{"report_id":"9a974e53-2987-4d3d-a0fa-c9913450d0af","version":6,"status":"done","tags":[],"date":"2026-04-20T10:43:09Z","url":{"schema":"http","addr":"moonshot-poll.lol","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"title":"Vote to List — Powered by Moonshot","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"moonshot-poll.lol","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-25T10:43:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"moonshot-poll.lol","ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-04-14","domain_rank":0,"first_seen":"2026-04-20T10:43:11.694593Z","last_seen":"2026-04-20T10:43:11.694593Z","alert_count":12,"request_count":6,"received_data":5140624,"sent_data":2847,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"943957e65fd20166650c6a13c0eecdd1","sha1":"c2c349601bcd2d0c0175667a9645166150d9db8e","sha256":"7bcc4837258d3a93eb70781abed9becc3a5db8cebe386c703dec2c04e3d712dc","sha512":"bed275232775c434dcc8c24021c9c787f1fdc1b65d8ebdb43e0738413bc8e78096941beab84cf73f0c39d56a97d8d989b44232a2bc94744e6bf3855ffa95d8e8","ssdeep":"","tlshash":"12115927222233707ce9d5dca9b6d98e39bb501be40a0090b09f944d2e34bc944f7bec","size":875,"data":"","first_seen":"2023-03-07T12:01:37Z","last_seen":"2026-06-06T12:07:38.758532Z","times_seen":307,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"893fc64b7e1379e29e4b82d0105432c1","sha1":"9960d3439508b1d000f8a0613b3fba3913a44c68","sha256":"6a65d1b063a3fe42946be2bb4aa942e20568ffcacefcb2f64e494167633b038e","sha512":"99e433221635967121d101241c3b9394d615bc0d182504c66ad1f2c0917cc2d5eee2159f1e7546ba178eed6ea7d189dac9ad4340f59007d7325dd93b87ec07a1","ssdeep":"3072:RV8Y/Ytx9NgolPWx7uMC8rNtDwmyQKq+kCJJD3YOTikkQYvVsgyP:RViS6TotDwnQKR3YOTikKvVsp","tlshash":"52742d64149efaf78b915f98a62582c7d4482f380e013b2762f7ff92a1e574df0e6091","size":356837,"data":"","first_seen":"2026-02-06T22:38:09.255187Z","last_seen":"2026-06-26T13:22:33.72245Z","times_seen":111,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/p2.slim.umd.js","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"14705dd0279252d3457cf87f7b5252dd","sha1":"fd8b4043e6b08c2d2c37a4fb080368ca03a486b3","sha256":"23ce240cb55db91646ac4c5f8b4591a5c72756511b64fe426397e74dc65f5775","sha512":"22cb9dac15e7c9f601923ed8ef112ec70be234fc2cd8a1d8b62a0fe9a84df72bb1adc0f0cae6068c3e3c14e3609b38fe5f3679c53718c9d6c064793cc128fe9e","ssdeep":"6144:r/2hrEJqaZGVgQkZ2diu7NSOTiKiBf6Np:r2hYgaZGjkZ2diu7NmoD","tlshash":"82744e65109dfaf78b904f94a62541cbe4482b380e413b27a3f7ff96a1e5b4df0e6091","size":364080,"data":"","first_seen":"2026-02-06T22:38:09.234577Z","last_seen":"2026-06-26T13:22:33.708936Z","times_seen":111,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"57394869d1114f13aace57cfc7698aa7","sha1":"478e935b6f347837249ef14e8b67071ba26e4911","sha256":"1842567989437111d47cf0b0cf0d7ea4e6d09a5c7ef6b3e0b052822bc5a088ee","sha512":"24b6f92c03aec7455dc4e3dede94445ed1f