{"report_id":"1faae431-4c8f-4960-b7e4-ba977e934991","version":6,"status":"done","tags":[],"date":"2025-08-10T23:02:08Z","url":{"schema":"http","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"172.67.197.173","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"title":"dvd_mp2_koharu02 - Lulustream.wmv - LuluStream"},"submit":{"url":{"schema":"http","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"172.67.197.173","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-14T23:02:08Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":21,"urlquery":0,"analyzer":6}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.288353+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.308400+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.328393+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.388574+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.408623+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.428625+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.588809+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.608835+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.628854+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.989025+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.009555+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.029058+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.789266+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.809743+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.829258+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.389488+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.409930+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.429467+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.589694+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.610142+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.629668+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"naupsakiwhy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"zoojoujoaseeh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"lwvlcrbywhsruwa.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"theetheks.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"img.lulucdn.com","ip":{"addr":"104.21.31.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-12-19","domain_rank":356993,"first_seen":"2024-07-31T09:55:51Z","last_seen":"2025-08-07T23:14:52.438759Z","alert_count":0,"request_count":1,"received_data":149683,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"c.adsco.re","ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":100769,"first_seen":"2017-11-29T18:42:15Z","last_seen":"2025-08-08T07:34:27.696345Z","alert_count":0,"request_count":1,"received_data":79660,"sent_data":508,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tzegilo.com","ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-01-14","domain_rank":18163,"first_seen":"2022-01-14T15:27:15Z","last_seen":"2025-08-06T06:01:44.020725Z","alert_count":0,"request_count":1,"received_data":18655,"sent_data":406,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"8nhvweaoetmq.n4.adsco.re","ip":{"addr":"38.132.109.126","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-10T23:02:10.051408Z","last_seen":"2025-08-10T23:02:10.051408Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"storage.lulu-row1.com","ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"domain_registered":"2025-04-01","domain_rank":399861,"first_seen":"2025-04-26T00:38:23.54678Z","last_seen":"2025-08-09T16:04:45.665236Z","alert_count":3,"request_count":3,"received_data":246792,"sent_data":1509,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"zoojoujoaseeh.com","ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-02-10","domain_rank":382672,"first_seen":"2025-03-21T06:40:37.606647Z","last_seen":"2025-08-05T23:20:00.475789Z","alert_count":4,"request_count":4,"received_data":7299,"sent_data":3887,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"xadsmart.com","ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2020-04-18","domain_rank":39181,"first_seen":"2020-04-19T20:24:06Z","last_seen":"2025-08-06T07:16:41.978097Z","alert_count":0,"request_count":1,"received_data":257,"sent_data":1735,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-08-06T15:12:45.48732Z","alert_count":0,"request_count":1,"received_data":408427,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"appointeeivyspongy.com","ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2024-05-21","domain_rank":42895,"first_seen":"2024-08-05T07:21:16Z","last_seen":"2025-08-09T16:04:46.362497Z","alert_count":0,"request_count":4,"received_data":154145,"sent_data":2840,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"bobapsoabauns.com","ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-23","domain_rank":16239,"first_seen":"2025-03-26T18:52:40.148632Z","last_seen":"2025-08-06T06:01:44.136808Z","alert_count":5,"request_count":5,"received_data":1050905,"sent_data":2257,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"adsco.re","ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":3069,"first_seen":"2017-04-03T03:11:30Z","last_seen":"2025-08-08T07:34:27.218554Z","alert_count":0,"request_count":1,"received_data":1787,"sent_data":442,"comment":"","tags":null,"fingerprints":null},{"fqdn":"6.adsco.re","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":91627,"first_seen":"2018-01-15T04:15:29Z","last_seen":"2025-08-08T07:34:27.280765Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":845,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-08-06T15:10:32.619142Z","alert_count":0,"request_count":4,"received_data":111887,"sent_data":2171,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ak.beltsflusker.com","ip":{"addr":"23.109.170.255","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-25","domain_rank":1645746,"first_seen":"2025-07-31T19:10:18.304736Z","last_seen":"2025-08-07T23:14:53.095882Z","alert_count":0,"request_count":1,"received_data":1446,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":43911,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-08-07T17:48:53.839585Z","alert_count":0,"request_count":3,"received_data":2552,"sent_data":1457,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"4.adsco.re","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":95532,"first_seen":"2021-01-04T16:47:52Z","last_seen":"2025-08-08T16:22:36.451304Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":845,"comment":"","tags":null,"fingerprints":null},{"fqdn":"8nhvweaoetmq.l4.adsco.re","ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-10T23:02:10.020279Z","last_seen":"2025-08-10T23:02:10.020279Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.tapioni.com","ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-05-27","domain_rank":177570,"first_seen":"2021-07-01T10:46:55Z","last_seen":"2025-08-08T20:27:46.132114Z","alert_count":0,"request_count":1,"received_data":2228,"sent_data":408,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"naupsakiwhy.com","ip":{"addr":"139.45.197.107","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-10-29","domain_rank":116027,"first_seen":"2024-11-06T19:59:51Z","last_seen":"2025-08-07T23:14:52.52803Z","alert_count":1,"request_count":1,"received_data":169285,"sent_data":411,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"luluvid.com","ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-29","domain_rank":598770,"first_seen":"2025-07-30T07:44:29.756526Z","last_seen":"2025-08-06T10:44:00.167577Z","alert_count":0,"request_count":17,"received_data":1093978,"sent_data":7880,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"phoangaisool.com","ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-02-10","domain_rank":355906,"first_seen":"2025-06-14T15:03:57.685669Z","last_seen":"2025-08-09T16:04:45.800083Z","alert_count":0,"request_count":7,"received_data":11491,"sent_data":7203,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"www.xadsmart.com","ip":{"addr":"95.173.205.14","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"domain_registered":"2020-04-18","domain_rank":409261,"first_seen":"2020-04-18T18:24:57Z","last_seen":"2025-08-06T07:16:41.891436Z","alert_count":0,"request_count":1,"received_data":42471,"sent_data":451,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"8nhvweaoetmq.s4.adsco.re","ip":{"addr":"185.200.116.60","port":443,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-10T23:02:10.0379Z","last_seen":"2025-08-10T23:02:10.0379Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lwvlcrbywhsruwa.com","ip":{"addr":"139.45.197.101","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-08-09","domain_rank":0,"first_seen":"2025-08-10T23:01:59.183674Z","last_seen":"2025-08-10T23:01:59.183674Z","alert_count":2,"request_count":2,"received_data":1228,"sent_data":959,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-08-06T15:14:12.503348Z","alert_count":0,"request_count":2,"received_data":31878,"sent_data":899,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"22hgc.com","ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2017-03-28","domain_rank":37223,"first_seen":"2025-07-05T08:49:33.477507Z","last_seen":"2025-08-09T15:21:02.661621Z","alert_count":0,"request_count":3,"received_data":115294,"sent_data":2211,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"theetheks.com","ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-08-26","domain_rank":55603,"first_seen":"2024-08-26T13:04:53Z","last_seen":"2025-08-07T23:15:22.549533Z","alert_count":1,"request_count":1,"received_data":165801,"sent_data":409,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fleraprt.com","ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-01-14","domain_rank":17838,"first_seen":"2022-01-14T22:55:14Z","last_seen":"2025-08-09T09:28:04.520557Z","alert_count":0,"request_count":2,"received_data":900,"sent_data":1155,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.288353+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.308400+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.328393+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.388574+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.408623+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.428625+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.588809+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.608835+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.628854+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:47Z","timestamp":1754866907,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:47.989025+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.009555+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.029058+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.789266+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.809743+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:48Z","timestamp":1754866908,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:48.829258+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.389488+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.409930+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:50Z","timestamp":1754866910,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:50.429467+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.589694+0000\",\"flow_id\":654609468843617,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.288353+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.610142+0000\",\"flow_id\":424611822679216,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.308400+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-10T23:01:53Z","timestamp":1754866913,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.16","port":40371,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-10T23:01:53.629668+0000\",\"flow_id\":1827794818106057,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.16\",\"src_port\":40371,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-10T23:01:47.328393+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.core.controls.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8889c5f9e2492b9c3d6f73b5bad08fe","sha1":"6b942336401bc4ecd598f91fcaa7db96c889e6b4","sha256":"43502aabf4a1ce166cb2a84a177579663aa32e1ea7db8666bc67534a53a0f368","sha512":"e09de17c7ddc72248e2e337de5be46e9722d7afa26502a6f49c7358074b865ed65288f1ab3048e639dc96c2695dfbe32443560ab91d3497519a787e34352767a","ssdeep":"6144:YhIMSOAqxEXf1nKFEGwjDwdWoYoQHwmj06n:ewOAqxEXfpKFEYdWJ0g","tlshash":"d3641a39b142323556d7a2a9625b4609733b8085b5068aacff39e9d84c7d48f30f7fb4","size":333439,"data":"","first_seen":"2023-12-06T18:00:17Z","last_seen":"2026-04-24T16:13:40.04288Z","times_seen":814,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jdadbl.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"95fd065c887d003f9a169dee9876532c","sha1":"0f111b6d5e142fadb966a1feb264d519c12a59d9","sha256":"4d4c84ad505bddf4d49b1222db984d7aaa425c6702c79029801632bf31f2b80d","sha512":"cacd512fbe11ccdf89c56c164255191d88f1edf46a9cb02b1de0d690659923a6508ae8d5d1733c5452974ebfae589f4c1214be047ba67d5218db06c3fe9a25a2","ssdeep":"","tlshash":"5451215775c270a0273b60b4952f710a773a5892250b8860c3e5e9952c2c8ef9177f9b","size":2631,"data":"","first_seen":"2023-05-22T09:51:00Z","last_seen":"2026-04-24T16:13:40.045729Z","times_seen":799,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/#0.1744949567522317","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"77c8287be10ff4b66a8490ca4d999917","sha1":"7fccb364c5e22958503bcd8b92cdb648d5c4c96e","sha256":"c2d43195d015b5856873b3b0c6e717ee21599ca3f03f820b7c325f27b9b6a31d","sha512":"2007ec2f0297a0479f4507af110911f7022310f757533ba1bbd40228d9b26908758bc09afa59f09471cdc254e49b84baa61f80514a010195d288f8049dface07","ssdeep":"","tlshash":"e3f050ddb475e1e955d22580bd2fbf407876526e240361e0d20cbcc1041868e871dbca","size":486,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-01-09T03:52:32.475699Z","times_seen":6630,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/pop.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f8fefc6a5aed3327c395f43db6be62d","sha1":"8594728c9e75e88e1a759e8c8466df832323d963","sha256":"ff687e2177537cc8e021014af056c22a44036a19c9101350dedf64a6666d47ba","sha512":"3a7708be2e5469b92a3ad6d3de28fc5edb20586011871e4cf799135037b6f2d162f372913364adce6f7b87ff1cff25bbbbaa5a6488348e4a41938e6b43ab94a9","ssdeep":"","tlshash":"f28000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e00c228c2a","size":36,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-24T16:13:40.021636Z","times_seen":1083,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.xadsmart.com/psvg.connectable.min.css","fqdn":"www.xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"95.173.205.14","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"0c7b8e71dd6dbcb187be03725baa9050","sha1":"e68b0fc3207c57b92ecbac97c6957854b2d3c63d","sha256":"574a161c1d835611de415142ae259d85ebef2c91d05c767405e4a661074fbf0a","sha512":"a5fd2953497483be6c5a771b778d4532985b0b008c3eddf0de75d610923e6463a38ca65bb24628208a996a69d62f0afef9ed69047d44a5d824af8ecc8916111b","ssdeep":"768:bt9rqAYKKOZzFQ9JsQU+YDngZGihfzmMzhYrTsAysncCWcf5k5sigCeWCntlqo7/:bbtZzFQ9JsTgZvfzmMzhYrTscphZd","tlshash":"da133aaab286282601e742b9513eb316b23305167812d458fcb9cdf96e3ddc6117b7fc","size":41925,"data":"","first_seen":"2025-08-06T23:45:58.502343Z","last_seen":"2025-08-13T09:20:42.210232Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"theetheks.com/400/7938571","fqdn":"theetheks.com","domain":"theetheks.com","tld":"com"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"e2f6efc28573bd98f5ea7e1cd636bf8a","sha1":"5f6dd3c6fd0935c1c77a12d6a051d04234252918","sha256":"c0273930abfef0dd2d418ec695079856ed5cb6ffcf2fa0d22a91ebc9779160ca","sha512":"29ca32f7383dafeb027e9c8e61751db4586fa9bf1442d89f4bf50a416314718630878bff11f1a6a6bb42d3459c5200431e298c964c217a97ed33805899a3fdeb","ssdeep":"3072:yjjsnib+yfMusGZT793LvWl0WXvBC+xGCmC7fW50XKN/fo4vzpjFDxwB:yjYiHMuRVk6WXI+xPz7fW50axbvljZxG","tlshash":"9cf3e998b19271512e736134311fd20eaaab6b605c4e8580d1dbe1b67f3702ed37bde8","size":165001,"data":"","first_seen":"2025-08-08T18:22:39.019698Z","last_seen":"2025-08-12T08:18:26.321652Z","times_seen":41,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/provider.hlsjs.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e133e8e7b97079d4bc7ec71fae611795","sha1":"14f34839087df4a3a09ba2f11a768f0d14af979d","sha256":"f0d08bd0271c5d085f5d1419b1af887eb9c250aac800cadc4d5ea64c3a348e97","sha512":"c9d584c81ef63afa75e386a97e6467969aec410d4819ef8053e2c740785c03028338e5cf0f278b874bcf116a31ddb9451bf521c8a1cb30bc5d9cefe99f33c34a","ssdeep":"6144:saY41OZdKOOf+nSIY/4nN/Aq5YrOue7stE6KgT/:pY+/4BAq5Yr1eG","tlshash":"1d842adeb695b0664283b1a4903f5607633b7d0a7409c1acfb27e5d61db8889b03bf74","size":386462,"data":"","first_seen":"2023-03-08T14:31:25Z","last_seen":"2026-04-24T16:13:40.053976Z","times_seen":941,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.cookie.