuv6Tdhirw4uH7ujoEk%2BnuEDwOrWz%2BqkerKF57EBQAf08J0U3dv67uAF%2F2VbyubQotWNsIrWoFHfYKYfT5mJBamQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 991f249e9d1d23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2610,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (605)","md5":"31b52b39809f43e9e0831f632bf08cab","sha1":"338766366953ac10e022252e6af53d8fda3b635e","sha256":"95510b1e52ceed0a6afe6632690d56f7a7c7979d7f1a14f5fb5595e32ed4bd17","sha512":"87732a9077efa03bd17262959fe24d647765bf3ebb058ba71b443ccce7069d311773032324161a40cc712798fb6a1b4c7c799b98a7eb0902f4c7862a65660a91","ssdeep":"","tlshash":"f651b26a009209b8872b572bb5c70387681964879f43781ebe4cc0292fb79234fe16dd","first_seen":"2025-10-21T07:47:12.200914Z","last_seen":"2025-10-21T07:47:12.200914Z","times_seen":1,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: application/javascript\r\nexpires: Tue, 21 Oct 2025 08:34:46 GMT\r\ncache-control: public\r\nvary: accept-encoding\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I7WbmEj26HZreBQYX%2FFmeRWlfvsyvz8izMzNF7ZIaIKFkBvCmeEVAiCDsLITxIy5g%2FcIufYfVwzBLWkxdnsdS0c0BGTvdRb7fezM9So%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 991f249e9d1c23eb-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1239,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (1238)","md5":"9e8f56e8e1806253ba01a95cfc3d392c","sha1":"a8af90d7482e1e99d03de6bf88fed2315c5dd728","sha256":"2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8","sha512":"63f0f6f94fbabadc3f774ccaa6a401696e8a7651a074bc077d214f91da080b36714fd799eb40fed64154972008e34fc733d6ee314ac675727b37b58ffbebebee","ssdeep":"","tlshash":"6021d5743a18107e226a0133e56f66cee1f23715fd17e440408ad89566e4fe5063fed9","first_seen":"2023-03-07T01:02:00Z","last_seen":"2026-04-08T08:36:28.826108Z","times_seen":295628,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/favicon.svg","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:47.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /8m8cdspp/favicon.svg HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:47 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\nlast-modified: Fri, 03 Oct 2025 14:00:26 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sxsoazxx5F%2BI221hJVFqLaBSI7ccqb4PKVKRvJbsVpBh5OpdJLYCd0T0B2My8LbiDQ4RORxPLNLKrzLtjmeX6iq1gFBTAaQoZdxR734%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\netag: W/\"4e8-640418612b6dd\"\r\ncontent-encoding: br\r\ncf-ray: 991f24a7ce6e23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1256,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"dc29c15371cbc6b88a6db8a505f929fc","sha1":"f21565e9694605f50751e3cb4d96d57696755886","sha256":"f06998120197853f7f877eef48bf20d49f56b60e8295c465ea1af1573840eaf9","sha512":"6da81ff0038e792bb1ee52e3a2f0f68a477c4fc28021da6c0efc2970c40c6112ca16f3809c6d5bfda854ddddecae3bda8f196e3aca2b659666615e00d54d022d","ssdeep":"","tlshash":"4b213268678b043bb5134e0542ea568273b0705f53ba8aecc6d3ae7fb2606f0424c8f4","first_seen":"2025-10-21T07:47:12.208868Z","last_seen":"2025-10-21T07:47:12.208868Z","times_seen":1,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":134,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/ticket.html","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-21T07:46:45.768Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /8m8cdspp/ticket.html HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:45 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\nlast-modified: Fri, 03 Oct 2025 14:00:26 GMT\r\ncf-cache-status: DYNAMIC\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5nj8iChvm6E9Q2%2FMwRoy532kgXY6q3Mq7v9%2FKcQjNL62AblZ6dk%2FFFLumNZRZUSUXdAU1wS1xZCrKBaKZqVr8zl3YFQC0li9lJtP\"}]}\r\ncontent-encoding: br\r\ncf-ray: 