571be4fb70445a81617c0f24829d9baaf41c297d565782d47430fe0fa369bb7f938cf4e1fda989b9017db248091db","ssdeep":"96:xVUdu944SLruJRlWwLwr8nx/XL6CqO60EitvbZ3Rr9S:xaY44SLLwLwr8nx/XL6CqO60nVS","tlshash":"2f81796ffbbb0534daab753a5befa384777180072409e1013e6c45526fe6f9014abac1","size":4115,"data":"","first_seen":"2026-02-25T19:52:22.460294Z","last_seen":"2026-05-12T11:19:34.645664Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fshaka-player.compat.cjs.js%3Ft%3D29611362%26u%3DV_PQrC8LSUiLD1NqGDY5MjU2NDRhMjhjZmYzYzM0MDI3Y2YxMQCVp-IuxI3vffotmQ","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"96c2ff1601099c21c598c24e6f43c7c4","sha1":"d78fa2e81b7b5ccf287c793c5a9985caaa0f6162","sha256":"7fd19c564761e2c8c9b583cf30db810e313417c7d3572f637f8cedf4d2cc1e91","sha512":"d7df68372670f0173ac5dc3c54ee38f13b29703dde9f71ec74827b535735e99b2b253e07960d66d8c3230f13cf29f20aa0f083db014cee0710379ffab68932be","ssdeep":"6144:0ujB8gltIeTM5/S8g6zRh5gDVLU2GIt/KJAsJRrydM147u/lhDlEqH96lm:vhltVM/g61sNUWsSdG7R","tlshash":"1ed438c2821814f684eb0ab6d133a21fdb4cce9dc69f2d20bfe55c9553c87a292f655c","size":656642,"data":"","first_seen":"2026-01-02T13:08:19.247086Z","last_seen":"2026-06-26T13:22:33.716749Z","times_seen":2623,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"bd6b36877ba0218ce7eae04fb0f22100","sha1":"af2f4e505db775e5283eb863f58770e68e44c4bb","sha256":"3d87666f7ab52d8d5c203b6bdd043690dd8dbff8454294a396222236bd6274a0","sha512":"52a670605455350a242a1c716fd85cc5310e2c0291071f1b5f1c14f6a470a1dd7ef121c132263fe3cd969dadc0fa257720efa8705f0c55cf71e96f5445029b1b","ssdeep":"192:xH45oLP/OQNjTTns5vm5JW249rXpyPf1pfurMrEWvhBA2g25XTigHC:xLZVjW9OpfXR5uWC","tlshash":"b302711a7ae30835ace7213babefa29879b484434849d4103d4cd5154fe0f616abfbe4","size":8329,"data":"","first_seen":"2026-02-25T19:52:22.468486Z","last_seen":"2026-05-12T11:19:34.646661Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"moonshot-poll.lol/secureproxy?e=ping_proxy","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://moonshot-poll.lol/","date":"2026-04-20T10:42:47.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"GET /secureproxy?e=ping_proxy HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://moonshot-poll.lol/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 20 Apr 2026 10:42:47 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 4\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nlast-modified: Mon, 20 Apr 2026 10:42:47 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mAbR%2BzsT5JKvbDPAzFHdcXZXKlRjKBvPnaTW9ZQg5oWuco9nxKpp2gUL%2FTBVBYS7dEtqV8Iip8XK1bcWLiVaYzTw1Y5mi%2FRNslQ%2Fe7ZOfdCBivBqpFr9BR9E59FwuakWKhYUyw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9ef38b574fda5a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"6fdb087aa3fbfbcb8287a593a0919e61","sha1":"0e514a0662bcb69dc863953d1ce26e3d40e81a87","sha256":"9795c5ff8937f23526ccb207a5684c1fc94a7854e19c021b39d944e51f5baef2","sha512":"be5457