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ae0c2c5d8f01f7d35bb698bb618a62f7","sha1":"63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20","sha256":"75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc","sha512":"eac94ca9d884692af8bdf12aa6e902a3be4eed0772ad8f2932ac1c3328b83a7351cdf743a409bbc0a3cd385956c08d3203d51c572bb1680489e37330fe27a2bb","ssdeep":"96:L4BZxb64Ng7V8cNwpGylRCsKZcj1JXulL6M/aGByLskPSP4lBCClf1wgCyC:LQnb6eg7DgCsk8fgZJkPSPa+gCyC","tlshash":"2e91fd293a0d231d149353f57aee10c8a930d632216ad46c744cb6b06f00c63ddfbbea","size":4331,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-24T16:13:40.035Z","times_seen":4391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/aas/r45d/vki/2003354/78215968.js?var=cpu8600","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"b42f3b460353c3a2cb85ff07759021bb","sha1":"ecd1159ed91eb1fbcb19c33fb25a4a45d89ac3b3","sha256":"2f4dda39157f1c8ac8d3f280890697ee476f4c0d96c98c314e374d93b6586c3d","sha512":"dde7ed9216013a0ba16476faa1c08bbe74ff09de7c353149bb9b8b6c0611dd6728b72bc696a239028677b5917378cf77f426312733ef1abaf2e80d161321dde9","ssdeep":"1536:1kFuyLtoCqYqcL5y6PjBg7YgLXBDkWfkCXgllxaJoXJfCP5yvPGJ7FyJaPRx3:1NioHYLY6Pje7DdelCPVyAx3","tlshash":"98e3b7bd7a826c720172a13ba83f570e996e58d7a4cd4410cee3c1c8fe69507d191fba","size":146216,"data":"","first_seen":"2025-07-30T11:16:32.247961Z","last_seen":"2025-08-10T23:02:14.50768Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"365753f5db3715994349e69ec3e6a5f8","sha1":"f61a8cbffd148f747669d5760b5b6999bfb53cba","sha256":"74c4e67497ceefa9e75f8e1c6a659989bb15bd6c6616b684a038abc3602d2dcb","sha512":"7053a27017e32fbf87af72ad8c5332008a946025b8e9a0cc352dacbf0b47dbde763f9a89bcf2ae6c5f1b4a4c1ca936ac4d40e53096de5c93eed12fdd5ad96701","ssdeep":"","tlshash":"2c3122db31a0fdb1078b614c212f1909f5bca4a0a3ade8d1cba9cd747d385484061bfe","size":1813,"data":"","first_seen":"2025-07-29T22:27:57.77684Z","last_seen":"2025-08-18T06:01:05.332385Z","times_seen":192,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/get/2003354?zoneid=2003354\u0026var=cpu8600\u0026jp=_cltmgfckejegcjivtctgdt\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=u9hSeN3pVUqV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=3vGzkFDaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzN3N25xM2lzYzFmbw\u0026afid=7433356351950336\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"51b208acf1042d5b51279c3ad0e059c5","sha1":"c089784c8a6d97e55a1f1ca4a99948cc17c2b291","sha256":"6dad2ae013aa0722a7eb821b935318ed47afcc909d492d8bdd003869ea55dfba","sha512":"86f8f1f5a22382f65fdacb74e347e962df98829bf44426050fd59e5926c2c50f9a0eb56917c2250cfdf032fc7dc78d0e277f92b4c17877053ef75448f4db3958","ssdeep":"","tlshash":"aa71a75762eff2e6c373886aea79be7327450d5c03039e241152a208a381bbf43451ba","size":3526,"data":"","first_seen":"2025-08-10T23:02:14.519731Z","last_seen":"2025-08-10T23:02:14.519731Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d8c81442e74e2aee0929479d20170ae0","sha1":"9de4f4b80c02779e4ae982e0638d2075b48db354","sha256":"a5a0d9be349f2f79e82bb0780285442f54e42939e5e4783db7843956e2ced445","sha512":"9b29a0f8504c6d1add7120c2278afbc4f13f7505f666a23669378c6834aaeeb07c9ec1012c247a8b694caebdffa0f0f5ff2d3f135434924682de4ea6eefda8e3","ssdeep":"","tlshash":"678000080ab880b830032a00ac00002222088f80a8a03ac0380e03bb0ca2c000802a2c","size":31,"data":"","first_seen":"2024-12-27T13:53:56.215783Z","last_seen":"2026-04-24T16:13:40.062396Z","times_seen":1173,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"76d906c81ed1c93ce54e9d07c9050c8c","sha1":"e4b4bb8ca20b439294f5fb292efce72c26c4fa74","sha256":"465a3e898d01145a45a0eb79dd502e3a954acc0cdf7ee5a5de89e7ea3455f95c","sha512":"82ebf68e557a1f95dd7111858804fe73326ff275d49b158c9631446ac6c26eead47a9711df0c94ca97b1c5a89e2f8d449389ef27fe79483cc55249cd30f8c7da","ssdeep":"","tlshash":"efb0122726cce12dc433a539c9e1f0cbb80b20318000ce4c2144342677031092c809b5","size":103,"data":"","first_seen":"2025-08-10T23:02:14.543542Z","last_seen":"2025-08-10T23:02:14.543542Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d936f0d3e0535e2fa01aa05c9d1508f","sha1":"d20537b105615348981de83acaa439e771f719de","sha256":"ec4b3c7a9f6ffc2691c526ef4e11982138f47505bf1245a72284d5f2ea3a5139","sha512":"b652ddcaf495c6cbd1b4c6ad40996249f94b67922be2c86f6b265b31c364b60fec7647074f81ad90fc8e21efb5349a74dbd0f827d40b45fb5599b9c432ce45fb","ssdeep":"","tlshash":"3a9002114c06c08a0178608e3a1e3b0076012f5180020102bcc60138b454003a4060a0","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.288429Z","times_seen":13737,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/polyfills.webvtt.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b3e139c07aac361115e8ec41bde7d2a5","sha1":"0c3fc8d31887dafb86ba778da788ece5cbf76f18","sha256":"1ff5585bdbea001d37f3647975a645f0594090f070915831286de90dd45949d5","sha512":"0b2a16b1b9a63ab3561c9d7e63a2a797781f6abc09c304f28530c6a8c87224083c708989534552d11948aeec3aabb36a943173fbe651c64810d56f08f2bc68b7","ssdeep":"192:gl1026oqO7yNPJUsnOGhcAsej4Du/YVLEO1mTLSRavTdU94o9pD5i:E10tvJN6cC3RPVUTLKKTdObpM","tlshash":"7222f690b2f5609d8281e49f456f0284e2399630fe8bc4cef550c5f9dc74a8a127ebb9","size":10791,"data":"","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-24T16:13:39.999813Z","times_seen":825,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ak.beltsflusker.com/rDulnwma4CCtiWZF/84626","fqdn":"ak.beltsflusker.com","domain":"beltsflusker.com","tld":"com"},"ip":{"addr":"23.109.170.255","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-26T17:01:00.590711Z","times_seen":15793,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"7d51d9cefc62c30b98cf30a95eea8b10","sha1":"7c47416a186bc7510b3e3ff1fa40cc3e01f1a055","sha256":"33e8936d45f16d3b0b47b5ae91358499e4f6604ec00af5322054a83731af68c7","sha512":"02015b44944ee9532afe00b0910912480403306eb4e635caf9ea36da71658e18fc7c57233612395f4a3f7020c346726611395a339c5f30154335c09f5fb2c697","ssdeep":"","tlshash":"84d0a748112b0ca455b72e060faf7a04b016218284c099212c4a1a045f35a07d610906","size":217,"data":"","first_seen":"2025-06-27T01:45:17.001163Z","last_seen":"2025-09-24T07:12:23.166137Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/check.html","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f2e0cd22b41fa7c9212af0b11f449d3","sha1":"6c552632a2eeaa712496444594c3e8c68eadbbb0","sha256":"d7ca5af269e02e5109a61ef55df0196e2206204d6c742daba5a153defc097fda","sha512":"c90bb9984fc0b2a5374129cb10fc509e937ba565063e2530578430fb0329f8058c145c914de139fa166d8530cfff9799a8c78aa1ad2752d9ec72e24c0fed477c","ssdeep":"","tlshash":"d201685934f5684d5127b630255b22182d32a40325cbd94efb2cdb301f825a7eca8aef","size":762,"data":"","first_seen":"2025-03-07T08:34:13.499254Z","last_seen":"2026-03-04T07:06:03.173543Z","times_seen":7245,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"0bffdc681f037773dab2eb48b2396e6f","sha1":"f00b375c063cf2d420ca8ae75cfa69f34d5ecdac","sha256":"3eff50881ab395ff8e9278a28668bd45d237e6d8452db2505f8b0c77fedd4ab6","sha512":"2b5c7696f354776a37f2a93601c93f271aefee07330341c64b4c84e10aaababfc8fe4c0cea0af52c7faf9316a07202d5a29b05e4540384f2a03176a8407da424","ssdeep":"","tlshash":"ecd023b5b6d738a3961708710f13117c175949e5ea03105050dfc05d16d5d5cb457c54","size":213,"data":"","first_seen":"2025-08-10T23:02:14.547146Z","last_seen":"2025-08-10T23:02:14.547146Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f1e41f0e16667ba072b8a73acb6c0f44","sha1":"4f2b5917683cb4aeaccd07f96d3b97e053b2cf01","sha256":"0ef17b9beebb471e24303a31f0496b6d81057f9de26d6d1f3930d4f38335094c","sha512":"905724804959e3b98f970f466836ea4c65c8920feef7bf8febb660e1b13a4cf51a8cc784542e399db34cc2b551d1444ec646851e749282658950039c8de93da9","ssdeep":"","tlshash":"52d022cbf1bb74a0723f2074c9230124623848eb49899ed5fdcc99040f2e587a400ba3","size":214,"data":"","first_seen":"2025-07-30T07:44:38.064185Z","last_seen":"2026-02-08T09:18:40.023062Z","times_seen":387,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"265fbd04531d9cf5fd767b4e3149a5d1","sha1":"9df7368252b2b411d8472e2a6cc46fd5557ac415","sha256":"1b5a1da3648fc66667a67e766f23683675655e69a2f5186d65e750c7af80fa01","sha512":"c66a183c6e2dcabfedf54ccf42ca70a8cb2f9fde6fdfabfcb8ce20dc684821ce10b7892a940f459cc41c7462c97300aa740eecc1a38638845d159c684c9b036a","ssdeep":"","tlshash":"cb9000020c0ac08a003a208e3a0e3b022a2a2ba080020202bcca023ab8a8003aa28080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.308656Z","times_seen":13860,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8bf7b38523024c85ba7d58adce06782d","sha1":"e59fece7ba043dc5e369cd5e109eb848c43b7bc6","sha256":"ead6750342664e83f06fb64f826a27a5a7e896aceda7c7f419e170222d837508","sha512":"15d97206fca24c9c6d29519d389f1b5457b337688c8c5f26096e964d352357d92b1ab34c9a9ecc1f1d486f5f3324ff965609fab204be4b54271b2e53b024c8c1","ssdeep":"","tlshash":"368004041cd4dd7430054c41341070d311134f11c0007400f54c471704c054d5c1075c","size":38,"data":"","first_seen":"2024-12-27T13:53:56.12858Z","last_seen":"2026-04-24T16:13:40.075623Z","times_seen":1184,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"58938d53baa957c0ef8c13457fc64de3","sha1":"fddcb87c0dadeeb028f4bcdfc7fabd11c8b94d15","sha256":"fb5811bcbf9a32879d9942463216985a6bb6a13bd6e53928c0d303d3fa49360c","sha512":"7f51f556562cfbe4d21c7ada1467d53f974b3b4ae5aeb00cd5fc304b5d6cbd8a39cb532f6864e24c122ba58738f587fe21c095cb6fdad597fb8b699b1a9bff89","ssdeep":"","tlshash":"b1a0021e11815bb4804a58ff60c7d014b2727084b629672db55755292dae01112f95ab","size":60,"data":"","first_seen":"2025-08-10T23:02:14.550201Z","last_seen":"2025-08-10T23:02:14.550201Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"93128c282499b9ac18b63d0170ef3d44","sha1":"20a9c22e9546d49fc54c41ecbfa82880934f45f3","sha256":"f58ab76f9bc7003d1eaa68b8ca01bc723da2137cac1536511da193bd3062f86c","sha512":"7275c7fe7ca0a85191389c0c276f16c73ea59858c6af7268cc1c4a306755a35956ac72c4c8a7ba702c386eaa76ef38e871d50f0b18304dfd9ef1c75430a53f85","ssdeep":"","tlshash":"0d9000020c0ac08a003a208f3a0e3b002a02aba080020202bcea0238b8a8003aa08080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.290898Z","times_seen":13778,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.js?v=2","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e596630eff0374adebc068352ed362ae","sha1":"156895e17acd4652f5816db5b310b341960edbbc","sha256":"816c99b4a2b3c2d2d7adca35b602c2b1f5ef56ffed67ae1a4d29bbeefa55ee90","sha512":"625450c3bfe0ea3228565c0f32f167850d3e60a2d90c049c87143c40cf8f413ee8ded3c94740f095c4ec088477ca67c4dd08d91205b6bfd38ced4175d404ce0b","ssdeep":"1536:AFe00b3VLgXLVuRXE0D6Z17WRtekdILG0Up:X0O31gbVuR96mLIy","tlshash":"d1c370ccb1d2b4a603a770b5517f620ef23b59c5384e8194ea25e9d5bc7864e9033fac","size":120878,"data":"","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-24T16:13:40.041377Z","times_seen":941,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01fd11fc77aad3e9310b72a0d8e773b9","sha1":"7116e1615eb93eebf605f37bed1e3a5e9ced7a7a","sha256":"ecc488686daea52571cac645eef7677ba4918059115a59f16c0ce9b251c011f5","sha512":"5ade75a4dfc0caf08a81fb82ad28363cd146c1cefd99ca911278738f4c370d81e26eb02ca5d92c9e7c27f4ec4d7ab7e6f38ba792eca775c19c0b5b843fe488fd","ssdeep":"","tlshash":"f6c08085e5f41bb017f550c537db1e02f1d527d58eb521b37308440deb53587c676161","size":172,"data":"","first_seen":"2025-08-10T23:02:14.551778Z","last_seen":"2025-08-10T23:02:14.551778Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"99eccae6afa72c589ae54b5c3890282a","sha1":"0f102f8f5b556635de65d16cf70fa8269c6761b4","sha256":"b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3","sha512":"01bc413c1695c125b8ab111c60974da99989b618fb674631d998db519996966c569503efb97a3c760b50069e87b6b42891985b00c64810a43935ada075a19d24","ssdeep":"","tlshash":"eb8000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e20c228c3a","size":38,"data":"","first_seen":"2023-03-07T12:59:18Z","last_seen":"2026-04-24T16:13:40.046458Z","times_seen":2614,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.min.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-26T17:06:38.503853Z","times_seen":455481,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"03292dbefe3982b4ca9adb0b588ada31","sha1":"a1ae7ac9b18c166bf0137d4919d9b912a8c74765","sha256":"af6ecc52877435b9766189077c344e7ef00e6c4e5617097c63b5b8756505dc69","sha512":"94d703b0209e9be46c67ddfa93056c5d49124d7db042a559af2c625644e5299f6966fc824e61092bc0b8d2fdb6af6338b05740399e9c784e223595aeb93593dd","ssdeep":"","tlshash":"996000008300a0200828088c3800c00020380020c2022200a202a00e820c00200a0000","size":16,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-04-24T16:13:40.087146Z","times_seen":989,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cdc559f361f7561596d3345d34ac573d","sha1":"f2ee482c8e792c7faf049dc7b4c949500fa353b0","sha256":"d8bf61626a91d1df60e5c74e151c3198dc1014ae95b1acb2c4549e495472c2a2","sha512":"5cb72aede53c713f36dea1be92f482d30625effbd4712de9cbcdc86d51ab155c0978ea96f5db78bb8eedb6757826b55b672cec9a66aae4d2a79bd7498803f24e","ssdeep":"96:jefIo6yCuJJ+2ARnXmVVnFdpu8rP2xsHuEhezBNY+jt59E7vcSW7rwrdbSlhZhQU:jbopCuJiRnXYpprejzjtSnW7ySiNet","tlshash":"39c1c806eae81434e0fb52f47e2b7104613f0a83ee4ddf99fa3161502f9d1aa75e619c","size":5965,"data":"","first_seen":"2025-08-10T23:02:14.553355Z","last_seen":"2025-08-10T23:02:14.553355Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"892e0db99132d1d5647087e4735aa0ca","sha1":"52fe7b530f9a385a57049ffcc27412c6c8aea0f8","sha256":"a4d777ae05ddf92c68d7cf7d283d3fbfe3686e6ca9179fc3bfa995fd6b0e84c2","sha512":"108d93bfa4f21e109d9783048abff3489bb5b22ba194171293b8b322cbdb6293ae434e6645efdf7d84a1ce33e57ef75953808611dbaee5e58340b7b4984595ff","ssdeep":"","tlshash":"4bb092da68d4320440fb603614fb82566036806722488da63a8c09264fa364a6a18a28","size":115,"data":"","first_seen":"2025-03-08T11:51:09.398524Z","last_seen":"2026-04-24T16:13:40.091421Z","times_seen":419,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cbf3947dc1f511f594705b4cb793affb","sha1":"80c09c8bf57d0ae7c0911fa86423cf959fd25f59","sha256":"6f4e9cac62dcd10197e77fd2f4e913fb4517281134a19e50603cc8138f904050","sha512":"8cc054be2525aa1853446b8e65095794ba1b133747d4ea4a8021446dd45d8cb5aabe161d72da29bd6a3027ab374395cee6e2f48d3a8f771ac9b18b2f5c9b551d","ssdeep":"","tlshash":"31c08034757185a000bd4459f177d75cbdf361d43da25451885f8a4c5970ec50856cb4","size":179,"data":"","first_seen":"2024-12-13T01:52:08.034741Z","last_seen":"2025-09-23T09:59:13.281697Z","times_seen":226,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ac7fe824fc01da2eae66c69cde47673","sha1":"12c7d2596939ad5d05162d227907c9bf707559b0","sha256":"c259f617c5131add5a2a6c588f31e278b6c9443eddfa2399888a0d786712f20c","sha512":"ac205048c8287ebdd4ed9d241173dbca2ec4ceca2963d3706bd6b3d824f31fe3f073295f4003bd848d56dc1aa3733bfea5e620e1ce168519bbc03e8ea6d0ebd0","ssdeep":"","tlshash":"899000020c0af08e0038a0ae3a0e3b002a022ba080028203bcca0238b8a8003a828080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.309926Z","times_seen":13689,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/5/6568874","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"dd98f747e0c7468dc41b1a2024328b73","sha1":"394d7f7af65ae21202b2c893568c694881540a5a","sha256":"fd53844f77bf1f8ff979e5178767fb79a2f62b099f37e9b9b91b552a4f1eab1f","sha512":"ded355d40aaa833d326bcac4c31a0af7064d20a133e39aa88defba62af41936fb42d7b7eaad94fbc4a16146b1e3667b37b80de441b4ef4bc5e6d4e24390fd12b","ssdeep":"1536:Gt15NN2FLCP7UvIgNJs0w883eu8R91+mVJzWpuKBgvribUOJr/D9GHMO8xQo+8cN:Q1k8883eu8R91+Syp6oLb9GHMOvJPWW","tlshash":"97b3295472a734756d6a8138785fc44d6eebaf80208d89e4d0e9ac733653074d3bbee8","size":112388,"data":"","first_seen":"2025-08-10T23:02:14.524264Z","last_seen":"2025-08-10T23:02:14.524264Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/xupload.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"36d53d0f509d1642267ebb68b36165a6","sha1":"18534c979b23a500124e316d07db0f42e4d72bdd","sha256":"435e82278b5b2cf7980b025827e97d4edeb310b8fe31ef18f8a4535f36ba298f","sha512":"e45c543c6b137c234ca332cf4cda2ffae6af1d8fdb83e900e8508f7407914e96e67bb3b81b4bfd5dada10cceefa1344aa4e7c47125577d605ad2bc9634b77279","ssdeep":"192:7IKE9YGs1qGHh+6IsZWnrbll621w+4UWdRebMQ4WdReDyYQaQv7OsaaFg+BnqGQi:EGCi6BlV9GRebVReDyYS7OsaaF10fq3f","tlshash":"f122654abaa339912a7730390bbf52043b398407114ace54bd5c96c4af8452897fbbfd","size":10768,"data":"","first_seen":"2024-12-01T00:07:19.913985Z","last_seen":"2026-04-24T16:13:40.053175Z","times_seen":731,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/2jiGc77.js","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"391ea374a82e33b9213ca1fe96f7de97","sha1":"9280db857ce7da2980ea86c8c4a0b311d395e7e7","sha256":"ae9d1d5e57fe7921126efed4073a9befc127339403bee422c7e24cd0f1812e58","sha512":"405c925acf1f4a210de7c07dc6cf1b095108183a1e0a71f4401367bc3a9f9ff88e9a6ef30a2bbbf697524c8929bbcb72dff0469ec94999b2e655f550ea7870b2","ssdeep":"6144:bBdFoj94bqFVFs2KbCrSXvQEMZP4bobT4bDbgbFb4q8ebOyTM0Ia3Gvu5Fp4fRkj:g2bqu2kZRXit3p","tlshash":"e234d989b6c1b0b402e3a1b4052f551af277b944744ec4c1f729d9d1aeb9a0e9a37f3c","size":245039,"data":"","first_seen":"2025-07-29T22:27:57.713788Z","last_seen":"2025-08-29T23:20:58.983677Z","times_seen":190,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"41310478a380eaf7e07dbad9b4f81a97","sha1":"1714b6ef86e90b5b23e2aaa1e7728ed9c59f4d34","sha256":"848e5342d9196c0f64861ab926a3c5aecce9294750febbd22e5d8df859bdb144","sha512":"7b93f330547524ce01b8f888a8d56c19cd4432fbee43db16aab33fc1aecd77243762c5e7dd5ce767e38c0fdf9d58bc629caf106d77689c1ef90ebeb09406580e","ssdeep":"","tlshash":"d37000000000000b203c00020a023a003003003000880800820808302ae800b802c0a0","size":23,"data":"","first_seen":"2024-02-12T20:00:21Z","last_seen":"2026-03-06T11:55:01.500018Z","times_seen":19951,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RFESL45RJX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"466a84051de5c83822e0ae87fb827b76","sha1":"90ed5b5441c17840be5cf86c59ee017d097d2786","sha256":"cad5fbc872d3ceef21fa6772a673e99330e42c73413fbb861f9ddc57b5f2f816","sha512":"85495a3690dd9bafffb8b35917074882d38542225b482fc8f1b8c07c939f0c654ddb2ee258fefc2e77ee60b21acef5fd10afc4f8da78063fa634245517bd86c8","ssdeep":"6144:72xP2NU1uDLgAyevGtkT2PG6B4xdJSRccEM:7YPiMclcmd6z3","tlshash":"a88419ce73c670669396f078503f018ba57b29a2b45cc899f189cce42e74a9a4177f7c","size":407426,"data":"","first_seen":"2025-08-10T08:13:38.305535Z","last_seen":"2025-08-11T06:00:41.279315Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026sid=4a59979c-2c45-41e8-ac6c-5fa43edd78c3\u0026i=