991f249c5d7f56b9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":81033,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (2844)","md5":"c13607351229b30ecc01988b42b5aae5","sha1":"76a9fa29bc7c2b9d1f5a2bb212e42037fb217486","sha256":"f95371b1dbc315b8eb35c934bf1224eb7324613c181cef2e9525f99f4944e934","sha512":"5149233a7a97fc7b8a87c2d13b2d4e99bb494fdfb305a075aaf8a35bc77e4ae8f563f76b8b474cc1abbe3077f3a63dfd1560911d5ae50e7bbf29af4c18584eba","ssdeep":"768:47ZdHHBfcHL4zVJqurwhaGzNF8wFAFYFVFy3FvtDr/C24+ANls4SJ4ASsALJyiQS:4ZZyHL4qur+N7yS7d4bYgbTcstWnL","tlshash":"b983a4549953e2ee2c63866e33f5de3721208403ee46eb1f77ee41a48f4b4a558dce81","first_seen":"2025-10-21T07:47:12.213867Z","last_seen":"2025-10-21T07:47:12.213867Z","times_seen":1,"resource_available":false,"data":null}},"time_used":183,"timings":{"blocked":49,"dns":27,"connect":1,"send":0,"wait":83,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/_next/static/css/a5d502190c05769c.css","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.184Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /_next/static/css/a5d502190c05769c.css HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wQLiLnT1Dsp9TDaWM7uVtKRTlRIB%2BqqS0pJQwhWqVkjpXhRX8hbKqSRT%2FpJUfVIgxdU4PKCU0d55NAr4kRmhjcRNyIbW8GmlV%2FHOlow%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 991f249e9cf823eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":275,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"5371a2bbed47d114493c2658650bbb06","sha1":"375972b4e188f307106da9cf18023f599c5dd0e9","sha256":"c33fd9a63d0bb86516261579d82ed961079c3a1d5a32fb23f3d0b6d68747d756","sha512":"337ee188fe7dab580f1b7544e8d655fa8b3e29595970e132087e793b9cdc8bf6d57207db2af9b9718376d454aa3ffb1b65dc9a08c40d00c8692b6579139493ba","ssdeep":"","tlshash":"19d02b9e504372874812146039c225c2264c12f6a43a85e82d86e487529893ecddbadc","first_seen":"2025-10-21T07:47:12.220382Z","last_seen":"2025-10-21T07:47:12.220382Z","times_seen":1,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":80,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Ftg-bot.16762692.webp\u0026w=1080\u0026q=75","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.191Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /_next/image?url=%2F_next%2Fstatic%2Fmedia%2Ftg-bot.16762692.webp\u0026w=1080\u0026q=75 HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jAt7udkVmqUEidUu7na2MlveFG1pIW87PZGkd%2BtmmIBok1VNC84sZBldTnJ4i3NBylj5bND6yK13qzX%2B6fVL6Y5jyXXAknaMKcR5cEg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 991f249e9d0c23eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":275,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"5371a2bbed47d114493c2658650bbb06","sha1":"375972b4e188f307106da9cf18023f599c5dd0e9","sha256":"c33fd9a63d0bb86516261579d82ed961079c3a1d5a32fb23f3d0b6d68747d756","sha512":"337ee188fe7dab580f1b7544e8d655fa8b3e29595970e132087e793b9cdc8bf6d57207db2af9b9718376d454aa3ffb1b65dc9a08c40d00c8692b6579139493ba","ssdeep":"","tlshash":"19d02b9e504372874812146039c225c2264c12f6a43a85e82d86e487529893ecddbadc","first_seen":"2025-10-21T07:47:12.220382Z","last_seen":"2025-10-21T07:47:12.220382Z","times_seen":1,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":158,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.moongate.id/events/2d4d9cc9-dc9d-4dfc-bae1-ecb1ac7e1fe1/a216db39-bed6-43a4-8e2b-0075976deed7/tier-image-1726823609704.png","fqdn":"cdn.moongate.id","domain":"moongate.id","tld":"id"},"ip":{"addr":"172.67.72.97","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.193Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongate.id","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 05 Sep 2025 16:52:54 GMT","end":"Thu, 04 Dec 2025 17:52:51 GMT"},"fingerprint":{"sha1":"F7:60:05:5E:CE:83:24:D5:80:F2:C2:9C:D8:70:B7:E8:A0:0F:BB:43","sha256":"1F:47:1C:36:B0:D8:94:DB:09:96:6B:87:72:37:24:21:A1:F6:1C:68:B3:E1:9A:E3:FC:0B:16:8C:F9:3A:8B:CA"}}},"request":{"raw":"GET /events/2d4d9cc9-dc9d-4dfc-bae1-ecb1ac7e1fe1/a216db39-bed6-43a4-8e2b-0075976deed7/tier-image-1726823609704.png HTTP/1.1\r\nHost: cdn.moongate.id\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: image/png\r\ncontent-length: 102922\r\nlast-modified: Fri, 20 Sep 2024 09:13:36 GMT\r\netag: \"173268b1f97b335bb2d923b1c15d8856\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: cloudflare\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: JHIqLs_0u_dazfOlxjSHULzdqhXyzpXje5atj58TzEv4Qw7OV_jBWg==\r\nage: 258\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LiKwjr55iFQbI7TKW8vrYa4qYIlEwBGsdDvJYCEQTPu0pQBUtQ6WS1AkovPQejw7pr63iD0H343TPR6mzi3JIHqlrzb7uGVPIvbM21Ny\"}]}\r\ncf-ray: 991f249f3956dfec-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":102922,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 350 x 350, 8-bit/color RGBA, non-interlaced","md5":"173268b1f97b335bb2d923b1c15d8856","sha1":"c48e0ceeb68a79333746ffe9e3491f20a9b3cf8a","sha256":"682bccbdf106c8be9ca36f79245afacec8d9c09b59d5de9f242325feedfe76cf","sha512":"b5b4306647fe3adebcfc622dfd480b9e345b30770422a85c778b834ef3d2f3ee906739be6dabddeca650bcc148563fdacc12fad22f8b6c425adc8887f0c354ba","ssdeep":"3072:Cl4qAHX/OoRpXcS8jlFhGo7Gr/aXmoKrjSMROsud:G4qmX/bOjlFht7GeXozYN","tlshash":"37a3128853f389df4626c89699f5f05320128b001e84db90fd61e22dedb3f6d7da5c9a","first_seen":"2025-10-21T07:47:12.226189Z","last_seen":"2025-10-21T07:47:12.226189Z","times_seen":1,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":83,"dns":0,"connect":0,"send":0,"wait":97,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moongates.net/8m8cdspp/1.jpg","fqdn":"moongates.net","domain":"moongates.net","tld":"net"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moongates.net/8m8cdspp/ticket.html","date":"2025-10-21T07:46:46.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moongates.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 21:29:31 GMT","end":"Tue, 30 Dec 2025 22:26:55 GMT"},"fingerprint":{"sha1":"DC:95:82:39:4A:F5:1B:BE:3E:3B:1D:3E:23:6A:31:17:A1:38:4D:48","sha256":"B8:D6:8A:4D:74:92:A3:0A:1D:44:C9:AF:CD:40:D6:64:6D:1F:D2:AA:4A:5E:EF:02:38:13:CE:55:E7:5E:85:92"}}},"request":{"raw":"GET /8m8cdspp/1.jpg HTTP/1.1\r\nHost: moongates.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moongates.net/8m8cdspp/ticket.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 21 Oct 2025 07:46:46 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 64248\r\nserver: cloudflare\r\ncross-origin-resource-policy: cross-origin\r\nlast-modified: Fri, 03 Oct 2025 14:00:26 GMT\r\netag: \"faf8-640418612af0d\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=4,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ErYQa8KGfAeDbHvalu0DSzwJLTuzxnqsIyLsU4nMe4T04RXKZhZJAQ%2B8oarFa7fRyIQA4S9PdRHQG%2FJ15q1ZCjYVYGSYOQ%2BK0dSlKP4%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 991f249e9d1923eb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64248,"size_decoded":0,"mime_type":"image/jpeg","magic":"ISO Media, AVIF Image","md5":"9b322d226e9c7fca1b188c9f0b26c11d","sha1":"1e6f3be7e3453c5b4ec53070a74cc0169f3e2395","sha256":"f635d6b7ad29b4a44a110fce8671143ec99103fe283e539fc0d218ff497cb51c","sha512":"7dd1198d1eeca8be9dbaa7eb8adc88dd098ae5135ad9406d3d73e0acb042401f6e30d85599bad4752c3e5cf02fed6f9aeaf946208f0128b9e62d2e10800e21f5","ssdeep":"1536:bUPAuE1DH4tjq+C1iF/8eDHth2iUpW10gfD6hq/Rehe:bbH4tW+3UeDHLuA0gfeo/Rz","tlshash":"ba530210c0fa340ace1a7c34861fc664daabd6537c97fba4cdf666494a16fdd0d086b1","first_seen":"2025-10-21T07:47:12.230903Z","last_seen":"2025-10-21T07:47:12.230903Z","times_seen":1,"resource_available":false,"data":null}},"time_used":134,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":66,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-21","alert":"Sinkholed","trigger":"moongates.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}