d14c930b51b47ab152850c1ceaafe6ef88c8671b48164abbc83410b0c07a1e178540f6cdeac5f2672cadb1d1cbbb3434b3e39bc2c50c4646a2bae57437","ssdeep":"","tlshash":"fe300000300000000000000c0000000000000000000000000000000000300000000000","first_seen":"2023-04-12T09:14:15Z","last_seen":"2026-06-27T16:08:46.892708Z","times_seen":8876,"resource_available":true,"data":null}},"time_used":246,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":245,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fshaka-player.compat.cjs.js%3Ft%3D29611362%26u%3DV_PQrC8LSUiLD1NqGDY5MjU2NDRhMjhjZmYzYzM0MDI3Y2YxMQCVp-IuxI3vffotmQ","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshot-poll.lol/","date":"2026-04-20T10:42:47.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"GET /secureproxy?s=%2F%40v1%2Fcdn%2Fjs%2Fshaka-player.compat.cjs.js%3Ft%3D29611362%26u%3DV_PQrC8LSUiLD1NqGDY5MjU2NDRhMjhjZmYzYzM0MDI3Y2YxMQCVp-IuxI3vffotmQ HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot-poll.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 20 Apr 2026 10:42:48 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\nvary: Accept-Encoding\r\ncache-control: max-age=2592000, must-revalidate\r\netag: W/\"a0502-14+i6Bt7XM8ofHk8WpmFyqoPYWI\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=shaka-player.compat.cjs.js\r\ncdn-proxyver: 1.50\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 04/20/2026 10:42:48\r\ncdn-edgestorageid: 1056\r\ncdn-requestid: 2534302f8bb77febc7c295d4b77b5596\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XnkD0oITp6HYwThQlzZ7DKohCPAqoqoaSFvI7uhgqonZp4FpdgF2V%2BUIC9nNDRw9dtcqBbM%2BcvkgJtLea%2FWBM5Rie3tIJFNKnzIETNBVio24Qj4cySBtIEuRQFb%2F7g48XJ%2BwHQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9ef38b58e8125a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":656642,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"96c2ff1601099c21c598c24e6f43c7c4","sha1":"d78fa2e81b7b5ccf287c793c5a9985caaa0f6162","sha256":"7fd19c564761e2c8c9b583cf30db810e313417c7d3572f637f8cedf4d2cc1e91","sha512":"d7df68372670f0173ac5dc3c54ee38f13b29703dde9f71ec74827b535735e99b2b253e07960d66d8c3230f13cf29f20aa0f083db014cee0710379ffab68932be","ssdeep":"6144:0ujB8gltIeTM5/S8g6zRh5gDVLU2GIt/KJAsJRrydM147u/lhDlEqH96lm:vhltVM/g61sNUWsSdG7R","tlshash":"1ed438c2821814f684eb0ab6d133a21fdb4cce9dc69f2d20bfe55c9553c87a292f655c","first_seen":"2026-01-02T13:08:19.247086Z","last_seen":"2026-06-26T13:22:33.716749Z","times_seen":2623,"resource_available":true,"data":null}},"time_used":1153,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1014,"receive":139,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol//secureproxy?s=%2Fjmpd%2F","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://moonshot-poll.lol/","date":"2026-04-20T10:42:49.372Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"POST //secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://moonshot-poll.lol/\r\ncontent-type: application/json\r\nContent-Length: 2202\r\nOrigin: https://moonshot-poll.lol\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2202,"data":"{\"route\":\"8XUwkBv9vhPYfVpD1fxb7EC65sUXJdqr\",\"payload\":\"29TfggTGJjXWTp1hBgb9QiUVWifXxEpSHFcYRh8eVjmdfmbzaasTX79RdDU26dR731V7SD3mTVq99vnAkcPWXM1reSotqtdY6TRxrhm5Xm5aox47LTqutERULCMDCg4H85JRj7UbqZxoo3C4HaxetEUhoXxnauYKNTruDPzDkkNBDXaA29gQRYdpmjKxgRmc5w3DM7TizpLuus1KCFCbb7FdNnKusNjX9pYiS1R3nZi8W5DLNntJZyBTfo3fKV5gt7s35ZzUtWFqUPz2QydDTQoJazFc6vMM4f4MZRD8DQwfiyDNZjN126jg5QRRZ6sefsr7NVr3BHorSjzmE8NiViSkmM7BURcPfESUxwKPEM9BVsnoxFumYzxVsnGcpuY2nfYu1kyuvGvr55njQ4eseSi6wmU94WqkwKx13BvKXQgDAHYoJAVGiJnKBERU5VFcjQsevVXE9Feo5hCvGJ6VkpeMc647mrNVjsQmzXWnLSRqqKzLSkQmPJXkm1wqqUEYkeQsq9Ch59SjRnZKj5x6TvMwuuKJ4qDEFaNp1NuciSq3Tv756JPwsvEY4sW3v2YsK4eG1bDeE8nLQ7Tw9cmXDUtsk31Hey5jH7KAmPup9XywFUyBgar3nS72vztRcdUiijczrttMMRWPMfEX6mJRE9a5CKSwtFyZNaDNA3BZgFP9L5SsKNPAHeJXY5gY6nGFrmntaDGbcuSrZNE4jHHdGPTRr1SGY5f8b37tC5PcAUv4SCzDTVV2vzAefjkLoGLjs4c1MWd2iCxySyjVmcAZT6PBnhJ28F8Tag2SNUqNaT4VXRrGj6hB8utvn8VvWsb1HcATabFCfuajAMqe1jiYmZX6o41x7rjo1QmY3Vm4DrEsgbVxbn3RPKaSdu6qELfGJk4diDaZCq4tqRPWBPH2tMkrq9p27jiog9gqo3oKpSGDr1Lb8Wgn1TgrS8oP1Bf4Mhcef2kVWVwbKfaZ3NE2FTpofzQT2dkJNTgGwuFugWN4dCczkYtFtEwnAWxGGKrsxyGD5nZ1xhvMvgcbo3RLwTTP6M6rrJNfaYxbrEiZjeFgj6uDaCEbYXx1x1QQowZ5XqWr4KCJuXVEZr5oonx7qaoTvoD1QsosSpkgVd6TiCkyX3gBQEKUJEVj6rdoBysZ2nkgS2PD9eFuiPoU61biuZ1NmktiL8YQ17oWzvYA5KN2EZaFYq3FYPsv7MGf11jarTWm4UECYVKCKti8pa1rzYKFERw3HUY4NcCHqaoqsagpyTB9RcWi3nsAYCwGtVfweWdG9CiNBQyRXkgTD8Yp5hmGgVY1pfH31hugWrHmjEAmZsicRvBGKNNKp2byqGWFZX9BE5q5HUUpw4MsCmPiCSYEVcVjAgUKW5dABuC4GnzFWZfGTt5E6MqKRTTT8bRiMe6362NXf8D4CXpqUthD9NTtwpLc3GiAh8weFRACcXXgDYaAEqv58bHWuxWWMDisf63kbeEESG97RMdWuGmAEVYhXCZbsgdeHSHr5YBJ4ARtYFBF89h4M8hv3qpFyHCTCvNKshsXwm4uGBe3L7aN5XwjGFrtxUsEB6bwg9D3gPwd82mZfnbiH9Y2bTfXu7oXaSTYySMVzbfu1AAvkn4TodvC9Ke3WLQWAT8Ae8DucPGvqacqJL7AxGgQ67SCvjfSvkUAh3KQqfiZFmQQDge2ZKGWaTiAvyS51JbTwnbrabnxkzA3DzWtQyJ4Pcw2gSZYsB95B8TXGvVFxxm2LAMQM6mGwFJ32N7qruCa5Cu1t5msFA2AtQDQYb1xysx5rQQyoXNJx6ooSQVwfT9RNcfMC2nzYtDmurt2eSwioPPsuHuActMHmfWHGDZe4RkMmxF3qRmYWCzbDy56r9PdqJEaopA7pXzkwP594Uvjpk4Eg1mKdfHskDc5CuqeStqw216SmVpCZnopGbskpw74TFuyAi5WaagvWH4sb2vTN9qB6aRqYrPbeX8HUJQGngp3TGHeKCMYkyFcnWTmWckF48YKuPJPzbZ7iwrThtq4feKdTewG95osa6YnQi7mgHkvzFrfRC7UFaJdWATUKu7iCPht1GmMhbBE5cVhVL8pjL88qEicsFeJ19uPaV3t8C8pQZsosvgjzB7fw3RppRAdgppzb8LW3HHzTU9Xy\"}"}},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 20 Apr 2026 10:42:54 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"d0-3eonxucqtv4W2Zw3JA4J6GoH/aI\"\r\nx-ratelimit-limit: 20\r\nx-ratelimit-remaining: 19\r\nx-ratelimit-reset: 1776681830610\r\ncdn-proxyver: 1.50\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 04/20/2026 10:42:54\r\ncdn-edgestorageid: 879\r\ncdn-requestid: cb31bdb403ac6348a9c5251f0a009f7a\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=S%2BzyT66GybtqfvLwva4DHk0974KxM%2Flj%2ByS7cmxTZNFsvSBjirQSVDsV8xT78l7nVelN3S8zxaLMOdZC1KZfs%2BhHtejNrzybX1BU4FwrV0pahTuAt%2FfQoxHz%2FasCLdDG888B6A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ef38b62997e5a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":208,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e35ae8379d59bb10111f0a6ee481a0d2","sha1":"ddea27c6e72ab6fe16d99c37240e09e86a07fda2","sha256":"22065ee55adc422ffd641acfea1701e77d7c8cd128d7d2c55c7c43b501235046","sha512":"72b9a44cc68d44dd1de7ef670274f2a13aada81422af11b09317f3c007c1299c8b2dbeb763a96f20b0b375e577b8535e2d700937fc6027cd33047a05b8c58897","ssdeep":"","tlshash":"c8d023cced451d881d1c57d11015ffdbe01ea8a5ff5e4e204a6929545201dd2da51532","first_seen":"2026-04-20T10:43:15.005511Z","last_seen":"2026-04-20T10:43:15.005511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":4869,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4868,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-20T10:42:45.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 20 Apr 2026 10:42:46 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Tue, 14 Apr 2026 23:28:16 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5PaoQx8hQh3jtfWP3KSpklEmNUBIUlmAH%2BMBDY787DiNvysqSXEJjpTuJirVtjWGSssruvXSmp3O301AIbINabXuSnwkj6POaLKoK3jQcir4lrsIzyI3WTUGXYXnVezo508c2g%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9ef38b495f870b41-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2056326,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (59369)","md5":"e820ed50d5d62ced30df7ef9d065b090","sha1":"be4ab3b3687458993974929b237019d39c709f49","sha256":"f68194239c9b8b3d0d9f604b6ab3e11f0825556bd9ecc04ccc1164d365ad6455","sha512":"615ab7e497ac34a6204e9dabc2e2f21604bc57a8e72d1ff989b45d8d21292122e08049d3b020f779c035d775953c103e1131b2aaf319c5f329aceaacfc4ca94a","ssdeep":"12288:zME+RW+hBtX2MVVSfIcWL0bBGhEP8R6GWPDsdYENYuNlbUfxr8Z2TI:KR2CVdUCEdGms7GxQZ28","tlshash":"812501717029e83f7e37e8b962acb45c5c05b083de1853d8fa0962259bc7bf15ab7508","first_seen":"2026-02-25T19:52:22.45233Z","last_seen":"2026-06-22T11:22:44.405649Z","times_seen":56,"resource_available":true,"data":null}},"time_used":1441,"timings":{"blocked":100,"dns":84,"connect":1,"send":0,"wait":1240,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://moonshot-poll.lol/","date":"2026-04-20T10:42:46.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot-poll.lol/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 20 Apr 2026 10:42:46 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 14 Apr 2026 23:28:16 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\nage: 