1\u0026s1=cpu8600\u0026fs1=1\u0026s2=47746\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"bffc8208d25c9169968a0f3edb80bd0c","sha1":"8130d8e348eddfb9a0d24ffdee790df084f2834c","sha256":"6269be2b9cbf0d36b6ef073525c24f5f5fb201b9d03919470403d9230f19bc39","sha512":"ce47c643d42d7503708fa4e16b7bebf79211f37299583d868634156b9b1a48af113c829d3667f882ed01744fc84f145ae9e7807f646f635840945f43fdc13959","ssdeep":"","tlshash":"49f00289865c57fa4748d0e3ec3d4ee1488d49782755500afb64535f4cda18203e018b","size":647,"data":"","first_seen":"2025-08-10T23:02:14.540976Z","last_seen":"2025-08-10T23:02:14.540976Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","size":17879,"data":"","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-26T16:33:52.167303Z","times_seen":6585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0baa53ba8a5ba5ee6833a629c3000d4e","sha1":"d5de057adc1eaa7888ca975199cf0a116b923aa0","sha256":"0679a036a8577f9592e070f780d06c6bb427a8f15f58008bdeaae2277ce607b4","sha512":"a7e5a993e1e12e7d73d98ab3834fb488a1e3ce361108f3f4583cde7e4454e97768303649ae9fa22bce7cce65aed74d081b69317f169c18dc49e8093ac4d3a60b","ssdeep":"768:dsmoTk+UwrAjMo3m4MSHRJtlgfWivYb7QL19/lw3mcIwT2vB03c9MZjyQoTHKePc:pok3m4bHRDuWWL19/lw3mcKJpAGPKmjo","tlshash":"81734ba97162702a43b238e9967f5311f1ba06902c4690d0d37dc8643c74edf927bb9e","size":78356,"data":"","first_seen":"2025-06-14T18:46:22.558225Z","last_seen":"2025-08-28T19:40:38.269373Z","times_seen":3673,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"javascriptURL","is_inline":false,"md5":"68934a3e9455fa72420237eb05902327","sha1":"7cb6efb98ba5972a9b5090dc2e517fe14d12cb04","sha256":"fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa","sha512":"719fa67eef49c4b2a2b83f0c62bddd88c106aaadb7e21ae057c8802b700e36f81fe3f144812d8b05d66dc663d908b25645e153262cf6d457aa34e684af9e328d","ssdeep":"","tlshash":"aa3000000000000c000000000000000000000000000000000000000030000000000000","size":5,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-26T17:01:00.64065Z","times_seen":69683,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"adcf305e40c1ac059cd5e90d85fa4b2b","sha1":"e9e6c5148b280169dbd447f48bd7cb17c22b3d16","sha256":"637fd01c31cc3a108b5ad408be57a9cd936a0fca66ebe37a13fc4cd807769bc1","sha512":"2d1f291bba9a8e726a5efccea42abd11ea619522d02591c6f886296517f6cb999ff1b0bf541ad4022a02599f4d3517e83192702c6386050dd324f615a6442f70","ssdeep":"","tlshash":"bec080397521843410ac0449f177d75d7db311582c5219429d6d8e0c6470fc54cd5cf8","size":177,"data":"","first_seen":"2024-12-13T01:52:08.042041Z","last_seen":"2025-09-23T09:59:13.282469Z","times_seen":204,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d9f9b0f82813d813afe0d450e9fab4d6","sha1":"cb6ce93dd97adc3649f697ff49681f5aaf8b1671","sha256":"d204422e9d49293ab422bfabae9607635876cb30f77215f133603bac691f6f4b","sha512":"849997b396eb218b8bbc788eeb34ec3eb9ab4c809a07ac707a57a5e13baabb69d2c52795403d032f007276109c7f4476daa8255550fa236873e1eb9ba6dba3ba","ssdeep":"","tlshash":"706000c20008802002c200028820a2802832008a20022000c00800000000a0c0222808","size":17,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-19T05:15:08.451605Z","times_seen":23637,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c38de8529baf4959cf1833bc78c2b773","sha1":"9a9ec7f19815b72fb722d6b38f58eb3de74e3792","sha256":"25c9ed4936067d82cd278d6ac2b8a2d7b5910c50614767f3af467c00f6866ef7","sha512":"5c6df6069e6d76540b7e78fe4803bc32e854d6a5fb56035b1c6add02f0b36cc3f4060b7047fa684b2987b9baec5ba5d6b41edea426dcc4332ff9747ef038b23f","ssdeep":"384:+v0a/K7iYFRdYtri0Qen9tO69aI8tAUeNDaUGRQ2t4PpBahqoo+KXnS7YhfGMOIf:+K72rdQ80GaIoQPzahq/AMOY","tlshash":"f3c2d4a7321eb91a8719626110ef2ec5a2cc48c4718f1f78e724e53674d763485ebef8","size":28002,"data":"","first_seen":"2024-10-23T12:29:25.913544Z","last_seen":"2025-08-29T02:50:19.449531Z","times_seen":195,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cae5056dc49b24eb4cb45b69a53392ca","sha1":"5e6e8ef82868cb1e4169a4dbe5237209a77af0b3","sha256":"a8323b405106d3ce3e4f604d34ea0212c4beaef875d6323a59e421efe9f27bf6","sha512":"785a25e623db1730cd994a6402927e584ff1de818d4bf671a5818dc1880644652abb30df419454160119190fd3e67b051ef28adc841dc02874db8fe4420c033c","ssdeep":"","tlshash":"bd1165185c30781933f770ac4535fc55a8b382bad3c8b6dd78b760925a299c21d16fd9","size":1005,"data":"","first_seen":"2024-09-07T18:22:11Z","last_seen":"2025-08-16T18:02:36.262056Z","times_seen":200,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6dc0afc5aee21e3a2c7ba20fcbbc5502","sha1":"b0b548e52b180b7ac2fbac80962700dcd226b31f","sha256":"97e8f3fb205c8b155c8c6370121edddfad4baf9da50783c9b7efc9ed120bf41b","sha512":"e37b0c0f47dd7f5641a98b80cd68fa04f9b932dedd7d691399e0d04a47e75abc50fe62dee85ca735f2dc3c534869f8f8c1478afc9fcde9b91719665003f21a7b","ssdeep":"","tlshash":"819000022c2ac08a0038208e3b0e3b082a022fa080020202bcca0238f8a8803a808080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.308032Z","times_seen":13933,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e969e6981adb7ab1cb174994a5c8c627","sha1":"5f534a259a6f3754d1d392028fd4cbb344fb6563","sha256":"5cb18f9c0eebf644c0bc27e5224177984121b4c4a3f8189861a6d797a15a2e7a","sha512":"10bbe815bb6e4ade10d00a42a82dd10b668e95e275161cb0a637b2ea95785f8f7fc72b31bb48ac9c1dfad03d811912c0683941a3c09357525f164915d5b033cf","ssdeep":"","tlshash":"a380000a88a8a0222a30a0228c020200202e822080ee208083f2032020c283c022b802","size":30,"data":"","first_seen":"2024-02-12T20:00:22Z","last_seen":"2026-03-06T11:55:01.514986Z","times_seen":20053,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fb440b8133f21c3e5d3e39624e7bda94","sha1":"1b46d8568f9bd8a2be944d6a61924a21ec0b6e4f","sha256":"a5e2bc908c3bd3196d273564d073484f9905d13817490eca5aa249e701139cdc","sha512":"f874692932aab2be754d763a3998c5cd3c654a5bcd78c5d839fe0ba506f9a9e563d3cecba0ca71a6b0db35ff94943f6fa8bb0292f10c1aeb7df2704ea6d85fbf","ssdeep":"","tlshash":"047000000000000820200802220322083822223002cc0002220a083022ea00b80282a0","size":20,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-25T08:48:15.551115Z","times_seen":24304,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"73497a37c3561adbd8ce84e4f017b368","sha1":"9193ae73cb3dd2833be8c942714d5544bfb628c9","sha256":"9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351","sha512":"b265a65f30fa9ffac3fb7ffca07326823466dcd67a238a47091a497c7f2b2d13e09603cbb8e85dce136efeb8bbb9d246e4894d6f672dededc47c88a1a85d9a5b","ssdeep":"","tlshash":"c150000003000003030c0000c000000000000003000030c000c0000000000000000000","size":9,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-26T16:33:52.32771Z","times_seen":5430,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d720eef71edef78b948a643d5712ec07","sha1":"ea5eb334bd6ddb0f04abafb700dc2ecb30070c76","sha256":"2daa1a91b2430e9867296c9cb26d1483785954a9bdd66f79b2c754bab7092cae","sha512":"63368ff1fef849df7f849af23bc2f24698893bd3d58300282427a76665b2d5c94f097d409f93173ad9c36944b4fffc2e37fa03a91f81e4e04f3737f9b73d2d6f","ssdeep":"","tlshash":"5f6000c00000c00c0000ccc3c00300c030000030c0cc3c0003003c3300cf00ccc00033","size":15,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.51255Z","times_seen":24260,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"aaf72876f0d5e8a677a383fd45bf938b","sha1":"d8b2ca3c238c933223f4a6313c5c0561f99e0c1c","sha256":"15eb7e222abfc64660d0f94c04053839498df20ea9ac9a13a201701a56ce3bf6","sha512":"c6bec20224539a5319a753a794c7521e7063e76b3d41bac8d7f0159880eaf3ed07c3fc1b0eb4ec285f1970f270f4b0ab68890d5a0ed01e3b1542102ad707f6d7","ssdeep":"","tlshash":"207000080820000820200802220322283822323022cc0002220a083022ea00b80282e2","size":24,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-03-06T11:55:01.498128Z","times_seen":23956,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"naupsakiwhy.com/401/7850681","fqdn":"naupsakiwhy.com","domain":"naupsakiwhy.com","tld":"com"},"ip":{"addr":"139.45.197.107","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"03ea9979bf61daff17a681002575d960","sha1":"f92e23e554f094e0afef3b81eddf6e617961ebd8","sha256":"d919c448c9dbccd79fdd2b71c793e1f23a92e36a91fb79676a502696d4bdb5b1","sha512":"9698f867ffd96697ca1f01de609903804789485f4e4a426eaad2af29b0c93b50246b06091766de4dd37aac4026c3f1bc9ee1d5582760dac0b8e3689e892d2cf5","ssdeep":"3072:dsRWNIlg888zWt+UMBzP/p2nZorMRB6/h1ICnr1mbmzgNWa6htEEi:aRq+H88zWt+UMBzP/p2kMn6/h1IOHzgR","tlshash":"d8f3d888b282b1551d635134322fd24eb5dbab609c4e8a80d1dae1b27f3706ed377dd8","size":168485,"data":"","first_seen":"2025-08-08T18:22:39.04341Z","last_seen":"2025-08-12T08:18:26.3726Z","times_seen":42,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xadsmart.com/hvrxywpedaqr?odItNcMg=BQOCAAAAAAAACZUAAnw-ul2TOQaOoFRaHzNe_pOdYGgLKkRwcrjVO3Oclb1szJtkeuFVpp5l2pZH3g__2q4-WY8Wx_H3GBgZItnyBd_PuT2Vh0wy8tAs4UbPhfTdreCcgl4K3Bq8aonA4WwJIhabdS83gMb5gGyriyLXqrKJ20X_222rvt7wzKqdHt56HYXJi7YZ8-cUgyad3pGSMjrBNVPZBpMA3Zhv5gUnYom1vrvPND3_l1h1oYtw7uzRVPhOwsfXNcq3sygEVINvw4vpf3A0MU9Ks3HP-IYcCsZ_ukqcF2PfTO9M1zn3FSnapkDu-9ExA-LkdQXVgE6dJkIyfGlxzJphv0Lr5tSwR-BWyz0iJO1EW7iWqNs1VWdsZCTpj1CVvuR89SQSxVhj5JI5-s8OooVSbShRctPnQ8PyhrarmKNA1_1i9NMTcbeW1KH0hn1PWT93D-76GBTrg7tPrWEEirfqO1FBfD7xxw_1GAeBZO7V8pqyJcr1Lskt09x8AItweVA8-5e8FzFJrCD4P67ALZ90VJYV0Nm_d6QZ--TG2yylBL5OIGs0H1UGKr0-0vqLpFcg3jEsyYzs8Zz6lOOOmbxq_im0qzurEAyNMZeZNlQJi1IrKIcCKJyp38BWo8mL6uGK3DPBNbQUT9OMpxmOnHbYWtf2FbqhDVhiBQvWEbR5Hn2qqzdeMzOuGqrxykIm9_Vb4KX_YeD5AuGdM5d-j3lE4liFTDsQk9ywiG_Zqd1LqnHgtdaB-d-Xu0eJENveuWYcud_26_HKquCqVpfbC28EOQg4d11lOgbBQ1cJgHJ9moMloT69K4j5InQvPxJswMk7TVT9eokxUn5qjbHz4z6UjdSqfs371nB5hmquHhNrQtRtmt9lWUcg7Fd4spgbCMjjxG0d-l9mNta3F6sjFkmb7lI6kmoUDmjd1Lg7NF1mGRN760dlo9BOl6g1ph8htxJJNpsxg8zffl2iXUIN8RmfSHPnHpnJmBhYODgaUaoZeKF18cmB3QTx8ANBrX86pA32WPgGLC8ka6WOlFWBNfqeEbYIDsLcElR_yXkg4R-Q5Fmo-vLxVCv4GTYa1FRFK1X9B7zlztbomJA4CqRULlyE5FFUAQZ0WvBsWjAOMGAhSkwa7rvSR3YudBd8BvrXRQaFH6RIN3mNJ1LUN7eCA30LYYNrSXglMU7jiLvO2i6QJHjHLTU98Nf_\u0026ToNdxqYu=4\u0026aJKYcibn=4998988\u0026qKTNwYBj=\u0026jhRofgae=0,0\u0026pARUJxaq=\u0026QvybcOnq=\u0026dfywVTYF=1280,1024,1,1280,1024,0","fqdn":"xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5f0a25e4d3522d56d48ce7bc3e518fb","sha1":"86794caff58f7fee6e684c2ba7195f970a8d6f4c","sha256":"9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5","sha512":"a3a81801f516a4eb11f00d6f56dab0ed4b8a79219e6b4f5436993479f09dae08f14cffbab3327ff66fb39201d8eba1153ae7114f7705a01cc6f0edf840ef1616","ssdeep":"","tlshash":"789002801814116115d1500b8d5159d01259b1a4540801324446ca502dc7883a415774","size":44,"data":"","first_seen":"2023-03-07T01:17:45Z","last_seen":"2026-04-26T17:01:00.538177Z","times_seen":23531,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/new100.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a404d12258254e435583a10baa32a8b8","sha1":"a7bde7e90a122cc61a016e3e4f94339ca866d6c3","sha256":"32df889d6099045ed25a5e32fbf53de6fbc07ff4b82ccc3363b6d06acb254b84","sha512":"594cda55bee6617a0583494ea1a651335081d4b393aaafe10764b930b9095e7f36edd4b5c82520737f47276f8cca302fd39ed0a6bbd97d400734e3765c3ed6f2","ssdeep":"","tlshash":"1931bb2b2cf4203025f7600d171b6144b0529643251deeb87adc435a3f94d6d8e76bed","size":1473,"data":"","first_seen":"2024-12-27T13:53:56.121207Z","last_seen":"2026-04-24T16:13:40.005092Z","times_seen":718,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a2e2ae70d864d0672a59dcff68b72c05","sha1":"e4646ac4e676291de8fe8021df26be810f04b18d","sha256":"426bcf9f6a00ed4d2a48b0b6b881efd626b35827ffa209aea3d9016a28e8cf1c","sha512":"e21cc17bb82f02c8f096bf22453e6d7a8a7d578d04d6182f31d510b4ac055e1faefb748c9b460c6300cae3129befa944955f4189378f6b50f5da8d031dca13da","ssdeep":"192:oZfOsxIOKqF8TCUs24ab2EdCgetbHL9TIX:oZb7Ka4nVX28CggfOX","tlshash":"7ed1faa13353ae5a43598cd110ff5951f03a57493144c898f9fd6dc7296268492b2f3e","size":6515,"data":"","first_seen":"2025-04-26T00:38:31.369686Z","last_seen":"2025-09-03T09:02:37.53853Z","times_seen":180,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"naupsakiwhy.com/401/7850681","fqdn":"naupsakiwhy.com","domain":"naupsakiwhy.com","tld":"com"},"ip":{"addr":"139.45.197.107","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"naupsakiwhy.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Jun 2025 05:08:27 GMT","end":"Wed, 24 Sep 2025 05:08:26 GMT"},"fingerprint":{"sha1":"B0:D9:C3:78:F0:06:66:7A:08:8A:DD:3C:63:22:64:0F:9A:AB:92:05","sha256":"05:41:93:81:C7:AD:3F:07:D7:86:8D:4F:FB:F4:D8:93:00:11:C0:EA:CE:02:99:7D:20:C2:76:DF:4C:B3:98:AB"}}},"request":{"raw":"GET /401/7850681 HTTP/1.1\r\nHost: naupsakiwhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 0c0a56cf0b835d04977355a6c5f41211\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: max-age=86400\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=0302218b73cb454ef4e1c417976104c4; expires=Mon, 10 Aug 2026 23:01:44 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":168485,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"03ea9979bf61daff17a681002575d960","sha1":"f92e23e554f094e0afef3b81eddf6e617961ebd8","sha256":"d919c448c9dbccd79fdd2b71c793e1f23a92e36a91fb79676a502696d4bdb5b1","sha512":"9698f867ffd96697ca1f01de609903804789485f4e4a426eaad2af29b0c93b50246b06091766de4dd37aac4026c3f1bc9ee1d5582760dac0b8e3689e892d2cf5","ssdeep":"3072:dsRWNIlg888zWt+UMBzP/p2nZorMRB6/h1ICnr1mbmzgNWa6htEEi:aRq+H88zWt+UMBzP/p2kMn6/h1IOHzgR","tlshash":"d8f3d888b282b1551d635134322fd24eb5dbab609c4e8a80d1dae1b27f3706ed377dd8","first_seen":"2025-08-08T18:22:39.04341Z","last_seen":"2025-08-12T08:18:26.3726Z","times_seen":42,"resource_available":true,"data":null}},"time_used":206,"timings":{"blocked":56,"dns":1,"connect":29,"send":0,"wait":56,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"naupsakiwhy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/polyfills.webvtt.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:45.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/polyfills.webvtt.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D; a=muflbXBk7aKdW69xpTzQldcZ78IfgiKX\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:45 GMT\r\ncontent-type: application/javascript\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=tBfT8ZOmMNINKKBTavDf%2Bntklf2CJXIyKq39rvchcxo6ieRW33U%2BYMN5DuMcROJIlRwRiUJgiXqUWoub%2B8xIFlOr9iKab%2BratNopv95Cr9A%2FgUNFvlsSXdGSEanVCA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 07 Jun 2023 06:30:47 GMT\r\netag: W/\"2a27-5fd8446b4edf7\"\r\naccess-control-allow-origin: *\r\nage: 1291\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96d31df07e90b4fa-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1665\u0026min_rtt=0\u0026rtt_var=714\u0026sent=260\u0026recv=190\u0026lost=0\u0026retrans=0\u0026sent_bytes=225411\u0026recv_bytes=11875\u0026delivery_rate=7992281\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=17608\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=1590\u0026inflight_dur=135\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10791,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10393)","md5":"b3e139c07aac361115e8ec41bde7d2a5","sha1":"0c3fc8d31887dafb86ba778da788ece5cbf76f18","sha256":"1ff5585bdbea001d37f3647975a645f0594090f070915831286de90dd45949d5","sha512":"0b2a16b1b9a63ab3561c9d7e63a2a797781f6abc09c304f28530c6a8c87224083c708989534552d11948aeec3aabb36a943173fbe651c64810d56f08f2bc68b7","ssdeep":"192:gl1026oqO7yNPJUsnOGhcAsej4Du/YVLEO1mTLSRavTdU94o9pD5i:E10tvJN6cC3RPVUTLKKTdObpM","tlshash":"7222f690b2f5609d8281e49f456f0284e2399630fe8bc4cef550c5f9dc74a8a127ebb9","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-24T16:13:39.999813Z","times_seen":825,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re:2087/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.721Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.lulucdn.com/3w7nq3isc1fo_xt.jpg","fqdn":"img.lulucdn.com","domain":"lulucdn.com","tld":"com"},"ip":{"addr":"104.21.31.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.302Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lulucdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 01 Aug 2025 09:29:08 GMT","end":"Thu, 30 Oct 2025 10:27:32 GMT"},"fingerprint":{"sha1":"D9:E6:AB:5C:B3:C0:95:1C:8D:9D:CD:A8:18:4F:4B:78:54:E7:06:21","sha256":"CD:6F:8D:65:B3:CA:5C:1F:7F:8A:F3:8F:21:1C:7C:91:4F:6F:E0:22:72:88:C5:9A:CC:91:AB:A2:33:90:28:F3"}}},"request":{"raw":"GET /3w7nq3isc1fo_xt.jpg HTTP/1.1\r\nHost: img.lulucdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 148920\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Sat, 09 Aug 2025 21:29:12 GMT\r\netag: \"6897bda8-245b8\"\r\nexpires: Sun, 17 Aug 2025 19:20:36 GMT\r\ncache-control: max-age=604800\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncf-cache-status: DYNAMIC\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oXSidFID%2Bh8A3bV%2FTknKXEPSEy889XG3gDnlf70kiPvf4%2FDx0c44aUZaR6aQnOVcfHBtz4p09uVkNdnJZ4QLWlPabRuFDEx4AgSH2yk%3D\"}]}\r\ncf-ray: 96d31de7f8495697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":148920,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x679, components 3","md5":"1f46205ec458b7d25acaf8f52d3c0c38","sha1":"ae5a51460dda39634cad746569e92e8db68a659b","sha256":"9ac84e52130fb95d1a3e076addbf793b49091ec383d62be54c5ab62b27b790ca","sha512":"dffe9e7c821444fc49c7668a964b6fa9e24740b57810270a6d644cb2b924868079c0dde220c34c862bd6ef0fb9efef655e0b8d184469fc3e69dcd7983aeca2f1","ssdeep":"3072:uFKaXpuEE2dY5akeynwZjp/ZhvxsrPLWsttcgzFk3kMVkQo9:bxE3qatN/7vCPSpcjM6Qo9","tlshash":"3de3123a72ab544242db49f682b35ad8d6e017a7af4c73fce35a1c8f8c686817314d64","first_seen":"2025-08-10T23:02:14.506063Z","last_seen":"2025-08-10T23:02:14.506063Z","times_seen":1,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":12,"dns":1,"connect":1,"send":0,"wait":77,"receive":125,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/aas/r45d/vki/2003354/78215968.js?var=cpu8600","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.306Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /aas/r45d/vki/2003354/78215968.js?var=cpu8600 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Mon, 28 Jul 2025 14:30:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68878973-23bca\"\r\nx-js-ab2: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146216,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b42f3b460353c3a2cb85ff07759021bb","sha1":"ecd1159ed91eb1fbcb19c33fb25a4a45d89ac3b3","sha256":"2f4dda39157f1c8ac8d3f280890697ee476f4c0d96c98c314e374d93b6586c3d","sha512":"dde7ed9216013a0ba16476faa1c08bbe74ff09de7c353149bb9b8b6c0611dd6728b72bc696a239028677b5917378cf77f426312733ef1abaf2e80d161321dde9","ssdeep":"1536:1kFuyLtoCqYqcL5y6PjBg7YgLXBDkWfkCXgllxaJoXJfCP5yvPGJ7FyJaPRx3:1NioHYLY6Pje7DdelCPVyAx3","tlshash":"98e3b7bd7a826c720172a13ba83f570e996e58d7a4cd4410cee3c1c8fe69507d191fba","first_seen":"2025-07-30T11:16:32.247961Z","last_seen":"2025-08-10T23:02:14.50768Z","times_seen":3,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":66,"dns":3,"connect":17,"send":0,"wait":35,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 15:50:14 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DlLDZUERI4r%2F0wsVzd8nIPpQ7X%2BofkZMpETGO2FKAdqSFW8kgSXMZL8urbiyPp8CierYL44fuA9lnbUaIcYYKeV3CqGH0L7gkw%3D%3D\"}]}\r\nage: 4151\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"26-5cbe26bbab980\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7cea756cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"99eccae6afa72c589ae54b5c3890282a","sha1":"0f102f8f5b556635de65d16cf70fa8269c6761b4","sha256":"b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3","sha512":"01bc413c1695c125b8ab111c60974da99989b618fb674631d998db519996966c569503efb97a3c760b50069e87b6b42891985b00c64810a43935ada075a19d24","ssdeep":"","tlshash":"eb8000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e20c228c3a","first_seen":"2023-03-07T12:59:18Z","last_seen":"2026-04-24T16:13:40.046458Z","times_seen":2614,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b0mo765320tb938370241j0m2hmsl584","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Jun 2025 12:11:05 GMT","end":"Sun, 28 Sep 2025 13:11:03 GMT"},"fingerprint":{"sha1":"89:E0:23:FC:5B:0F:07:0F:7E:EC:B8:4F:B5:1D:3B:1F:6B:5C:22:0B","sha256":"66:DE:FF:43:09:A3:D6:B0:70:4E:47:82:C8:66:35:42:25:2E:23:CA:5A:1A:CF:A3:1E:23:A0:0E:D3:E3:95:95"}}},"request":{"raw":"GET /gid.js?userId=b0mo765320tb938370241j0m2hmsl584 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: ID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:46 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 96d31df2bf9156cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"63a72cb1f778f221f1ccb6f0c252ed8c","sha1":"a93aaafcff918c20c0a81cfa2a5394312a5f86a8","sha256":"25694dfed24e50f73c6cf7a950883a5bbce6e2eacd7ecbeaab00e75c54bf9610","sha512":"cdc38aab2f7488e33c00fcb1b5b3f496623a97c0ae406411be349aba867da734b8a71e840fb806b02af9f988d39b0682acfb70d3e6a838fa8d861d0915fc2741","ssdeep":"","tlshash":"bca02203002c0bcaa000888c3a82cbe20022800c300c0208b2c882022a8b80c0c802e8","first_seen":"2025-08-10T23:02:14.509685Z","last_seen":"2025-08-10T23:02:14.509685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.709Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /500/7938571?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=b0mo765320tb938370241j0m2hmsl584\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 42cbb0e92fec9de06e59c6d4de08a66a\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:47 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1875,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"0209f7fc19fbcd7154c074505503773d","sha1":"63f67c22448fa39c8cf049d8107ec50b3b679661","sha256":"d63f0b235def58e040973c6602b01c12a2aaea67dc3f78920170e5f9fd754e76","sha512":"1f8caec5d1116b1823b11d5d7d19e7d1093e097e7a0badb00c24514fb4ead447db466d5ff0d236ad070aaa4d7d2c9f3158ee5c70ab78a7b7052eb7301b47988c","ssdeep":"","tlshash":"2b31293ee85f17327328c14c8039290f6387e988a839657ca589d5caefa42a70410138","first_seen":"2025-08-10T23:02:14.510649Z","last_seen":"2025-08-10T23:02:14.510649Z","times_seen":1,"resource_available":false,"data":null}},"time_used":126,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":126,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 08 Aug 2025 08:13:09 GMT\r\nexpires: Sat, 08 Aug 2026 08:13:09 GMT\r\ncache-control: public, max-age=31536000\r\nage: 226131\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-26T17:08:00.589782Z","times_seen":763226,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/1fa85af6ff3a027433e03507c0ac9793.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:58.375Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/1fa85af6ff3a027433e03507c0ac9793.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:58 GMT\r\ncontent-type: image/png\r\ncontent-length: 511790\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Yh8vJaTkKbyvjB2l9ervetm%2BN7UnzDJUDm9N27mZpKFSVvHTka%2F9PCJ3Tl34DV%2F%2BVwmwb82wLO0ctMw8f%2FN2NfzgkR9vu9IwV7bnkcwVTJ6CvG9Dhn62DcQwKg%2Ba6wjyfwOuXA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 26 Feb 2025 10:36:10 GMT\r\netag: \"67beee9a-7cf2e\"\r\nexpires: Mon, 11 Aug 2025 02:17:24 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 74673\r\ncf-cache-status: HIT\r\ncf-ray: 96d31e3fdc36b4f3-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=2178\u0026min_rtt=0\u0026rtt_var=326\u0026sent=797\u0026recv=784\u0026lost=0\u0026retrans=0\u0026sent_bytes=558880\u0026recv_bytes=41530\u0026delivery_rate=20979552\u0026ss_exit_cwnd=14929\u0026ss_exit_reason=2\u0026cwnd=31549\u0026unsent_bytes=0\u0026cid=03ab9485604aa66b\u0026ts=10548\u0026inflight_dur=161\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":511790,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1300 x 1300, 8-bit colormap, non-interlaced","md5":"1fa85af6ff3a027433e03507c0ac9793","sha1":"0ab07ee3e926edae9dcc8d2509e63cadb49257bd","sha256":"fe1fda8ed95c32a5fd5d13b59af3d1233f8295ef395ff6dbaae7a248230e631e","sha512":"20717f0c24fdeb1e72cb2ab71e6d46d47a11ddac7c93160c9e820637ade0eee08c4341efdd9af8e167fa7f270213843b9e9b14ef1cffdfc614c4461936d46772","ssdeep":"12288:BdZlgbXiS99VTzFANIEGxdCwmD+wiAkMG6/XIJQiJu:BZgbSS99VdAGxdCwUXkJ6/XIJzJu","tlshash":"20b423e5a6e0c3adf019c544b3724214fd798752fafef9399ba0de5e240ea8e14c1718","first_seen":"2024-12-23T13:07:56.106853Z","last_seen":"2025-08-14T22:13:05.102821Z","times_seen":46,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":12,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/pop.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.303Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/pop.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 14 May 2015 19:57:56 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lJ%2BWIdKDxYbiJJHvicEG0VempVMpFMALPCb8F5uLAbM6hPFMa%2FME6UBHC4NqH5pgRMHcO2e9r%2FE%2BZMZXbXSXZDllkpB8a%2F%2F01A%3D%3D\"}]}\r\nage: 4151\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"24-5161024c91900\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7ceaa56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"2f8fefc6a5aed3327c395f43db6be62d","sha1":"8594728c9e75e88e1a759e8c8466df832323d963","sha256":"ff687e2177537cc8e021014af056c22a44036a19c9101350dedf64a6666d47ba","sha512":"3a7708be2e5469b92a3ad6d3de28fc5edb20586011871e4cf799135037b6f2d162f372913364adce6f7b87ff1cff25bbbbaa5a6488348e4a41938e6b43ab94a9","ssdeep":"","tlshash":"f28000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e00c228c2a","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-24T16:13:40.021636Z","times_seen":1083,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ak.beltsflusker.com/rDulnwma4CCtiWZF/84626","fqdn":"ak.beltsflusker.com","domain":"beltsflusker.com","tld":"com"},"ip":{"addr":"23.109.170.255","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ak.beltsflusker.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 07:59:02 GMT","end":"Thu, 23 Oct 2025 07:59:01 GMT"},"fingerprint":{"sha1":"6D:DC:BB:60:47:86:74:81:29:0F:5E:CA:31:F5:66:3B:AE:EE:F9:B5","sha256":"24:1A:A7:67:C8:4C:76:E4:DE:0F:E0:AD:31:5A:D0:EB:DC:CA:3E:E5:CF:82:DC:06:C3:0A:27:A7:BA:F7:8E:56"}}},"request":{"raw":"GET /rDulnwma4CCtiWZF/84626 HTTP/1.1\r\nHost: ak.beltsflusker.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sun, 10 Aug 2025 23:01:44 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWdcFnYQDeASKQHj1xSv4SAr9g3Wh3ZQKensbE32bTH6T8TwvKB7g78kZ4Sdv8MRY13Z1U3VlPXa8GoaubZtyaLqSVc00NbiTW2%2F5sJCNcNpWbmxv9wiXmRQZOfajFpTh0am%2F5qr0oSLEg%2BFKZIhXJ5YM6WD0sZEpQkSKr4T0VRqa9JcT%2FEMbhOy5dlkql%2F0Sgd6KMD8jfZNKuGV%2BQcDKPE883N8Wbidt1l6KxEc8Gy4I%2FgtOI7c0a%2FONVNB2tfoG6EX0%2F%2F73ODxYiUTQLkdCrO07mR%2B4dk3m; expires=Mon, 11-Aug-2025 23:01:44 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjA9l6BadnCbbYMXXgFZhEDwxyZGfu5%2B2zxLp5XKcVpAjYTkrrM6yKvDnl5qkBPcNuBRwfdin8PX5AHF0ewd9h0wUrWyOzi8kes%2FgYZbM%2FWfLJe7ByNuABeWjfDzT72l%2F4KmjSBo2gGh3uqQC%2B9%2BwFe7x3U; expires=Mon, 11-Aug-2025 23:01:44 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-26T17:01:00.590711Z","times_seen":15793,"resource_available":true,"data":null}},"time_used":139,"timings":{"blocked":53,"dns":3,"connect":17,"send":0,"wait":22,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.core.controls.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jwplayer.core.controls.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=DN64p4VF3nHLIAb0i09TUI087QKFsbkeuVe4yldrCIjh2Xc2Xrj1COBzz54XAvfZ%2F7AKKdR2247XNggj8pdOc4bNbPqqyMHAVN%2FzpUfJa6lWHDCVaByBZ2ckBFZY3A%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 28 Nov 2023 20:20:44 GMT\r\netag: W/\"5167f-60b3c274227f4\"\r\naccess-control-allow-origin: *\r\nage: 1290\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96d31de99e32b4fa-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3703\u0026min_rtt=515\u0026rtt_var=3540\u0026sent=96\u0026recv=145\u0026lost=0\u0026retrans=0\u0026sent_bytes=9648\u0026recv_bytes=8549\u0026delivery_rate=497231\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=497\u0026inflight_dur=58\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":333439,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"a8889c5f9e2492b9c3d6f73b5bad08fe","sha1":"6b942336401bc4ecd598f91fcaa7db96c889e6b4","sha256":"43502aabf4a1ce166cb2a84a177579663aa32e1ea7db8666bc67534a53a0f368","sha512":"e09de17c7ddc72248e2e337de5be46e9722d7afa26502a6f49c7358074b865ed65288f1ab3048e639dc96c2695dfbe32443560ab91d3497519a787e34352767a","ssdeep":"6144:YhIMSOAqxEXf1nKFEGwjDwdWoYoQHwmj06n:ewOAqxEXfpKFEYdWJ0g","tlshash":"d3641a39b142323556d7a2a9625b4609733b8085b5068aacff39e9d84c7d48f30f7fb4","first_seen":"2023-12-06T18:00:17Z","last_seen":"2026-04-24T16:13:40.04288Z","times_seen":814,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/check.html","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /check.html HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Mon, 21 Jul 2025 07:22:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687deab3-39e\"\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":926,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"088dba8e97eede53134c93219f7ebbae","sha1":"adb707654d1fe0af7d0d7a9f55660d22bd3625e4","sha256":"6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff","sha512":"23a1f87731e8aee4658993cd1ce35ec179fea80b89bf52aca7634488f1bdfcf88b9cabca4859481357a9fee06cbb49df64bbe0878b1dae0e5df4fa34003c6d80","ssdeep":"","tlshash":"6211d04934e1684c1127a6301597a2183c32a40315cbd949fb9cd7301f815a7dc596df","first_seen":"2024-11-22T16:59:41.974716Z","last_seen":"2026-03-04T10:11:28.020186Z","times_seen":13721,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/#0.1744949567522317","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.730Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: c.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: text/html\r\ncontent-encoding: br\r\ncache-control: public, max-age=2678400\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\npermissions-policy: ch-ua=(self \"https://adsco.re\"),ch-ua-mobile=(self \"https://adsco.re\"),ch-ua-full-version=(self \"https://adsco.re\"),ch-ua-platform=(self \"https://adsco.re\"),ch-ua-platform-version=(self \"https://adsco.re\"),ch-ua-arch=(self \"https://adsco.re\"),ch-ua-model=(self \"https://adsco.re\"),ch-device-memory=(self \"https://adsco.re\"),ch-downlink=(self \"https://adsco.re\"),ch-ect=(self \"https://adsco.re\"),ch-rtt=(self \"https://adsco.re\"),ch-width=(self \"https://adsco.re\"),ch-viewport-width=(self \"https://adsco.re\"),ch-dpr=(self \"https://adsco.re\")\r\nlink: \u003c//6.adsco.re/\u003e;rel=prefetch;crossorigin;as=fetch,\u003c//4.adsco.re/\u003e;rel=prefetch;crossorigin;as=fetch,\u003c//adsco.re/\u003e;rel=preconnect\r\nexpires: Wed, 10 Sep 2025 23:01:46 GMT\r\netag: W/\"C6pTuopbpe5oM6YpwwANTg==\"\r\ncf-cache-status: HIT\r\nage: 96081\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 96d31df70a9656af-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78356,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (689)","md5":"0baa53ba8a5ba5ee6833a629c3000d4e","sha1":"d5de057adc1eaa7888ca975199cf0a116b923aa0","sha256":"0679a036a8577f9592e070f780d06c6bb427a8f15f58008bdeaae2277ce607b4","sha512":"a7e5a993e1e12e7d73d98ab3834fb488a1e3ce361108f3f4583cde7e4454e97768303649ae9fa22bce7cce65aed74d081b69317f169c18dc49e8093ac4d3a60b","ssdeep":"768:dsmoTk+UwrAjMo3m4MSHRJtlgfWivYb7QL19/lw3mcIwT2vB03c9MZjyQoTHKePc:pok3m4bHRDuWWL19/lw3mcKJpAGPKmjo","tlshash":"81734ba97162702a43b238e9967f5311f1ba06902c4690d0d37dc8643c74edf927bb9e","first_seen":"2025-06-14T18:46:22.558225Z","last_seen":"2025-08-28T19:40:38.269373Z","times_seen":3673,"resource_available":true,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/1fa85af6ff3a027433e03507c0ac9793.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:55.418Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/1fa85af6ff3a027433e03507c0ac9793.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 511790\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=surRwBTKDzfjiCPMwDuXZ9SaTkvB5U3jXuJviThU%2FbtfuTTNuC%2FPj3cOKxSuMFJLMb37G%2B4HeM2owWmLn%2BNYEorQO4vbZhvrp%2Bb0ofKROLwex86Zhn6zhxQIgMPVXsfOa164ww%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 26 Feb 2025 10:36:10 GMT\r\netag: \"67beee9a-7cf2e\"\r\nexpires: Mon, 11 Aug 2025 02:17:24 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 74670\r\ncf-cache-status: HIT\r\ncf-ray: 96d31e2d6b45b4f3-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1266\u0026min_rtt=0\u0026rtt_var=1060\u0026sent=409\u0026recv=642\u0026lost=0\u0026retrans=0\u0026sent_bytes=34936\u0026recv_bytes=34439\u0026delivery_rate=2390387\u0026ss_exit_cwnd=14929\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=03ab9485604aa66b\u0026ts=7600\u0026inflight_dur=86\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":511790,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1300 x 1300, 8-bit colormap, non-interlaced","md5":"1fa85af6ff3a027433e03507c0ac9793","sha1":"0ab07ee3e926edae9dcc8d2509e63cadb49257bd","sha256":"fe1fda8ed95c32a5fd5d13b59af3d1233f8295ef395ff6dbaae7a248230e631e","sha512":"20717f0c24fdeb1e72cb2ab71e6d46d47a11ddac7c93160c9e820637ade0eee08c4341efdd9af8e167fa7f270213843b9e9b14ef1cffdfc614c4461936d46772","ssdeep":"12288:BdZlgbXiS99VTzFANIEGxdCwmD+wiAkMG6/XIJQiJu:BZgbSS99VdAGxdCwUXkJ6/XIJzJu","tlshash":"20b423e5a6e0c3adf019c544b3724214fd798752fafef9399ba0de5e240ea8e14c1718","first_seen":"2024-12-23T13:07:56.106853Z","last_seen":"2025-08-14T22:13:05.102821Z","times_seen":46,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":63,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.xadsmart.com/psvg.connectable.min.css","fqdn":"www.xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"95.173.205.14","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1376341044.