0\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uJSshxgXCkJMvKSnjYVaTHnGWawpfhyhV%2B6rJorPbaVf8imCFo8c5TGHeX3nUL9TmJbiWwUBVki4kbsP0DqbQSdsmqCncbgGN9BlLg6%2BUwkj1NRvUmxwdWPhvu9Bfl62J8g81w%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9ef38b528f3a5a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2056326,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (59369)","md5":"e820ed50d5d62ced30df7ef9d065b090","sha1":"be4ab3b3687458993974929b237019d39c709f49","sha256":"f68194239c9b8b3d0d9f604b6ab3e11f0825556bd9ecc04ccc1164d365ad6455","sha512":"615ab7e497ac34a6204e9dabc2e2f21604bc57a8e72d1ff989b45d8d21292122e08049d3b020f779c035d775953c103e1131b2aaf319c5f329aceaacfc4ca94a","ssdeep":"12288:zME+RW+hBtX2MVVSfIcWL0bBGhEP8R6GWPDsdYENYuNlbUfxr8Z2TI:KR2CVdUCEdGms7GxQZ28","tlshash":"812501717029e83f7e37e8b962acb45c5c05b083de1853d8fa0962259bc7bf15ab7508","first_seen":"2026-02-25T19:52:22.45233Z","last_seen":"2026-06-22T11:22:44.405649Z","times_seen":56,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":63,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"moonshot-poll.lol/p2.slim.umd.js","fqdn":"moonshot-poll.lol","domain":"moonshot-poll.lol","tld":"lol"},"ip":{"addr":"104.21.61.208","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://moonshot-poll.lol/","date":"2026-04-20T10:42:46.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"moonshot-poll.lol","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Apr 2026 22:34:12 GMT","end":"Mon, 13 Jul 2026 22:34:11 GMT"},"fingerprint":{"sha1":"2A:8C:79:BE:98:01:B5:F7:64:3C:A0:09:DB:5F:A6:19:29:FE:34:8A","sha256":"17:3E:2C:A6:3B:3B:AF:E5:4C:CD:86:60:11:9D:A1:6E:76:3E:EC:5C:DE:AB:D4:15:B6:19:B3:A4:FF:16:78:06"}}},"request":{"raw":"GET /p2.slim.umd.js HTTP/1.1\r\nHost: moonshot-poll.lol\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://moonshot-poll.lol/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 20 Apr 2026 10:42:47 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 14 Apr 2026 23:28:16 GMT\r\netag: W/\"69decd90-58e30\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6Y7%2BriW38%2BxZwVWcZ3Mp6dpyR%2FFqayKFKb8WuwElZXbSodIYkNIvbZ%2Bgk7Ah36ZgtVcA0NaBVYPbQ%2BEBFFFF1raFYmi8U9%2BqIImIRzjc1On2ZtYhHVRwGi2wyXBIi56C%2FJ8oEQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9ef38b535f4d5a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":364080,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65159)","md5":"14705dd0279252d3457cf87f7b5252dd","sha1":"fd8b4043e6b08c2d2c37a4fb080368ca03a486b3","sha256":"23ce240cb55db91646ac4c5f8b4591a5c72756511b64fe426397e74dc65f5775","sha512":"22cb9dac15e7c9f601923ed8ef112ec70be234fc2cd8a1d8b62a0fe9a84df72bb1adc0f0cae6068c3e3c14e3609b38fe5f3679c53718c9d6c064793cc128fe9e","ssdeep":"6144:r/2hrEJqaZGVgQkZ2diu7NSOTiKiBf6Np:r2hYgaZGjkZ2diu7NmoD","tlshash":"82744e65109dfaf78b904f94a62541cbe4482b380e413b27a3f7ff96a1e5b4df0e6091","first_seen":"2026-02-06T22:38:09.234577Z","last_seen":"2026-06-26T13:22:33.708936Z","times_seen":111,"resource_available":true,"data":null}},"time_used":405,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":154,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-20","alert":"Sinkholed","trigger":"moonshot-poll.lol","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}