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Jun 2025 06:29:51 GMT","end":"Tue, 23 Sep 2025 06:29:50 GMT"},"fingerprint":{"sha1":"A6:BD:44:5B:F6:EB:AE:48:79:85:5D:6B:31:98:F2:AA:06:FD:47:6D","sha256":"96:36:CA:FD:DC:90:04:16:03:03:D9:4A:CC:C5:82:B0:B6:DB:21:92:7F:62:C0:90:C7:0B:70:EB:D4:49:2C:B0"}}},"request":{"raw":"GET /psvg.connectable.min.css HTTP/1.1\r\nHost: www.xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/x-javascript\r\npopads-node: wb8\r\nexpires: Wed, 13 Aug 2025 18:31:54 GMT\r\naccess-control-allow-origin: https://luluvid.com\r\nlink: \u003chttps://xadsmart.com/\u003e;rel=preconnect\r\ncache-control: public, max-age=604800\r\nx-77-nzt: EwwBX63NDQH3JIUFAAwBuUwKEwH3FQAAAAwBJRPCVwG3BQAAAA\r\nx-77-nzt-ray: 2a494a156f5339b2fd24996809d51128\r\nx-77-cache: HIT\r\nx-77-age: 361764\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: osloNO\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":41925,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1568)","md5":"0c7b8e71dd6dbcb187be03725baa9050","sha1":"e68b0fc3207c57b92ecbac97c6957854b2d3c63d","sha256":"574a161c1d835611de415142ae259d85ebef2c91d05c767405e4a661074fbf0a","sha512":"a5fd2953497483be6c5a771b778d4532985b0b008c3eddf0de75d610923e6463a38ca65bb24628208a996a69d62f0afef9ed69047d44a5d824af8ecc8916111b","ssdeep":"768:bt9rqAYKKOZzFQ9JsQU+YDngZGihfzmMzhYrTsAysncCWcf5k5sigCeWCntlqo7/:bbtZzFQ9JsTgZvfzmMzhYrTscphZd","tlshash":"da133aaab286282601e742b9513eb316b23305167812d458fcb9cdf96e3ddc6117b7fc","first_seen":"2025-08-06T23:45:58.502343Z","last_seen":"2025-08-13T09:20:42.210232Z","times_seen":56,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":4,"connect":1,"send":0,"wait":1,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/settings/491223","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.762Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /api/settings/491223 HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1be64b6d6652effba7dcf744e90def6a","sha1":"d9fbc7d1fa49fa4733f90a3739882d63972c2352","sha256":"72d79d0ad9a70ef53c1bab65c588d44bffb1a1b5aba0eb2f9f6a886c4c3aec4f","sha512":"ff1aee5b5d4ba25f4f78a0ddc80cd878856815c1ded88b32370c72bff242e73522e6aefb60fa5e53c434f10d2611dab7679152edf9321edc2b656e0265ef7006","ssdeep":"","tlshash":"408004c00dc1545410c010f4434043150103140f535c3304d41d1701147f4d17030150","first_seen":"2023-04-06T10:58:14Z","last_seen":"2026-04-26T13:52:22.832067Z","times_seen":7340,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":64,"dns":2,"connect":26,"send":0,"wait":27,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tzegilo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 15 Jul 2025 13:03:10 GMT","end":"Mon, 13 Oct 2025 14:01:42 GMT"},"fingerprint":{"sha1":"63:44:F2:D8:6F:1F:20:09:BB:64:B8:65:D7:08:7F:9F:70:FD:23:6A","sha256":"69:42:0C:97:BF:80:90:D6:F2:1C:01:38:E2:96:21:71:C0:69:91:32:F8:1D:3D:97:80:B1:A0:E2:5B:FB:44:02"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: tzegilo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 11 Jul 2024 10:23:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nlink: \u003chttps://flerap.com/\u003e; rel=preconnect; crossorigin, \u003chttps://fleraprt.com/\u003e; rel=preconnect; crossorigin\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iTz%2FH%2Bu28PNHGidxLjJf8w7tD4BFJwSoIMDzTezxfPm06fYBcTyM6gLhEZS93uoZL%2B5GDkep9A1JhUCyYYlpxNW451YWUMejUg%3D%3D\"}]}\r\nage: 2428\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"668fb2be-45d7\"\r\ncontent-encoding: br\r\ncf-ray: 96d31df91e01569b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17879,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17229)","md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-26T16:33:52.167303Z","times_seen":6585,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":34,"dns":2,"connect":1,"send":0,"wait":8,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zoojoujoaseeh.com/500/7850681?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"zoojoujoaseeh.com","domain":"zoojoujoaseeh.com","tld":"com"},"ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:50.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zoojoujoaseeh.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:25:26 GMT","end":"Sat, 18 Oct 2025 05:25:25 GMT"},"fingerprint":{"sha1":"30:29:A2:9B:3E:28:C3:21:31:20:F2:F2:68:4A:48:A2:7D:F3:1D:0B","sha256":"9C:EF:56:02:8A:83:02:95:40:13:37:EF:17:5F:90:80:65:60:60:0C:02:CC:95:D6:61:4B:30:10:A4:DE:CB:ED"}}},"request":{"raw":"OPTIONS /500/7850681?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: zoojoujoaseeh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:50 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":86,"dns":0,"connect":26,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"zoojoujoaseeh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"8nhvweaoetmq.s4.adsco.re/","fqdn":"8nhvweaoetmq.s4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"185.200.116.60","port":443,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.s4.adsco.re","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:54:45 GMT","end":"Thu, 16 Oct 2025 09:54:44 GMT"},"fingerprint":{"sha1":"83:C7:27:CC:F1:15:7A:E0:86:E4:6A:42:8E:8B:4B:D6:F0:81:BE:78","sha256":"27:48:A4:5B:60:63:6F:94:B9:90:BA:1D:D5:C4:1A:8D:62:BF:0C:DE:A0:7F:8D:B1:21:C4:4E:85:A6:3E:D6:33"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: 8nhvweaoetmq.s4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Tue, 03 Oct 2023 13:29:59 GMT\r\netag: \"651c1757-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":2163,"timings":{"blocked":953,"dns":205,"connect":248,"send":0,"wait":251,"receive":0,"ssl":501},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.min.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.288Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 03 Mar 2021 00:27:20 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x9UJKWwBjQUvPUhaHbfxdWK3Ha%2FEzKb9WfHdoJ5nirN5jYbqJHJ2jM7WsFA4OpvwXqHqMlcz32oo1MVnxePwp1GAsQKtUaULtA%3D%3D\"}]}\r\nage: 1690\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"15d9d-5bc96e9f7ca00\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7be9756cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-26T17:06:38.503853Z","times_seen":455481,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/xupload.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.290Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/xupload.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 13 Nov 2024 21:12:37 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z6%2F7JZCE%2FIQ29dndR9l0taBZtYG9p%2Fk4ZrpfbjbZwrIBitLgEGqUTMkY0Qk1HTMstobpuMjz3%2FehI1TeaJJRCmp2IM%2FwdbA%2FJg%3D%3D\"}]}\r\nage: 1690\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"2a10-626d1cb18bf4f\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7be9a56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10768,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"36d53d0f509d1642267ebb68b36165a6","sha1":"18534c979b23a500124e316d07db0f42e4d72bdd","sha256":"435e82278b5b2cf7980b025827e97d4edeb310b8fe31ef18f8a4535f36ba298f","sha512":"e45c543c6b137c234ca332cf4cda2ffae6af1d8fdb83e900e8508f7407914e96e67bb3b81b4bfd5dada10cceefa1344aa4e7c47125577d605ad2bc9634b77279","ssdeep":"192:7IKE9YGs1qGHh+6IsZWnrbll621w+4UWdRebMQ4WdReDyYQaQv7OsaaFg+BnqGQi:EGCi6BlV9GRebVReDyYS7OsaaF10fq3f","tlshash":"f122654abaa339912a7730390bbf52043b398407114ace54bd5c96c4af8452897fbbfd","first_seen":"2024-12-01T00:07:19.913985Z","last_seen":"2026-04-24T16:13:40.053175Z","times_seen":731,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/2jiGc77.js","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.307Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /2jiGc77.js HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 78252\r\nlast-modified: Tue, 29 Jul 2025 10:40:40 GMT\r\nvary: Accept-Encoding\r\netag: \"6888a528-131ac\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 254\r\ncf-cache-status: HIT\r\ncf-ray: 966c0810595b8d79-HEL\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":245039,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"391ea374a82e33b9213ca1fe96f7de97","sha1":"9280db857ce7da2980ea86c8c4a0b311d395e7e7","sha256":"ae9d1d5e57fe7921126efed4073a9befc127339403bee422c7e24cd0f1812e58","sha512":"405c925acf1f4a210de7c07dc6cf1b095108183a1e0a71f4401367bc3a9f9ff88e9a6ef30a2bbbf697524c8929bbcb72dff0469ec94999b2e655f550ea7870b2","ssdeep":"6144:bBdFoj94bqFVFs2KbCrSXvQEMZP4bobT4bDbgbFb4q8ebOyTM0Ia3Gvu5Fp4fRkj:g2bqu2kZRXit3p","tlshash":"e234d989b6c1b0b402e3a1b4052f551af277b944744ec4c1f729d9d1aeb9a0e9a37f3c","first_seen":"2025-07-29T22:27:57.713788Z","last_seen":"2025-08-29T23:20:58.983677Z","times_seen":190,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":50,"dns":2,"connect":26,"send":0,"wait":26,"receive":55,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/favicon.ico","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:45.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:45 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BH3OHVB1GJwxjffL9b9uHNU%2Fu%2FEr%2FwMmfAp3Ue7aon2c7OPucOetjW6sgK5P89LCTGdWFDPDKXB6ODcIrZFFY%2FAJ7y%2F3%2BmmspG3pn3k7saEX%2F8D3CuetSrosYIIaJA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Thu, 01 Jun 2023 18:52:04 GMT\r\netag: W/\"1c1-5fd15eeb261fb\"\r\naccess-control-allow-origin: *\r\nage: 9\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96d31decae4eb4fa-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1737\u0026min_rtt=0\u0026rtt_var=761\u0026sent=257\u0026recv=187\u0026lost=0\u0026retrans=0\u0026sent_bytes=224196\u0026recv_bytes=11197\u0026delivery_rate=7992281\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=17608\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=960\u0026inflight_dur=133\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":449,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 30x30 with PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"91a7665e37c2eeb49f2ee2fbc2e2d19d","sha1":"8f93836b06e6c2fac65258b7420c1df09ad58d37","sha256":"ff27be6c1a1eba3dc17d16581d680e8faba2536b565e90ad7c09c43d62495dd7","sha512":"2fd72836b18efe830a4f6efa526e01dbe267c65845c22272c90fe5df1a12266d266a34217bc89fb9e365ee009dc06a1a572744287b5b529ae8c87af20483d151","ssdeep":"","tlshash":"ddf0d4dbf5476008c3379ed5e46380cbf13cc1d50c9a704b0175791a4d453169391717","first_seen":"2023-08-28T18:58:56Z","last_seen":"2026-04-24T16:13:39.994008Z","times_seen":434,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":8,"dns":1,"connect":1,"send":0,"wait":0,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.960Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Jun 2025 12:11:05 GMT","end":"Sun, 28 Sep 2025 13:11:03 GMT"},"fingerprint":{"sha1":"89:E0:23:FC:5B:0F:07:0F:7E:EC:B8:4F:B5:1D:3B:1F:6B:5C:22:0B","sha256":"66:DE:FF:43:09:A3:D6:B0:70:4E:47:82:C8:66:35:42:25:2E:23:CA:5A:1A:CF:A3:1E:23:A0:0E:D3:E3:95:95"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:45 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:45 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 96d31dec2830569d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"63a72cb1f778f221f1ccb6f0c252ed8c","sha1":"a93aaafcff918c20c0a81cfa2a5394312a5f86a8","sha256":"25694dfed24e50f73c6cf7a950883a5bbce6e2eacd7ecbeaab00e75c54bf9610","sha512":"cdc38aab2f7488e33c00fcb1b5b3f496623a97c0ae406411be349aba867da734b8a71e840fb806b02af9f988d39b0682acfb70d3e6a838fa8d861d0915fc2741","ssdeep":"","tlshash":"bca02203002c0bcaa000888c3a82cbe20022800c300c0208b2c882022a8b80c0c802e8","first_seen":"2025-08-10T23:02:14.509685Z","last_seen":"2025-08-10T23:02:14.509685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":21,"dns":1,"connect":2,"send":0,"wait":32,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/get/2003354?zoneid=2003354\u0026var=cpu8600\u0026jp=_cltmgfckejegcjivtctgdt\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=u9hSeN3pVUqV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=3vGzkFDaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzN3N25xM2lzYzFmbw\u0026afid=7433356351950336\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /get/2003354?zoneid=2003354\u0026var=cpu8600\u0026jp=_cltmgfckejegcjivtctgdt\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=u9hSeN3pVUqV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=3vGzkFDaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzN3N25xM2lzYzFmbw\u0026afid=7433356351950336\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\nUID=2508101801e22ada3d82e844fdb50ddb310b; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3526,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3526), with no line terminators","md5":"51b208acf1042d5b51279c3ad0e059c5","sha1":"c089784c8a6d97e55a1f1ca4a99948cc17c2b291","sha256":"6dad2ae013aa0722a7eb821b935318ed47afcc909d492d8bdd003869ea55dfba","sha512":"86f8f1f5a22382f65fdacb74e347e962df98829bf44426050fd59e5926c2c50f9a0eb56917c2250cfdf032fc7dc78d0e277f92b4c17877053ef75448f4db3958","ssdeep":"","tlshash":"aa71a75762eff2e6c373886aea79be7327450d5c03039e241152a208a381bbf43451ba","first_seen":"2025-08-10T23:02:14.519731Z","last_seen":"2025-08-10T23:02:14.519731Z","times_seen":1,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re:2087/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.719Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-10T23:01:43.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /e/3w7nq3isc1fo HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nexpires: Sat, 09 Aug 2025 23:01:44 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MGEWBlHkQLc9bPz5vJus2ZMJhQyllGvJYb7zgmH6lgGUt7y8w6XgQeaq5vJWRyMlLQpI88hNgateEZQLKURXOaG%2B%2BXXST3Z6BA%3D%3D\"}]}\r\ncontent-encoding: br\r\nset-cookie: lang=1; HttpOnly; Path=/; Domain=luluvid.com\r\ncf-ray: 96d31de59cb556cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":45864,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (28063), with CRLF, LF line terminators","md5":"ab93022a13fe7b959f9a222758dbae8e","sha1":"3fecb094a1afc4df2304a0fc6ddec39bd0b22fd0","sha256":"dccaf74fa8e73133a5800d200fbfa322de798c2a098b02780b2b6d0769faa07e","sha512":"6f3495fbcad79b32f6e784b48d3181aa674d55387d582d20c23660e313dc0c33274db4ecbd6988ea7269bda55f8dad935f6f7b5f406b136513bfb147ff087d07","ssdeep":"768:YMOX/hSxWNRK72rdQ80GaIoQPzahq/AMOejtAZb7Ka4nVGpdfOo:ivh5c72GGI7MOejtceZo","tlshash":"cb2339a7355eb816832a61b010ff2984a0ad44c1714f8e7cf768e4263ad767485f7ef8","first_seen":"2025-08-10T23:02:14.520914Z","last_seen":"2025-08-10T23:02:14.520914Z","times_seen":1,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":20,"dns":0,"connect":1,"send":0,"wait":105,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b0mo765320tb938370241j0m2hmsl584","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.000Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Jun 2025 12:11:05 GMT","end":"Sun, 28 Sep 2025 13:11:03 GMT"},"fingerprint":{"sha1":"89:E0:23:FC:5B:0F:07:0F:7E:EC:B8:4F:B5:1D:3B:1F:6B:5C:22:0B","sha256":"66:DE:FF:43:09:A3:D6:B0:70:4E:47:82:C8:66:35:42:25:2E:23:CA:5A:1A:CF:A3:1E:23:A0:0E:D3:E3:95:95"}}},"request":{"raw":"GET /gid.js?userId=b0mo765320tb938370241j0m2hmsl584 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: ID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:46 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 96d31df28f6356cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"63a72cb1f778f221f1ccb6f0c252ed8c","sha1":"a93aaafcff918c20c0a81cfa2a5394312a5f86a8","sha256":"25694dfed24e50f73c6cf7a950883a5bbce6e2eacd7ecbeaab00e75c54bf9610","sha512":"cdc38aab2f7488e33c00fcb1b5b3f496623a97c0ae406411be349aba867da734b8a71e840fb806b02af9f988d39b0682acfb70d3e6a838fa8d861d0915fc2741","ssdeep":"","tlshash":"bca02203002c0bcaa000888c3a82cbe20022800c300c0208b2c882022a8b80c0c802e8","first_seen":"2025-08-10T23:02:14.509685Z","last_seen":"2025-08-10T23:02:14.509685Z","times_seen":1,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=u9hSeN3pVUqV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=3vGzkFDaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzN3N25xM2lzYzFmbw\u0026afid=7433356351950336\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"POST /solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=u9hSeN3pVUqV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=3vGzkFDaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzN3N25xM2lzYzFmbw\u0026afid=7433356351950336\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: CHCK=1; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\nUID=2508101801a9db7b0a31444f489a28f4b7be; Path=/; Expires=Sun, 13 Sep 2026 23:01:46 GMT; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-04-26T14:52:42.845711Z","times_seen":21090,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/5e98d2fe2cfc8d2327421439e083c6c9.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:55.370Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/5e98d2fe2cfc8d2327421439e083c6c9.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:55 GMT\r\ncontent-type: image/png\r\ncontent-length: 7479\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=5DW5AyepqJfFEfi%2BxaJSr01AmiE8PiSTRiLfp4gUYgNHWnUdO%2FsHPEhFVe8LKDfLSBiBQRoTear97O4ciOBRei4xCKD9385OgH%2FEFkKAOblPl4mJdgxXgMpsqbR%2FPu9oepFDSg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Mon, 24 Feb 2025 10:55:12 GMT\r\netag: \"67bc5010-1d37\"\r\nexpires: Mon, 11 Aug 2025 04:32:20 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 66574\r\ncf-cache-status: HIT\r\ncf-ray: 96d31e2d1b43b4f3-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1562\u0026min_rtt=481\u0026rtt_var=1286\u0026sent=402\u0026recv=638\u0026lost=0\u0026retrans=0\u0026sent_bytes=26538\u0026recv_bytes=34003\u0026delivery_rate=322980\u0026ss_exit_cwnd=14929\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=03ab9485604aa66b\u0026ts=7550\u0026inflight_dur=62\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7479,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 436 x 436, 8-bit colormap, non-interlaced","md5":"5e98d2fe2cfc8d2327421439e083c6c9","sha1":"c6f13b2e1b018f9c0704948ba302aa619129fab6","sha256":"adbdcbabf5a54a5b47faebd4ce04f0dcc4d77d39121369eecf4d1f9e22e949af","sha512":"d91d3132d12e3ebb16d6268e61ea33fd43fa37f0599f4f5910b7d59beb7acdf23e23abfc682c498b511fbc3962fa23a5caa858718c651a807deeb52e21625084","ssdeep":"96:f4raBAZ+wazr8DmIR1Y+THGuE/GRLJel7m1Wzri0MuyCg5NxD0BhMngw25nTcw2F:OC8KAO2rEeRLJWq1Wzri0MJJXE4HvS0","tlshash":"f6f16dccdeda4fd6cdcdb8b655c44e8182d33015469beb876201a13a94493bc1b6a25c","first_seen":"2024-12-25T21:12:17.07294Z","last_seen":"2025-08-21T21:34:41.837475Z","times_seen":99,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"zoojoujoaseeh.com/impression/pXZaG3M0Li9eyrzTllzHp3XqPCCGdCNK_P8gHlzhQrD6O6xVeM2a6RlnI94-IdbDr1IIyAnr5xqIRGgBOMdX0i7IPpngU6FojDoFYgvsKd0i2zPCh8wJqquqKhbrGgiIxrmHlvAyabYzgoNzD5taktDXg5W4whT-ODaeDIfhkJeROMwCwJhbQgN81of2Skg7M7wKQwO-WRwCRylWEqCSi0sS4wKQsItyVeUxCuNWZgbdmplSDehzt4xtMsyQrE16GKo4p-IMsrbpE4tKSGhVGnjudnRIptWNNnAr59VoWZ8wUvIP3gS2t5d7tVWxKrWooVXioS_RVCc5dS7bElO3SRC7vJhXG1G2eC_vR2qaYz1swf_yji0cNGstPx7DcCHs866Gk3_y8TVsdFeB9g8vh_JGtepSpoXeLYzBv0s4WAfEiZHlQ06CHCC82Rw6RaS9RftvMSt1P2LEb81RYV0ATmXVqc3a5OTjhzz_ToZVkvxUgTRGxgxwJI9-CZvx5MT9hhnICrW0laCNteR5d4gdf1KznAkJ32TVXHcHDm9OTu1PJxveutoGYBcgtuZ0vsxP6D4eU4xpbpegaHLn4qBXvJmLutbNVVMRlb49lnjfyEriTGg2QScjXv8q103GfoZKIbs_Na0CwoUgI47xaQni8sNMy7uWRLHPk8ISAgvSyDTVRyBt48tlwc7uYMVx2UTteR06Z5J5_QS1vNCi8W_dETOVwbvLhNVZ8dyZwkJJOZpggLWDF9Cpc3pMPkPjxEgOnydd1vO_jNCu2h49rj_Y7LCzrEN1Eqhz1aqQCFKm4XuHN4VjBIP9QwLQsyBmkRYVT0MdGldCOBYgMnYxGdFBVPOnj7VYYkUX?_z=7850681\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"zoojoujoaseeh.com","domain":"zoojoujoaseeh.com","tld":"com"},"ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.146Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zoojoujoaseeh.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:25:26 GMT","end":"Sat, 18 Oct 2025 05:25:25 GMT"},"fingerprint":{"sha1":"30:29:A2:9B:3E:28:C3:21:31:20:F2:F2:68:4A:48:A2:7D:F3:1D:0B","sha256":"9C:EF:56:02:8A:83:02:95:40:13:37:EF:17:5F:90:80:65:60:60:0C:02:CC:95:D6:61:4B:30:10:A4:DE:CB:ED"}}},"request":{"raw":"GET /impression/pXZaG3M0Li9eyrzTllzHp3XqPCCGdCNK_P8gHlzhQrD6O6xVeM2a6RlnI94-IdbDr1IIyAnr5xqIRGgBOMdX0i7IPpngU6FojDoFYgvsKd0i2zPCh8wJqquqKhbrGgiIxrmHlvAyabYzgoNzD5taktDXg5W4whT-ODaeDIfhkJeROMwCwJhbQgN81of2Skg7M7wKQwO-WRwCRylWEqCSi0sS4wKQsItyVeUxCuNWZgbdmplSDehzt4xtMsyQrE16GKo4p-IMsrbpE4tKSGhVGnjudnRIptWNNnAr59VoWZ8wUvIP3gS2t5d7tVWxKrWooVXioS_RVCc5dS7bElO3SRC7vJhXG1G2eC_vR2qaYz1swf_yji0cNGstPx7DcCHs866Gk3_y8TVsdFeB9g8vh_JGtepSpoXeLYzBv0s4WAfEiZHlQ06CHCC82Rw6RaS9RftvMSt1P2LEb81RYV0ATmXVqc3a5OTjhzz_ToZVkvxUgTRGxgxwJI9-CZvx5MT9hhnICrW0laCNteR5d4gdf1KznAkJ32TVXHcHDm9OTu1PJxveutoGYBcgtuZ0vsxP6D4eU4xpbpegaHLn4qBXvJmLutbNVVMRlb49lnjfyEriTGg2QScjXv8q103GfoZKIbs_Na0CwoUgI47xaQni8sNMy7uWRLHPk8ISAgvSyDTVRyBt48tlwc7uYMVx2UTteR06Z5J5_QS1vNCi8W_dETOVwbvLhNVZ8dyZwkJJOZpggLWDF9Cpc3pMPkPjxEgOnydd1vO_jNCu2h49rj_Y7LCzrEN1Eqhz1aqQCFKm4XuHN4VjBIP9QwLQsyBmkRYVT0MdGldCOBYgMnYxGdFBVPOnj7VYYkUX?_z=7850681\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: zoojoujoaseeh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:02:00 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: 61fd95edbca3ca7fb1b2f9606262df34\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-26T16:33:52.13191Z","times_seen":98187,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"zoojoujoaseeh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/3w7nq3isc1fo","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"HEAD /e/3w7nq3isc1fo HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: file_id=11750322; aff=47746; lang=1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/3 403 Forbidden\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iz1gXNzjzrbZOND%2B9%2FdxKTNC2boRWJrRXVHsPe6m5nQU7hWEJxSCdJRJC57vSa8e55ek5vl1Wgfeq6IgzI3nvFsvFwm%2FsF6VhsCJ6iXvvOn8jqiRl1J%2Bm%2B07lsuCtg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 96d31de9fe39b4fa-OSL\r\nserver: cloudflare\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1744\u0026min_rtt=0\u0026rtt_var=995\u0026sent=255\u0026recv=185\u0026lost=0\u0026retrans=0\u0026sent_bytes=223539\u0026recv_bytes=10835\u0026delivery_rate=7992281\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=17608\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=590\u0026inflight_dur=111\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css2?family=Poppins:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 10 Aug 2025 23:01:44 GMT\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3591,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"35d825bbfa06a00722474414bc5ef193","sha1":"261399984a263223d6a6d05bdc7f1f8dd4408b57","sha256":"9ceebd00ce42c01cbbe9ade915ff99832c71d12bd44caf48f4c813df001ffc2b","sha512":"8168d93fcd0bbe9572ed9617309593a7ea1f48b6b218d7e3c5886fbad5291d8335947bb2c3a7a417d0a223dd7e8464d6d842e78b2e48d009e32ccd3d45a52059","ssdeep":"","tlshash":"0e719dd1087be1049b831cc123cf6d37ee0ea155b410e5746bfd0c98adabc694362b2d","first_seen":"2025-04-24T06:19:17.974382Z","last_seen":"2025-11-10T17:02:44.561566Z","times_seen":654,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":83,"dns":1,"connect":15,"send":0,"wait":33,"receive":0,"ssl":79},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/5/6568874","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.640Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"GET /5/6568874 HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: d81a6ea4fc7b289ad616998e816727f2\r\nlink: \u003chttps://my.rtmark.net\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://e2ertt.com\u003e; rel=\"preconnect dns-prefetch\"\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\nset-cookie: OAID=0082214738c44336edf3f8bb4a7b9d77; expires=Mon, 10 Aug 2026 23:01:46 GMT; path=/; secure; SameSite=None\noaidts=1754866906; expires=Mon, 10 Aug 2026 23:01:46 GMT; path=/; secure; SameSite=None\nsyncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":112388,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"dd98f747e0c7468dc41b1a2024328b73","sha1":"394d7f7af65ae21202b2c893568c694881540a5a","sha256":"fd53844f77bf1f8ff979e5178767fb79a2f62b099f37e9b9b91b552a4f1eab1f","sha512":"ded355d40aaa833d326bcac4c31a0af7064d20a133e39aa88defba62af41936fb42d7b7eaad94fbc4a16146b1e3667b37b80de441b4ef4bc5e6d4e24390fd12b","ssdeep":"1536:Gt15NN2FLCP7UvIgNJs0w883eu8R91+mVJzWpuKBgvribUOJr/D9GHMO8xQo+8cN:Q1k8883eu8R91+Syp6oLb9GHMOvJPWW","tlshash":"97b3295472a734756d6a8138785fc44d6eebaf80208d89e4d0e9ac733653074d3bbee8","first_seen":"2025-08-10T23:02:14.524264Z","last_seen":"2025-08-10T23:02:14.524264Z","times_seen":1,"resource_available":true,"data":null}},"time_used":240,"timings":{"blocked":91,"dns":1,"connect":26,"send":0,"wait":58,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zoojoujoaseeh.com/500/7850681?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"zoojoujoaseeh.com","domain":"zoojoujoaseeh.com","tld":"com"},"ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:50.241Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zoojoujoaseeh.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:25:26 GMT","end":"Sat, 18 Oct 2025 05:25:25 GMT"},"fingerprint":{"sha1":"30:29:A2:9B:3E:28:C3:21:31:20:F2:F2:68:4A:48:A2:7D:F3:1D:0B","sha256":"9C:EF:56:02:8A:83:02:95:40:13:37:EF:17:5F:90:80:65:60:60:0C:02:CC:95:D6:61:4B:30:10:A4:DE:CB:ED"}}},"request":{"raw":"GET /500/7850681?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: zoojoujoaseeh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=b0mo765320tb938370241j0m2hmsl584\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:50 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: ee817972f21f33898ec909f30fa8889f\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:50 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1877,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"010123f20d7c35432d566c74e2a42b59","sha1":"9dc61895cef99e6a69e99d8405699a0473e4e67a","sha256":"69064b6aab72d9121e3ab56f4a54a43a3b6524693347e512fe4324786353eb47","sha512":"d9abbdfcc76818b00d6f30dd415c78d23f53a4eb3fd77648e741a05df24eaca49f80c204055bae1524791d9f9ad03449fb80c04150c48ca3a9cb879c61b5cfbb","ssdeep":"","tlshash":"93411b2f978e92b32b44c647039d5736a217c6439c15276c899fd04537edbeade1b140","first_seen":"2025-08-10T23:02:14.525393Z","last_seen":"2025-08-10T23:02:14.525393Z","times_seen":1,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"zoojoujoaseeh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/5e98d2fe2cfc8d2327421439e083c6c9.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.434Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/5e98d2fe2cfc8d2327421439e083c6c9.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:02:00 GMT\r\ncontent-type: image/png\r\ncontent-length: 7479\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=%2BNwFfoKuekZ%2F3%2FFlX8HtR7lPug4ihjjgHUC1h6jtUVW3QBap5AXisurcKHRVUOXcmzHXrCqqrLy9VwfBYxPsoWimOYW4bc94CmA9aQWO0NxCSdPoOkxkgBmbqfBMpbhkbRLnvQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Mon, 24 Feb 2025 10:55:12 GMT\r\netag: \"67bc5010-1d37\"\r\nexpires: Mon, 11 Aug 2025 04:32:20 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 66579\r\ncf-cache-status: HIT\r\ncf-ray: 96d31e4cbcf6b4f3-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=848\u0026min_rtt=0\u0026rtt_var=312\u0026sent=1182\u0026recv=842\u0026lost=0\u0026retrans=0\u0026sent_bytes=1082710\u0026recv_bytes=44779\u0026delivery_rate=39050765\u0026ss_exit_cwnd=14929\u0026ss_exit_reason=2\u0026cwnd=35029\u0026unsent_bytes=0\u0026cid=03ab9485604aa66b\u0026ts=12611\u0026inflight_dur=191\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7479,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 436 x 436, 8-bit colormap, non-interlaced","md5":"5e98d2fe2cfc8d2327421439e083c6c9","sha1":"c6f13b2e1b018f9c0704948ba302aa619129fab6","sha256":"adbdcbabf5a54a5b47faebd4ce04f0dcc4d77d39121369eecf4d1f9e22e949af","sha512":"d91d3132d12e3ebb16d6268e61ea33fd43fa37f0599f4f5910b7d59beb7acdf23e23abfc682c498b511fbc3962fa23a5caa858718c651a807deeb52e21625084","ssdeep":"96:f4raBAZ+wazr8DmIR1Y+THGuE/GRLJel7m1Wzri0MuyCg5NxD0BhMngw25nTcw2F:OC8KAO2rEeRLJWq1Wzri0MJJXE4HvS0","tlshash":"f6f16dccdeda4fd6cdcdb8b655c44e8182d33015469beb876201a13a94493bc1b6a25c","first_seen":"2024-12-25T21:12:17.07294Z","last_seen":"2025-08-21T21:34:41.837475Z","times_seen":99,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/new100.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/new100.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 27 Dec 2024 03:46:02 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hEsLcFW%2BhbYNOMFLvTFe4cGEFwMO680pyc1djvWXpR2iPpdgRiiQYYkcQfc3Nnat7QTzNjTzeXpwfgVrFa3u%2FmlC5xPf84lkpw%3D%3D\"}]}\r\nage: 4152\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5c1-62a384d3361f7\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7cea156cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1473,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"a404d12258254e435583a10baa32a8b8","sha1":"a7bde7e90a122cc61a016e3e4f94339ca866d6c3","sha256":"32df889d6099045ed25a5e32fbf53de6fbc07ff4b82ccc3363b6d06acb254b84","sha512":"594cda55bee6617a0583494ea1a651335081d4b393aaafe10764b930b9095e7f36edd4b5c82520737f47276f8cca302fd39ed0a6bbd97d400734e3765c3ed6f2","ssdeep":"","tlshash":"1931bb2b2cf4203025f7600d171b6144b0529643251deeb87adc435a3f94d6d8e76bed","first_seen":"2024-12-27T13:53:56.121207Z","last_seen":"2026-04-24T16:13:40.005092Z","times_seen":718,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:45.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 06 Aug 2025 21:38:48 GMT\r\nexpires: Thu, 06 Aug 2026 21:38:48 GMT\r\ncache-control: public, max-age=31536000\r\nage: 350577\r\nlast-modified: Wed, 23 Apr 2025 16:05:59 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-26T17:07:09.718328Z","times_seen":312446,"resource_available":false,"data":null}},"time_used":320,"timings":{"blocked":145,"dns":1,"connect":29,"send":0,"wait":28,"receive":2,"ssl":112},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lwvlcrbywhsruwa.com/","fqdn":"lwvlcrbywhsruwa.com","domain":"lwvlcrbywhsruwa.com","tld":"com"},"ip":{"addr":"139.45.197.101","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.307Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lwvlcrbywhsruwa.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 Aug 2025 10:53:13 GMT","end":"Fri, 07 Nov 2025 10:53:12 GMT"},"fingerprint":{"sha1":"E3:C8:5F:67:68:89:BF:73:1B:C3:1F:2C:20:D6:EC:64:C7:5F:AB:F7","sha256":"F6:A2:BD:4B:2E:87:B0:93:2D:3C:E3:A6:7D:49:D0:82:42:6A:A3:B6:AF:C3:68:AB:DA:77:4D:4C:37:AB:5B:01"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: lwvlcrbywhsruwa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/html\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: text/html\r\nx-t53r14a91c51e79-55i68d18: 00000000000000000000000000000000\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname\r\naccess-control-allow-credentials: true\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\ntiming-allow-origin: *\r\nx-application-key: jcbemEtygNg8ru5wayxd4\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"lwvlcrbywhsruwa.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"8nhvweaoetmq.l4.adsco.re/","fqdn":"8nhvweaoetmq.l4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.l4.adsco.re","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:55:04 GMT","end":"Thu, 16 Oct 2025 09:55:03 GMT"},"fingerprint":{"sha1":"89:17:D6:F2:7A:24:C5:33:57:EE:DE:EE:8A:24:F2:17:17:F4:D3:82","sha256":"E7:4D:AF:EE:70:50:82:45:92:27:31:C9:82:61:D4:DC:59:1B:06:E0:75:04:FB:AC:D9:72:BB:43:8A:B0:07:C1"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: 8nhvweaoetmq.l4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Fri, 02 Jun 2023 14:03:32 GMT\r\netag: \"6479f6b4-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":298,"timings":{"blocked":135,"dns":63,"connect":23,"send":0,"wait":23,"receive":0,"ssl":51},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adsco.re/p","fqdn":"adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"POST /p HTTP/1.1\r\nHost: adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 1606\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 10 Aug 2025 23:01:47 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAS-P-1: OK nyc123\r\nAS-P-2: OK\r\nAS-P-3: OK\r\nAccess-Control-Max-Age: 2592000\r\nCache-Control: no-transform\r\nAccept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Credentials: true\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1212,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with very long lines (1212), with no line terminators","md5":"993e2383b42048cdae7417d83170604e","sha1":"cbc1d5f6724ca9118ad6933ac6ca339421a7c355","sha256":"774c4ccb1b8a902c3e16778e6c72b0fc408c1abebfe65dcded6c6d0ea569a52e","sha512":"a62ef814b29013b2693b1be6e26a35c518be5bdc099a2777a66a2ded6cb5a97db32bcd7d88c90446af537f93885c3e470c81d19ec00d14df7025e45b7323000b","ssdeep":"","tlshash":"ff21eab340fb6f569878761a03558025d9530a89270ccc9911c0876d62951f0d08cee5","first_seen":"2025-08-10T23:02:14.527476Z","last_seen":"2025-08-10T23:02:14.527476Z","times_seen":1,"resource_available":false,"data":null}},"time_used":686,"timings":{"blocked":277,"dns":0,"connect":94,"send":0,"wait":121,"receive":0,"ssl":191},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Fri, 08 Aug 2025 08:13:09 GMT\r\nexpires: Sat, 08 Aug 2026 08:13:09 GMT\r\ncache-control: public, max-age=31536000\r\nage: 226131\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-26T17:08:00.589782Z","times_seen":763226,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/5e98d2fe2cfc8d2327421439e083c6c9.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/5e98d2fe2cfc8d2327421439e083c6c9.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: image/png\r\ncontent-length: 7479\r\nserver: cloudflare\r\nlast-modified: Mon, 24 Feb 2025 10:55:12 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"67bc5010-1d37\"\r\nexpires: Mon, 11 Aug 2025 04:32:20 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 66567\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ME44StfHDDguELpqRa9gCGyKy3EboglDACSNL%2BP7hJ%2BgPWBaaj%2B59b39geyXOsXMbK33HQS9t6ftIgcBAma1QSeWyQ%2B760kxp945fBR1iA%3D%3D\"}]}\r\ncf-ray: 96d31dfdedae56bd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7479,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 436 x 436, 8-bit colormap, non-interlaced","md5":"5e98d2fe2cfc8d2327421439e083c6c9","sha1":"c6f13b2e1b018f9c0704948ba302aa619129fab6","sha256":"adbdcbabf5a54a5b47faebd4ce04f0dcc4d77d39121369eecf4d1f9e22e949af","sha512":"d91d3132d12e3ebb16d6268e61ea33fd43fa37f0599f4f5910b7d59beb7acdf23e23abfc682c498b511fbc3962fa23a5caa858718c651a807deeb52e21625084","ssdeep":"96:f4raBAZ+wazr8DmIR1Y+THGuE/GRLJel7m1Wzri0MuyCg5NxD0BhMngw25nTcw2F:OC8KAO2rEeRLJWq1Wzri0MJJXE4HvS0","tlshash":"f6f16dccdeda4fd6cdcdb8b655c44e8182d33015469beb876201a13a94493bc1b6a25c","first_seen":"2024-12-25T21:12:17.07294Z","last_seen":"2025-08-21T21:34:41.837475Z","times_seen":99,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":19,"dns":1,"connect":1,"send":0,"wait":9,"receive":1,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/wrr?z=6568874\u0026p_rid=530f883f-dc19-47b8-90f0-5b278339e333\u0026rb=4TF3qJ8O_T5D8P65qMJYfsQffK1ZeW-eDxS4U6oDqoEGrwKjIgpf4xmdTzilD6WhXc7-sNLin-kkmsvpIi63SDa3G3Uc1MAXG9o5vDECDborfAJfuGoBdGhr6ZUCvotwhDX-JWelfPq28ZW1O45lgUJWvMqwmP-oMHo1Ye8B3kjwvPl8TCHfIupsKhBeOTFE7OlgBs5L-wNZ2C7FaaaoBLW4pmj2z6K5KjUCwINLD4FuWsaLHNcxM4pJgjianfAGx2-05HYNqxBGcvH9KcvjkGj8Sn6M71PUhYUquWl9Cnw=\u0026dmn=22hgc.com\u0026userId=08022167648241a9f39d2ea9ea4a5324","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"OPTIONS /wrr?z=6568874\u0026p_rid=530f883f-dc19-47b8-90f0-5b278339e333\u0026rb=4TF3qJ8O_T5D8P65qMJYfsQffK1ZeW-eDxS4U6oDqoEGrwKjIgpf4xmdTzilD6WhXc7-sNLin-kkmsvpIi63SDa3G3Uc1MAXG9o5vDECDborfAJfuGoBdGhr6ZUCvotwhDX-JWelfPq28ZW1O45lgUJWvMqwmP-oMHo1Ye8B3kjwvPl8TCHfIupsKhBeOTFE7OlgBs5L-wNZ2C7FaaaoBLW4pmj2z6K5KjUCwINLD4FuWsaLHNcxM4pJgjianfAGx2-05HYNqxBGcvH9KcvjkGj8Sn6M71PUhYUquWl9Cnw=\u0026dmn=22hgc.com\u0026userId=08022167648241a9f39d2ea9ea4a5324 HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":188,"timings":{"blocked":75,"dns":0,"connect":26,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xadsmart.com/hvrxywpedaqr?odItNcMg=BQOCAAAAAAAACZUAAnw-ul2TOQaOoFRaHzNe_pOdYGgLKkRwcrjVO3Oclb1szJtkeuFVpp5l2pZH3g__2q4-WY8Wx_H3GBgZItnyBd_PuT2Vh0wy8tAs4UbPhfTdreCcgl4K3Bq8aonA4WwJIhabdS83gMb5gGyriyLXqrKJ20X_222rvt7wzKqdHt56HYXJi7YZ8-cUgyad3pGSMjrBNVPZBpMA3Zhv5gUnYom1vrvPND3_l1h1oYtw7uzRVPhOwsfXNcq3sygEVINvw4vpf3A0MU9Ks3HP-IYcCsZ_ukqcF2PfTO9M1zn3FSnapkDu-9ExA-LkdQXVgE6dJkIyfGlxzJphv0Lr5tSwR-BWyz0iJO1EW7iWqNs1VWdsZCTpj1CVvuR89SQSxVhj5JI5-s8OooVSbShRctPnQ8PyhrarmKNA1_1i9NMTcbeW1KH0hn1PWT93D-76GBTrg7tPrWEEirfqO1FBfD7xxw_1GAeBZO7V8pqyJcr1Lskt09x8AItweVA8-5e8FzFJrCD4P67ALZ90VJYV0Nm_d6QZ--TG2yylBL5OIGs0H1UGKr0-0vqLpFcg3jEsyYzs8Zz6lOOOmbxq_im0qzurEAyNMZeZNlQJi1IrKIcCKJyp38BWo8mL6uGK3DPBNbQUT9OMpxmOnHbYWtf2FbqhDVhiBQvWEbR5Hn2qqzdeMzOuGqrxykIm9_Vb4KX_YeD5AuGdM5d-j3lE4liFTDsQk9ywiG_Zqd1LqnHgtdaB-d-Xu0eJENveuWYcud_26_HKquCqVpfbC28EOQg4d11lOgbBQ1cJgHJ9moMloT69K4j5InQvPxJswMk7TVT9eokxUn5qjbHz4z6UjdSqfs371nB5hmquHhNrQtRtmt9lWUcg7Fd4spgbCMjjxG0d-l9mNta3F6sjFkmb7lI6kmoUDmjd1Lg7NF1mGRN760dlo9BOl6g1ph8htxJJNpsxg8zffl2iXUIN8RmfSHPnHpnJmBhYODgaUaoZeKF18cmB3QTx8ANBrX86pA32WPgGLC8ka6WOlFWBNfqeEbYIDsLcElR_yXkg4R-Q5Fmo-vLxVCv4GTYa1FRFK1X9B7zlztbomJA4CqRULlyE5FFUAQZ0WvBsWjAOMGAhSkwa7rvSR3YudBd8BvrXRQaFH6RIN3mNJ1LUN7eCA30LYYNrSXglMU7jiLvO2i6QJHjHLTU98Nf_\u0026ToNdxqYu=4\u0026aJKYcibn=4998988\u0026qKTNwYBj=\u0026jhRofgae=0,0\u0026pARUJxaq=\u0026QvybcOnq=\u0026dfywVTYF=1280,1024,1,1280,1024,0","fqdn":"xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"xadsmart.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 04 Apr 2025 00:00:00 GMT","end":"Tue, 05 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"57:60:97:0C:DC:E6:0F:0D:1B:04:5B:46:03:77:64:46:88:C5:CF:87","sha256":"14:CD:91:C4:51:65:3A:E9:F5:6D:CB:BF:EF:86:31:A9:7F:DD:F9:17:57:48:89:78:CE:C4:29:EA:76:4F:04:DB"}}},"request":{"raw":"GET /hvrxywpedaqr?odItNcMg=BQOCAAAAAAAACZUAAnw-ul2TOQaOoFRaHzNe_pOdYGgLKkRwcrjVO3Oclb1szJtkeuFVpp5l2pZH3g__2q4-WY8Wx_H3GBgZItnyBd_PuT2Vh0wy8tAs4UbPhfTdreCcgl4K3Bq8aonA4WwJIhabdS83gMb5gGyriyLXqrKJ20X_222rvt7wzKqdHt56HYXJi7YZ8-cUgyad3pGSMjrBNVPZBpMA3Zhv5gUnYom1vrvPND3_l1h1oYtw7uzRVPhOwsfXNcq3sygEVINvw4vpf3A0MU9Ks3HP-IYcCsZ_ukqcF2PfTO9M1zn3FSnapkDu-9ExA-LkdQXVgE6dJkIyfGlxzJphv0Lr5tSwR-BWyz0iJO1EW7iWqNs1VWdsZCTpj1CVvuR89SQSxVhj5JI5-s8OooVSbShRctPnQ8PyhrarmKNA1_1i9NMTcbeW1KH0hn1PWT93D-76GBTrg7tPrWEEirfqO1FBfD7xxw_1GAeBZO7V8pqyJcr1Lskt09x8AItweVA8-5e8FzFJrCD4P67ALZ90VJYV0Nm_d6QZ--TG2yylBL5OIGs0H1UGKr0-0vqLpFcg3jEsyYzs8Zz6lOOOmbxq_im0qzurEAyNMZeZNlQJi1IrKIcCKJyp38BWo8mL6uGK3DPBNbQUT9OMpxmOnHbYWtf2FbqhDVhiBQvWEbR5Hn2qqzdeMzOuGqrxykIm9_Vb4KX_YeD5AuGdM5d-j3lE4liFTDsQk9ywiG_Zqd1LqnHgtdaB-d-Xu0eJENveuWYcud_26_HKquCqVpfbC28EOQg4d11lOgbBQ1cJgHJ9moMloT69K4j5InQvPxJswMk7TVT9eokxUn5qjbHz4z6UjdSqfs371nB5hmquHhNrQtRtmt9lWUcg7Fd4spgbCMjjxG0d-l9mNta3F6sjFkmb7lI6kmoUDmjd1Lg7NF1mGRN760dlo9BOl6g1ph8htxJJNpsxg8zffl2iXUIN8RmfSHPnHpnJmBhYODgaUaoZeKF18cmB3QTx8ANBrX86pA32WPgGLC8ka6WOlFWBNfqeEbYIDsLcElR_yXkg4R-Q5Fmo-vLxVCv4GTYa1FRFK1X9B7zlztbomJA4CqRULlyE5FFUAQZ0WvBsWjAOMGAhSkwa7rvSR3YudBd8BvrXRQaFH6RIN3mNJ1LUN7eCA30LYYNrSXglMU7jiLvO2i6QJHjHLTU98Nf_\u0026ToNdxqYu=4\u0026aJKYcibn=4998988\u0026qKTNwYBj=\u0026jhRofgae=0,0\u0026pARUJxaq=\u0026QvybcOnq=\u0026dfywVTYF=1280,1024,1,1280,1024,0 HTTP/1.1\r\nHost: xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\npopads-node: wb9\r\naccess-control-allow-origin: *\r\nasf: 9\r\npopads-ec: ASB\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 44\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"d5f0a25e4d3522d56d48ce7bc3e518fb","sha1":"86794caff58f7fee6e684c2ba7195f970a8d6f4c","sha256":"9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5","sha512":"a3a81801f516a4eb11f00d6f56dab0ed4b8a79219e6b4f5436993479f09dae08f14cffbab3327ff66fb39201d8eba1153ae7114f7705a01cc6f0edf840ef1616","ssdeep":"","tlshash":"789002801814116115d1500b8d5159d01259b1a4540801324446ca502dc7883a415774","first_seen":"2023-03-07T01:17:45Z","last_seen":"2026-04-26T17:01:00.538177Z","times_seen":23531,"resource_available":true,"data":null}},"time_used":307,"timings":{"blocked":86,"dns":1,"connect":24,"send":0,"wait":126,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/css/main.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.287Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /css/main.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 18 May 2023 18:01:36 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ny8yfl4DGq%2Bs%2BIRzFG6U8xIMXtNuR6M1QJBJvO37SgRvP%2BZx0JDpUPzO%2BzA%2F13UwR0DPaublYLZw6WoJ1k11EjoCJmacTYHp2g%3D%3D\"}]}\r\nage: 4152\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"c05b-5fbfb986a0000\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7be9556cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49243,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"40fa099cd62886ddda0afde4ef18cc84","sha1":"4c53f2b1e903260eeeff8c4f78b1562e015e1951","sha256":"57fd276195b1343bb4664915c74396b2331de23b3a778e05e85c149db2332d55","sha512":"d360bcb45964adc2756e33f7402775cc883e4710864d945a60caba1e33cd70b530de7613ffb853ed062f43dfbf2e471472e92174ec9b392b8200d23dba92f7a0","ssdeep":"1536:AQV8FxnYgp9ry2vYsRwq9AOOGvC4DONaY93Rz:AQVMxnYSy2v/AOOk4Rz","tlshash":"aa238422a7812c0cf06bd1b67d6197d6233e4053d92b1f7c7ab93578c28e4e85173b9a","first_seen":"2023-10-26T04:52:23Z","last_seen":"2026-04-24T16:13:40.04881Z","times_seen":912,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.cookie.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jquery.cookie.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 31 May 2011 12:53:56 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=KDmaP%2BF4tuwdnKrOGa9D%2Fw%2F709rZ3Iyb3ypjK57xi1QMi2Qca4ECDNbTuWXWjP5V4FYXGwXJYB0n68SGpPmns3TPdX%2FVnDrQ%2Bw%3D%3D\"}]}\r\nage: 4152\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"10eb-4a491e5980100\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7ce9c56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4331,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"ae0c2c5d8f01f7d35bb698bb618a62f7","sha1":"63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20","sha256":"75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc","sha512":"eac94ca9d884692af8bdf12aa6e902a3be4eed0772ad8f2932ac1c3328b83a7351cdf743a409bbc0a3cd385956c08d3203d51c572bb1680489e37330fe27a2bb","ssdeep":"96:L4BZxb64Ng7V8cNwpGylRCsKZcj1JXulL6M/aGByLskPSP4lBCClf1wgCyC:LQnb6eg7DgCsk8fgZJkPSPa+gCyC","tlshash":"2e91fd293a0d231d149353f57aee10c8a930d632216ad46c744cb6b06f00c63ddfbbea","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-24T16:13:40.035Z","times_seen":4391,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.js?v=2","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jwplayer.js?v=2 HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 23:02:18 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LKct5k5XQZXJe1jQKgDE6SWKCXjbAGyNgRvunA01H%2BvKo%2B8m%2FTWCz63qtGR9qzwZfRh%2BmWPBXzf8GWIRf%2BqcVlsMvtCZqe3iCw%3D%3D\"}]}\r\nage: 4151\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"1d82e-5fd9220ac069a\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7cea456cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":120878,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65502)","md5":"e596630eff0374adebc068352ed362ae","sha1":"156895e17acd4652f5816db5b310b341960edbbc","sha256":"816c99b4a2b3c2d2d7adca35b602c2b1f5ef56ffed67ae1a4d29bbeefa55ee90","sha512":"625450c3bfe0ea3228565c0f32f167850d3e60a2d90c049c87143c40cf8f413ee8ded3c94740f095c4ec088477ca67c4dd08d91205b6bfd38ced4175d404ce0b","ssdeep":"1536:AFe00b3VLgXLVuRXE0D6Z17WRtekdILG0Up:X0O31gbVuR96mLIy","tlshash":"d1c370ccb1d2b4a603a770b5517f620ef23b59c5384e8194ea25e9d5bc7864e9033fac","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-24T16:13:40.041377Z","times_seen":941,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.754Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 05:32:11 GMT","end":"Sat, 18 Oct 2025 06:32:07 GMT"},"fingerprint":{"sha1":"9A:4C:DF:45:B2:CB:DC:2D:2A:D0:5B:6E:4D:BF:49:B6:72:02:C3:5A","sha256":"7B:F2:F8:4B:9D:1F:3F:81:66:CE:47:13:7E:8D:8F:06:D8:1A:6A:49:E1:CF:8D:5E:F4:2F:8D:CC:45:7A:E3:8F"}}},"request":{"raw":"GET /adgpt.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 857\r\nserver: cloudflare\r\nlast-modified: Tue, 29 Jul 2025 10:40:40 GMT\r\nvary: Accept-Encoding\r\netag: \"6888a528-359\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 593809\r\ncf-cache-status: HIT\r\ncf-ray: 96d31deadcfc56ab-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1813,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1813), with no line terminators","md5":"365753f5db3715994349e69ec3e6a5f8","sha1":"f61a8cbffd148f747669d5760b5b6999bfb53cba","sha256":"74c4e67497ceefa9e75f8e1c6a659989bb15bd6c6616b684a038abc3602d2dcb","sha512":"7053a27017e32fbf87af72ad8c5332008a946025b8e9a0cc352dacbf0b47dbde763f9a89bcf2ae6c5f1b4a4c1ca936ac4d40e53096de5c93eed12fdd5ad96701","ssdeep":"","tlshash":"2c3122db31a0fdb1078b614c212f1909f5bca4a0a3ade8d1cba9cd747d385484061bfe","first_seen":"2025-07-29T22:27:57.77684Z","last_seen":"2025-08-18T06:01:05.332385Z","times_seen":192,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":21,"dns":0,"connect":1,"send":0,"wait":8,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.392Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"OPTIONS /500/7938571?excludes=\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":200,"timings":{"blocked":87,"dns":0,"connect":26,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=24144214\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:55.292Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /500/7938571?excludes=24144214\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:55 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: a0ca8018046a895a4e984f33a404345b\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=08022167648241a9f39d2ea9ea4a5324; expires=Mon, 10 Aug 2026 23:01:55 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1871,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"7ba2ccb5cb89066e5dc1bae167d27859","sha1":"a9b0f5d7a9918179d543937a6914dc6ecfc25b22","sha256":"893c7dfa8b85f700ac64dd0986f6cb49f41dee11e0efbed6b22f006cb6240d50","sha512":"f457fbae89a10a120650f3b333bce958d2006664dc8921ba0a4b13fc36b045450c63a6080390d0196c85189aaf5677b410b98c113c8d9737e98353ac40273381","ssdeep":"","tlshash":"ac31f926a61f48f24eacc7cea063a89d8352574759ce4d1caa07d5e0b9fed182c8654c","first_seen":"2025-08-10T23:02:14.531001Z","last_seen":"2025-08-10T23:02:14.531001Z","times_seen":1,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"theetheks.com/400/7938571","fqdn":"theetheks.com","domain":"theetheks.com","tld":"com"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"theetheks.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 12 Jul 2025 05:27:08 GMT","end":"Fri, 10 Oct 2025 05:27:07 GMT"},"fingerprint":{"sha1":"A8:5F:BC:8D:69:48:61:87:C8:71:59:B1:E8:2D:80:6C:EA:72:62:A8","sha256":"D9:87:7D:26:F7:2E:76:95:22:D7:50:D5:66:A8:A4:8C:E3:00:48:6E:7D:04:26:19:A5:8B:3E:16:50:54:6A:8C"}}},"request":{"raw":"GET /400/7938571 HTTP/1.1\r\nHost: theetheks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 2fecbfbaf408ea88bb873c259ef97abc\r\ncache-control: max-age=86400\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=0302211b515a47fceef0da52e3ce3bf4; expires=Mon, 10 Aug 2026 23:01:44 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":165001,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"e2f6efc28573bd98f5ea7e1cd636bf8a","sha1":"5f6dd3c6fd0935c1c77a12d6a051d04234252918","sha256":"c0273930abfef0dd2d418ec695079856ed5cb6ffcf2fa0d22a91ebc9779160ca","sha512":"29ca32f7383dafeb027e9c8e61751db4586fa9bf1442d89f4bf50a416314718630878bff11f1a6a6bb42d3459c5200431e298c964c217a97ed33805899a3fdeb","ssdeep":"3072:yjjsnib+yfMusGZT793LvWl0WXvBC+xGCmC7fW50XKN/fo4vzpjFDxwB:yjYiHMuRVk6WXI+xPz7fW50axbvljZxG","tlshash":"9cf3e998b19271512e736134311fd20eaaab6b605c4e8580d1dbe1b67f3702ed37bde8","first_seen":"2025-08-08T18:22:39.019698Z","last_seen":"2025-08-12T08:18:26.321652Z","times_seen":41,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":58,"dns":1,"connect":31,"send":0,"wait":57,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"theetheks.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/400/7938571?oo=1\u0026sw_version=v1.691.0\u0026oaid=b0mo765320tb938370241j0m2hmsl584\u0026st=true","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.631Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"POST /400/7938571?oo=1\u0026sw_version=v1.691.0\u0026oaid=b0mo765320tb938370241j0m2hmsl584\u0026st=true HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2594\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: application/json\r\nx-trace-id: 66d7474c4631c720027c2269ff622572\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=b0mo765320tb938370241j0m2hmsl584; expires=Mon, 10 Aug 2026 23:01:46 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2105,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5288d120ce3303a24eb71ef4589ffda6","sha1":"b4211a16c83c359a124576c13f8f903de037ab12","sha256":"0c6ebf5c3f22592cd186182f6f7caf0b70e6099e1a0640c73e5c4431b3928b9b","sha512":"ceea1ffb1bd5e057c711911fa18dee3a601530ac5a1d66945664799060f08145497b492c59c22b7463a42e729982d81bdd33b639d46dc0fe6853abc7db9189c2","ssdeep":"","tlshash":"a14102098e28417a96de5ab6ec0b6d470bbd011f3a4c752ee7854d1770ebce543eb20b","first_seen":"2025-08-10T23:02:14.532644Z","last_seen":"2025-08-10T23:02:14.532644Z","times_seen":1,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":90,"dns":0,"connect":26,"send":0,"wait":31,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/wrr?z=6568874\u0026p_rid=530f883f-dc19-47b8-90f0-5b278339e333\u0026rb=4TF3qJ8O_T5D8P65qMJYfsQffK1ZeW-eDxS4U6oDqoEGrwKjIgpf4xmdTzilD6WhXc7-sNLin-kkmsvpIi63SDa3G3Uc1MAXG9o5vDECDborfAJfuGoBdGhr6ZUCvotwhDX-JWelfPq28ZW1O45lgUJWvMqwmP-oMHo1Ye8B3kjwvPl8TCHfIupsKhBeOTFE7OlgBs5L-wNZ2C7FaaaoBLW4pmj2z6K5KjUCwINLD4FuWsaLHNcxM4pJgjianfAGx2-05HYNqxBGcvH9KcvjkGj8Sn6M71PUhYUquWl9Cnw=\u0026dmn=22hgc.com\u0026userId=08022167648241a9f39d2ea9ea4a5324","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"POST /wrr?z=6568874\u0026p_rid=530f883f-dc19-47b8-90f0-5b278339e333\u0026rb=4TF3qJ8O_T5D8P65qMJYfsQffK1ZeW-eDxS4U6oDqoEGrwKjIgpf4xmdTzilD6WhXc7-sNLin-kkmsvpIi63SDa3G3Uc1MAXG9o5vDECDborfAJfuGoBdGhr6ZUCvotwhDX-JWelfPq28ZW1O45lgUJWvMqwmP-oMHo1Ye8B3kjwvPl8TCHfIupsKhBeOTFE7OlgBs5L-wNZ2C7FaaaoBLW4pmj2z6K5KjUCwINLD4FuWsaLHNcxM4pJgjianfAGx2-05HYNqxBGcvH9KcvjkGj8Sn6M71PUhYUquWl9Cnw=\u0026dmn=22hgc.com\u0026userId=08022167648241a9f39d2ea9ea4a5324 HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\ncontent-type: application/json\r\nContent-Length: 2594\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zoojoujoaseeh.com/401/7850681?oo=1\u0026sw_version=v1.691.0\u0026oaid=b0mo765320tb938370241j0m2hmsl584\u0026st=true","fqdn":"zoojoujoaseeh.com","domain":"zoojoujoaseeh.com","tld":"com"},"ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zoojoujoaseeh.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:25:26 GMT","end":"Sat, 18 Oct 2025 05:25:25 GMT"},"fingerprint":{"sha1":"30:29:A2:9B:3E:28:C3:21:31:20:F2:F2:68:4A:48:A2:7D:F3:1D:0B","sha256":"9C:EF:56:02:8A:83:02:95:40:13:37:EF:17:5F:90:80:65:60:60:0C:02:CC:95:D6:61:4B:30:10:A4:DE:CB:ED"}}},"request":{"raw":"POST /401/7850681?oo=1\u0026sw_version=v1.691.0\u0026oaid=b0mo765320tb938370241j0m2hmsl584\u0026st=true HTTP/1.1\r\nHost: zoojoujoaseeh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 24\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: application/json\r\nx-trace-id: f70d51a6d4328119f37eee7ad85882ef\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=b0mo765320tb938370241j0m2hmsl584; expires=Mon, 10 Aug 2026 23:01:46 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2168,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c6d18d6e89f04ae51fd542630bb01fa9","sha1":"b363a74e710c0c9346a31cfef5c6bb2a64a9541a","sha256":"7ed28ccab9b5e2beccf53eef3a1506f22c8d3ce5ae475ec002fc35ff844be1e6","sha512":"ca53eda1a0abe389749885c75a2816e75c3239241ffeffa2d9dcf45fe95872d5062e175f9e6837686357989f0d26d933d00ad9690e39df30598d1cd71f406cc3","ssdeep":"","tlshash":"ba4115088e29457a86de5ab5ec0b6d470bbc152f7a4c712ee7494d1770ebce443eb20b","first_seen":"2025-08-10T23:02:14.533597Z","last_seen":"2025-08-10T23:02:14.533597Z","times_seen":1,"resource_available":false,"data":null}},"time_used":199,"timings":{"blocked":81,"dns":1,"connect":26,"send":0,"wait":30,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"zoojoujoaseeh.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=24144214\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:55.262Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"OPTIONS /500/7938571?excludes=24144214\u0026oaid=08022167648241a9f39d2ea9ea4a5324\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:55 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/impression/_HBTDqpkjoTT62l5y1DTFC-e5qFlZz1L-E6aQvcAwuLFgPIC2LpwlH1rZPxWcG_mmxXLPI1EChUX0CK-aiqRLJ9YHBJe7hb1LGpSXedRsLJFOhMKZIRrDykrpIBhJV18JcNgXEzp3BJ6KzYj0mo7ceS3V6y3pa7woYeVSZma2v9lzS2aiNgcoaByiBlH-K4hnlWdD9ldD8Q-u6tZ9aZQba-RzRL7wD_c0RBgSRiPcnZyhM1CvhPe1dLALlCz52Bol5mOFB0ibLXeJ2OUQHKaxcfYL6m8G7TE-sbeytpqHT80QN3Yx7b07jo_rM8APgSIZAvSJwMV3TD5dbVbJqFFIcmqHcB3vViFP2MDn5tmMMeR6YpZT1m0o-iRM3mj3Ot7MaPU2wSLdjGr30Ry5dUUTlUfDfQwM94J1H2iSRdKo3Db7WxQbjUvI57uljw3tRcVlD7cwbs_sggy3LJ1bbJV4VXPMBqdmScKBgsu024Fl2fcIKRBa2LrBv77AQjHVe9FtX0qhIWXn1f-Aev9KDNWDTE4-O12egtowp97cujy3f4BHHW8Ku7Bm8hj1F3x09SLqVXTeVVk8CVgeb3xsIZLFj4P4cPacRXVCRzYZx6-KQ07p4XpKGfp1Rmqy_aZO-GUCXivboUBQGk2LCEjbjyFoW2INEh5Kh_N35Vv9S59kvC33ZVACNErzlpIlZW2MNn_AB53IWaH0VemhLxA0WbPZ7T4bFcX1tWwF5nF9gVGbx19yopQx6EthC9N8E0S4dn-xEMmJdQZJb2tywcLYUJmb6ob32gNQwqRUNhDnyhJO-AiyttKnUtLmssS7wgLK9kHury-9ZJ8y4D6z77EdG9C49DoaUiRXWa_?_z=7938571\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:58.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /impression/_HBTDqpkjoTT62l5y1DTFC-e5qFlZz1L-E6aQvcAwuLFgPIC2LpwlH1rZPxWcG_mmxXLPI1EChUX0CK-aiqRLJ9YHBJe7hb1LGpSXedRsLJFOhMKZIRrDykrpIBhJV18JcNgXEzp3BJ6KzYj0mo7ceS3V6y3pa7woYeVSZma2v9lzS2aiNgcoaByiBlH-K4hnlWdD9ldD8Q-u6tZ9aZQba-RzRL7wD_c0RBgSRiPcnZyhM1CvhPe1dLALlCz52Bol5mOFB0ibLXeJ2OUQHKaxcfYL6m8G7TE-sbeytpqHT80QN3Yx7b07jo_rM8APgSIZAvSJwMV3TD5dbVbJqFFIcmqHcB3vViFP2MDn5tmMMeR6YpZT1m0o-iRM3mj3Ot7MaPU2wSLdjGr30Ry5dUUTlUfDfQwM94J1H2iSRdKo3Db7WxQbjUvI57uljw3tRcVlD7cwbs_sggy3LJ1bbJV4VXPMBqdmScKBgsu024Fl2fcIKRBa2LrBv77AQjHVe9FtX0qhIWXn1f-Aev9KDNWDTE4-O12egtowp97cujy3f4BHHW8Ku7Bm8hj1F3x09SLqVXTeVVk8CVgeb3xsIZLFj4P4cPacRXVCRzYZx6-KQ07p4XpKGfp1Rmqy_aZO-GUCXivboUBQGk2LCEjbjyFoW2INEh5Kh_N35Vv9S59kvC33ZVACNErzlpIlZW2MNn_AB53IWaH0VemhLxA0WbPZ7T4bFcX1tWwF5nF9gVGbx19yopQx6EthC9N8E0S4dn-xEMmJdQZJb2tywcLYUJmb6ob32gNQwqRUNhDnyhJO-AiyttKnUtLmssS7wgLK9kHury-9ZJ8y4D6z77EdG9C49DoaUiRXWa_?_z=7938571\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:58 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: 31a58f5d2fa5e2106478cd0645926402\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-26T16:33:52.13191Z","times_seen":98187,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RFESL45RJX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:34:03 GMT","end":"Mon, 29 Sep 2025 08:34:02 GMT"},"fingerprint":{"sha1":"A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1","sha256":"9F:B9:94:8F:84:D3:44:71:A7:81:72:C8:80:4D:14:02:E3:E0:30:0C:F1:17:27:83:00:82:D9:C3:68:D3:B3:AF"}}},"request":{"raw":"GET /gtag/js?id=G-RFESL45RJX HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\nexpires: Sun, 10 Aug 2025 23:01:44 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0\r\nreport-to: {\"group\":\"ascgcycc:1099:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0\"}],}\r\nserver: Google Tag Manager\r\ncontent-length: 135499\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":407426,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6006)","md5":"466a84051de5c83822e0ae87fb827b76","sha1":"90ed5b5441c17840be5cf86c59ee017d097d2786","sha256":"cad5fbc872d3ceef21fa6772a673e99330e42c73413fbb861f9ddc57b5f2f816","sha512":"85495a3690dd9bafffb8b35917074882d38542225b482fc8f1b8c07c939f0c654ddb2ee258fefc2e77ee60b21acef5fd10afc4f8da78063fa634245517bd86c8","ssdeep":"6144:72xP2NU1uDLgAyevGtkT2PG6B4xdJSRccEM:7YPiMclcmd6z3","tlshash":"a88419ce73c670669396f078503f018ba57b29a2b45cc899f189cce42e74a9a4177f7c","first_seen":"2025-08-10T08:13:38.305535Z","last_seen":"2025-08-11T06:00:41.279315Z","times_seen":3,"resource_available":true,"data":null}},"time_used":560,"timings":{"blocked":234,"dns":0,"connect":20,"send":0,"wait":33,"receive":44,"ssl":226},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jdadbl.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.295Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jdadbl.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 21:39:44 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1gHYcMQoq07OSaaL5n5M0PJiZZ%2Bb9iKXvnH4g3GFEpUDkhfEemJYGauZ8G2hkQS61nrOpYC26xjpODZ%2FSJQW0ZvieTzckvH%2FQA%3D%3D\"}]}\r\nage: 1690\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"a47-5cbe74da38800\"\r\ncontent-encoding: br\r\ncf-ray: 96d31de7ce9e56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2579)","md5":"95fd065c887d003f9a169dee9876532c","sha1":"0f111b6d5e142fadb966a1feb264d519c12a59d9","sha256":"4d4c84ad505bddf4d49b1222db984d7aaa425c6702c79029801632bf31f2b80d","sha512":"cacd512fbe11ccdf89c56c164255191d88f1edf46a9cb02b1de0d690659923a6508ae8d5d1733c5452974ebfae589f4c1214be047ba67d5218db06c3fe9a25a2","ssdeep":"","tlshash":"5451215775c270a0273b60b4952f710a773a5892250b8860c3e5e9952c2c8ef9177f9b","first_seen":"2023-05-22T09:51:00Z","last_seen":"2026-04-24T16:13:40.045729Z","times_seen":799,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/provider.hlsjs.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/provider.hlsjs.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: application/javascript\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=PZLiWhCVi%2Bd3H5t%2FH9oT0Yd2I2A8WoF7p1IhSZ611LN61neaLUhAFgYDkO1cU%2F4Uv%2FeY%2Fu%2BPqOh0HfPsttwN2axE%2BaiO%2F%2FMDhX3QUxJlJipxklDY7zN0OM6BJsYMUA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 07 Jun 2023 06:30:49 GMT\r\netag: W/\"5e59e-5fd8446d199fb\"\r\naccess-control-allow-origin: *\r\nage: 1290\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96d31de9ee37b4fa-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=703\u0026min_rtt=0\u0026rtt_var=174\u0026sent=167\u0026recv=173\u0026lost=0\u0026retrans=0\u0026sent_bytes=105800\u0026recv_bytes=10038\u0026delivery_rate=7647916\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=17694\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=524\u0026inflight_dur=80\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":386462,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"e133e8e7b97079d4bc7ec71fae611795","sha1":"14f34839087df4a3a09ba2f11a768f0d14af979d","sha256":"f0d08bd0271c5d085f5d1419b1af887eb9c250aac800cadc4d5ea64c3a348e97","sha512":"c9d584c81ef63afa75e386a97e6467969aec410d4819ef8053e2c740785c03028338e5cf0f278b874bcf116a31ddb9451bf521c8a1cb30bc5d9cefe99f33c34a","ssdeep":"6144:saY41OZdKOOf+nSIY/4nN/Aq5YrOue7stE6KgT/:pY+/4BAq5Yr1eG","tlshash":"1d842adeb695b0664283b1a4903f5607633b7d0a7409c1acfb27e5d61db8889b03bf74","first_seen":"2023-03-08T14:31:25Z","last_seen":"2026-04-24T16:13:40.053976Z","times_seen":941,"resource_available":true,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/srt/empty.srt","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:45.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /srt/empty.srt HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D; a=muflbXBk7aKdW69xpTzQldcZ78IfgiKX\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:45 GMT\r\ncontent-type: text/vtt; charset=utf-8\r\ncontent-length: 42\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=AnuoiQTiXZ5fVLUYS08QoVgTmcQa43FhF688iOGrL9VcSs8OKl0oD9UicI%2Fqka%2FKXvaHuFe6OoPWB40FcvB8AWhGWk3XbrY3TCLfgVC00fhwtqg2gP02spBXlRZyyQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Fri, 08 Jul 2016 15:03:06 GMT\r\netag: \"2a-537211991fe80\"\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 96d31df07e8fb4fa-OSL\r\nserver: cloudflare\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1561\u0026min_rtt=0\u0026rtt_var=743\u0026sent=264\u0026recv=191\u0026lost=0\u0026retrans=0\u0026sent_bytes=230678\u0026recv_bytes=11922\u0026delivery_rate=7992281\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=17608\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=1608\u0026inflight_dur=136\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42,"size_decoded":0,"mime_type":"text/vtt; charset=utf-8","magic":"SubRip, ASCII text, with CRLF line terminators","md5":"7f8501e8cf0fd2262e1ec59fa6653797","sha1":"5ea9200f583b21ec2008fc44447b2a15ab31f246","sha256":"f3adadb235f7ecab4a68f4d0961640c155c0d2057d28fe24e19d36b04904ddc6","sha512":"23ad6074030e0fc1cf24cd1085b974d27d25db4f336b432da5f79706208ba9c7945419d78c34b2ae88c2196f4b37bdcac53f8407e95bd8cf1ff98b9cdba54cd7","ssdeep":"","tlshash":"c29004d1ff314f51d4143340145033473151c4070dc550103050d051f5c5701c4013c7","first_seen":"2023-04-20T01:47:48Z","last_seen":"2026-04-24T16:13:40.012495Z","times_seen":873,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":47,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=5273f2e7-bedb-4de2-b957-6cbe8c254ba6","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=5273f2e7-bedb-4de2-b957-6cbe8c254ba6 HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 803\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Sun, 10 Aug 2025 23:01:47 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.421Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 10 Aug 2025 23:02:00 GMT\r\ndate: Sun, 10 Aug 2025 23:02:00 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26935,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"c1dfd96443eb2be2a1f91f6adb6f9dbb","sha1":"34fcc9ca9febd9112aeeb81b053d0d2bb6ab4b9c","sha256":"59e10836dc5089dc4aa2f54b882ceb39184f2970d915a5de1a594d502876143a","sha512":"efb5355fb90c85834e4ca9fda61acb4d52c9b6d72cecb5a71182203dbc409f463b71ebc183da475021e4c73881ed89da1e794d16e2d5dc9eff95495f59c5d3b6","ssdeep":"768:DFHFYFZFNFO4F/LFYFgFGbyF5OS/vyqr2/MoOf/i/3gBknTOE/NkcKHuh9OO/juV:jZ2pVn","tlshash":"c1c20da10417444097835ce223cebf34fe0f92507142d0b5abfdab6baddbc6652693ad","first_seen":"2025-06-02T18:32:43.310456Z","last_seen":"2025-09-08T23:14:17.148601Z","times_seen":1698,"resource_available":false,"data":null}},"time_used":62,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":62,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.99","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:02:00.506Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 20408\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 09 Aug 2025 05:14:40 GMT\r\nexpires: Sun, 09 Aug 2026 05:14:40 GMT\r\ncache-control: public, max-age=31536000\r\nage: 150440\r\nlast-modified: Thu, 29 May 2025 23:49:47 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20408,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 20408, version 1.0","md5":"e8730678d4610fa908d3cba1ef0b4ddf","sha1":"1efcbee909ce74bf04878d74867f12a1e41ae7a4","sha256":"e921785496ed2d98c2257c88a6f838afa6acbee05cb8467048501bfe2a301461","sha512":"d7c3f81ad11ac5b3e6f454fbbb9be0940b3e8da93cde0b80f9a91a8259966be466b4d6a0fd5527fcc6c8f218aad8ffd0124bb29dfa08f6ca658ce49fe9e37e6c","ssdeep":"384:D+h1xN53scre+kLtT5+wpcR98ffVvdSMyNaHAUvLFNPBtn2aotFn9mTCAKDi055c:Ss/XRT5+wpM98ffxd6uZZRXnemWDj5WL","tlshash":"fa92d1cdfc0e5797a8e14ee93c0a7a4dd76f438af366a94b25e66122e67a55c040320c","first_seen":"2025-01-09T02:30:28.977279Z","last_seen":"2026-04-26T16:02:42.32566Z","times_seen":56862,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jw8-theme.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:44.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jw8-theme.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/3w7nq3isc1fo\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:44 GMT\r\ncontent-type: text/css\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=vN0gcmqT%2B0YZMPVBwCpYs9MIR%2FRFY%2FfAv5qp8TkPVai4dXR7UVVXhrVij%2BlhoO8JB08wg%2FOOMT0GlD7tX3PUXcCgE9arD2kqUTNHNekEA3g0cS6Gb0oRyKGdM2HyBA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 05 Mar 2024 05:34:02 GMT\r\netag: W/\"5f3b-612e330968823\"\r\naccess-control-allow-origin: *\r\nage: 1690\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96d31de99e33b4fa-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3703\u0026min_rtt=515\u0026rtt_var=3540\u0026sent=96\u0026recv=145\u0026lost=0\u0026retrans=0\u0026sent_bytes=9648\u0026recv_bytes=8549\u0026delivery_rate=497231\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=291be07bd64abc55\u0026ts=497\u0026inflight_dur=58\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24379,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (938), with CRLF line terminators","md5":"fe5e9757de5bbdd3f8157ce67950d325","sha1":"f7e4ea57093c9f84ecb4b2e11f5f548cfd62bad7","sha256":"0422fca1202e71e489ae82a3b4c530935be8b8685c532cfcafeced89f08d537b","sha512":"e8941f56e78e4ccbc1a5c42fd14b9d37049eb6781d7750a3e68b895237b5882ed7935a482834158cbc9d43723f0a40cc5212b49da18bf9515962c21466cedbf0","ssdeep":"384:tyqynyuymyHyoywyfyCy5yAyqyPybyiy/yJy9yDyDyDyRyOyJyTyJyDy8ymyCyUj:tyqynyuymyHyoywyfyCy5yAyqyPybyiA","tlshash":"73b273969242822c2d3b5678ff233a04ebaf7557d749a3e4be7c611c8b71183f0e5a50","first_seen":"2024-04-15T00:22:36Z","last_seen":"2026-04-24T16:13:40.040511Z","times_seen":744,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lwvlcrbywhsruwa.com/","fqdn":"lwvlcrbywhsruwa.com","domain":"lwvlcrbywhsruwa.com","tld":"com"},"ip":{"addr":"139.45.197.101","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lwvlcrbywhsruwa.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 09 Aug 2025 10:53:13 GMT","end":"Fri, 07 Nov 2025 10:53:12 GMT"},"fingerprint":{"sha1":"E3:C8:5F:67:68:89:BF:73:1B:C3:1F:2C:20:D6:EC:64:C7:5F:AB:F7","sha256":"F6:A2:BD:4B:2E:87:B0:93:2D:3C:E3:A6:7D:49:D0:82:42:6A:A3:B6:AF:C3:68:AB:DA:77:4D:4C:37:AB:5B:01"}}},"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: lwvlcrbywhsruwa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: HEAD\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:46 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid\r\naccess-control-max-age: 86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":152,"timings":{"blocked":62,"dns":1,"connect":26,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"lwvlcrbywhsruwa.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"8nhvweaoetmq.n4.adsco.re/","fqdn":"8nhvweaoetmq.n4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"38.132.109.126","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:46.724Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.n4.adsco.re","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:54:44 GMT","end":"Thu, 16 Oct 2025 09:54:43 GMT"},"fingerprint":{"sha1":"E8:50:0E:37:80:04:3C:5C:59:CD:8C:24:F1:FE:D8:F1:FF:1A:B2:40","sha256":"28:14:77:1D:ED:49:07:14:6E:D8:8C:76:86:9D:DF:DC:03:EF:C8:93:12:71:33:5A:35:E5:1D:99:92:00:32:C6"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: 8nhvweaoetmq.n4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Fri, 16 Jun 2023 08:37:42 GMT\r\netag: \"648c1f56-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-26T17:08:26.179498Z","times_seen":14237337,"resource_available":true,"data":null}},"time_used":874,"timings":{"blocked":390,"dns":126,"connect":88,"send":0,"wait":88,"receive":0,"ssl":180},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026sid=4a59979c-2c45-41e8-ac6c-5fa43edd78c3\u0026i=1\u0026s1=cpu8600\u0026fs1=1\u0026s2=47746\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.013Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026sid=4a59979c-2c45-41e8-ac6c-5fa43edd78c3\u0026i=1\u0026s1=cpu8600\u0026fs1=1\u0026s2=47746\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:47 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: nauid=BNWPydbdetMvnCKcLIeO; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":647,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (349)","md5":"bffc8208d25c9169968a0f3edb80bd0c","sha1":"8130d8e348eddfb9a0d24ffdee790df084f2834c","sha256":"6269be2b9cbf0d36b6ef073525c24f5f5fb201b9d03919470403d9230f19bc39","sha512":"ce47c643d42d7503708fa4e16b7bebf79211f37299583d868634156b9b1a48af113c829d3667f882ed01744fc84f145ae9e7807f646f635840945f43fdc13959","ssdeep":"","tlshash":"49f00289865c57fa4748d0e3ec3d4ee1488d49782755500afb64535f4cda18203e018b","first_seen":"2025-08-10T23:02:14.540976Z","last_seen":"2025-08-10T23:02:14.540976Z","times_seen":1,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-10","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=5273f2e7-bedb-4de2-b957-6cbe8c254ba6","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:47.494Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=5273f2e7-bedb-4de2-b957-6cbe8c254ba6 HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1759\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Sun, 10 Aug 2025 23:01:47 GMT\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 12\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"adb4650bfc9d2a73d4dd69583b0ceb14","sha1":"1ce399d6e936232aaf2192cd7903a279c5015f22","sha256":"21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed","sha512":"3fbce22572bbed1aada0f7c6706f16a97e7c0ea132dfee1a7eb80f5e68da1cc63c891a5bc3ea8e87f0c97be3002212a0efbb2af9553acb45e0d447a685cd805b","ssdeep":"","tlshash":"436000000c3000000cc00c0000c00030ff300f00000f00c0000c00f003030c0c00c000","first_seen":"2023-04-05T07:30:31Z","last_seen":"2026-04-26T16:33:52.177641Z","times_seen":56438,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":89,"dns":1,"connect":26,"send":0,"wait":27,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/impression/ExjDc1x-4gLpDzNi0EtNatyl9Hwuk4uT2vmu7IREc6JoOzZAsYLu35P8sFOsq_CXu3VcJtKOvw_zHUN7ayKlg-SCssmvX0DM50KLy13GnQPBOW8oMVxtZnGofAoI8AqDcPaHiZczBAu24_dA4IJxmCmQTHuLIPlF3oVRnyy2hsXaqi0Avmjh44qRrlm3bxQkrB5Juq0YeFA33klLwtVC8wpYIDyGozFXxExK2DG1B0U5LVmxH8pv0jW58fOasEeAomDd2mR-EAW_NhztmL3IOczEq0WaH49bpRe8XUbFiwsS5DHXH730OclquGKVjPnDFyRUaMV73oMp0yJ27gKUIWZ54xhLpZfLhe5eZTg9dLa5XkJJq5fXwXPK74KxAVnnCOUvOh4xdZQmd6RZZzWDVP0-VsS6fV0Pu8nvOV8Ci-dr6KvuCM_DnLreSdRJ7CGBnqkY8zSyliI36kr4eT0wWC5karsMxvARcyzuX3X-EXYDnKcXXPnxl1nIa2wgdG9rKYEMHFIfD6e25-JCeX8G7mnzwyEtTD6lgwOpx1Tqf87evYTr5sAn0jmnhLoCrQVTBH6DttdwrZSR2SaIcfMrtW24Xa-RDWDOJMOEN-Ilr7qPn5nlade595k5q0vGf6bRr23pI1w8wPF2jI89SyTXhapqTlK0gTru1kdY5a071mFckG6Bu7ZfHOOGJrwT24yMAc8f8iLdBokH0oFlFxvsgEoHjZ8wjOK5Hkb2gbCp2fCAJ2S37HnViBHtoDyiHpwGNkuBacP5fcQvwpiD7hzNzNml3hrajivoHnSE4p5KNireep13RUdxvDg3_gaQpn1lmZFHTkQHWVU_-IG6ZGO6_jQLCcos4kAf?_z=7938571\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/3w7nq3isc1fo","date":"2025-08-10T23:01:55.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /impression/ExjDc1x-4gLpDzNi0EtNatyl9Hwuk4uT2vmu7IREc6JoOzZAsYLu35P8sFOsq_CXu3VcJtKOvw_zHUN7ayKlg-SCssmvX0DM50KLy13GnQPBOW8oMVxtZnGofAoI8AqDcPaHiZczBAu24_dA4IJxmCmQTHuLIPlF3oVRnyy2hsXaqi0Avmjh44qRrlm3bxQkrB5Juq0YeFA33klLwtVC8wpYIDyGozFXxExK2DG1B0U5LVmxH8pv0jW58fOasEeAomDd2mR-EAW_NhztmL3IOczEq0WaH49bpRe8XUbFiwsS5DHXH730OclquGKVjPnDFyRUaMV73oMp0yJ27gKUIWZ54xhLpZfLhe5eZTg9dLa5XkJJq5fXwXPK74KxAVnnCOUvOh4xdZQmd6RZZzWDVP0-VsS6fV0Pu8nvOV8Ci-dr6KvuCM_DnLreSdRJ7CGBnqkY8zSyliI36kr4eT0wWC5karsMxvARcyzuX3X-EXYDnKcXXPnxl1nIa2wgdG9rKYEMHFIfD6e25-JCeX8G7mnzwyEtTD6lgwOpx1Tqf87evYTr5sAn0jmnhLoCrQVTBH6DttdwrZSR2SaIcfMrtW24Xa-RDWDOJMOEN-Ilr7qPn5nlade595k5q0vGf6bRr23pI1w8wPF2jI89SyTXhapqTlK0gTru1kdY5a071mFckG6Bu7ZfHOOGJrwT24yMAc8f8iLdBokH0oFlFxvsgEoHjZ8wjOK5Hkb2gbCp2fCAJ2S37HnViBHtoDyiHpwGNkuBacP5fcQvwpiD7hzNzNml3hrajivoHnSE4p5KNireep13RUdxvDg3_gaQpn1lmZFHTkQHWVU_-IG6ZGO6_jQLCcos4kAf?_z=7938571\u0026js_build=8\u0026sw_version=v1.691.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2F3w7nq3isc1fo\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=08022167648241a9f39d2ea9ea4a5324\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 10 Aug 2025 23:01:55 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: e1e72f34943989da74a836d0166a79a2\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-26T16:33:52.13191Z","times_seen":98187,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}