{"report_id":"7b65c8e4-bb87-4a94-9cbb-c04fd04f3323","version":6,"status":"done","tags":[],"date":"2025-08-02T21:21:37Z","url":{"schema":"http","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"title":"Carla Vyxx 1 - Lulustream.mp4 - LuluStream"},"submit":{"url":{"schema":"http","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-09-06T21:21:37Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":21,"urlquery":0,"analyzer":8}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.081891+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.101945+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.121958+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.182083+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.202145+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.222152+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.382309+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.402368+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.422351+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.783302+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.802576+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.822565+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.584601+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.602791+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.622759+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.184801+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.202979+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.222946+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.385002+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.403185+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.423173+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ogoampoodopet.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"brnxpsoxoi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"naupsakiwhy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"theetheks.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ak.beltsflusker.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"storage.lulu-row1.com","ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"domain_registered":"2025-04-01","domain_rank":0,"first_seen":"2025-04-26T00:38:23.54678Z","last_seen":"2025-08-02T15:13:22.070073Z","alert_count":3,"request_count":3,"received_data":246793,"sent_data":1510,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"c.adsco.re","ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":16577,"first_seen":"2017-11-29T18:42:15Z","last_seen":"2025-08-01T05:43:49.62578Z","alert_count":0,"request_count":1,"received_data":79661,"sent_data":508,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"lulustream.com","ip":{"addr":"172.67.222.47","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-05-30","domain_rank":0,"first_seen":"2021-01-28T23:47:14Z","last_seen":"2025-08-02T15:28:13.217625Z","alert_count":0,"request_count":1,"received_data":4857,"sent_data":446,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tl930oaausfa.s4.adsco.re","ip":{"addr":"185.200.116.60","port":443,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-02T21:21:38.516766Z","last_seen":"2025-08-02T21:21:38.516766Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"phoangaisool.com","ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-02-10","domain_rank":0,"first_seen":"2025-06-14T15:03:57.685669Z","last_seen":"2025-08-02T11:04:29.753688Z","alert_count":6,"request_count":6,"received_data":8368,"sent_data":6585,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"xadsmart.com","ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2020-04-18","domain_rank":85874,"first_seen":"2020-04-19T20:24:06Z","last_seen":"2025-07-30T04:20:36.497485Z","alert_count":0,"request_count":1,"received_data":257,"sent_data":1738,"comment":"","tags":null,"fingerprints":null},{"fqdn":"appointeeivyspongy.com","ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2024-05-21","domain_rank":0,"first_seen":"2024-08-05T07:21:16Z","last_seen":"2025-08-02T15:13:22.020172Z","alert_count":0,"request_count":4,"received_data":154056,"sent_data":2836,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdn.tapioni.com","ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-05-27","domain_rank":167297,"first_seen":"2021-07-01T10:46:55Z","last_seen":"2025-08-01T20:04:19.287029Z","alert_count":0,"request_count":1,"received_data":2228,"sent_data":408,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tl930oaausfa.n4.adsco.re","ip":{"addr":"38.132.109.126","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-02T21:21:38.502279Z","last_seen":"2025-08-02T21:21:38.502279Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ogoampoodopet.com","ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-02-10","domain_rank":0,"first_seen":"2025-03-21T06:40:39.271085Z","last_seen":"2025-07-31T00:19:18.163328Z","alert_count":3,"request_count":3,"received_data":4265,"sent_data":3270,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"naupsakiwhy.com","ip":{"addr":"139.45.197.107","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-10-29","domain_rank":0,"first_seen":"2024-11-06T19:59:51Z","last_seen":"2025-07-31T19:10:19.568964Z","alert_count":1,"request_count":1,"received_data":172009,"sent_data":411,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"adsco.re","ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":8541,"first_seen":"2017-04-03T03:11:30Z","last_seen":"2025-08-01T05:46:11.242142Z","alert_count":0,"request_count":1,"received_data":1787,"sent_data":442,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-07-30T15:10:27.969323Z","alert_count":0,"request_count":4,"received_data":99254,"sent_data":2158,"comment":"","tags":null,"fingerprints":null},{"fqdn":"6.adsco.re","ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":17812,"first_seen":"2018-01-15T04:15:29Z","last_seen":"2025-08-01T05:38:11.643513Z","alert_count":0,"request_count":2,"received_data":991,"sent_data":845,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"bobapsoabauns.com","ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-23","domain_rank":0,"first_seen":"2025-03-26T18:52:40.148632Z","last_seen":"2025-07-30T04:04:28.404431Z","alert_count":6,"request_count":6,"received_data":519436,"sent_data":2727,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-07-30T15:12:44.837685Z","alert_count":0,"request_count":1,"received_data":408454,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-07-30T15:14:12.092299Z","alert_count":0,"request_count":2,"received_data":31878,"sent_data":899,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":9054,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-07-31T17:48:09.278893Z","alert_count":0,"request_count":1,"received_data":834,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"img.lulucdn.com","ip":{"addr":"172.67.174.234","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-12-19","domain_rank":0,"first_seen":"2024-07-31T09:55:51Z","last_seen":"2025-07-31T19:10:18.773405Z","alert_count":0,"request_count":1,"received_data":115263,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"luluvid.com","ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-29","domain_rank":0,"first_seen":"2025-07-30T07:44:29.756526Z","last_seen":"2025-07-30T07:44:29.756526Z","alert_count":0,"request_count":17,"received_data":1092944,"sent_data":7807,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"22hgc.com","ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2017-03-28","domain_rank":0,"first_seen":"2025-07-05T08:49:33.477507Z","last_seen":"2025-08-02T15:13:22.744839Z","alert_count":0,"request_count":3,"received_data":114230,"sent_data":2203,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.xadsmart.com","ip":{"addr":"95.173.205.15","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"domain_registered":"2020-04-18","domain_rank":151441,"first_seen":"2020-04-18T18:24:57Z","last_seen":"2025-07-30T04:20:35.938354Z","alert_count":0,"request_count":1,"received_data":42471,"sent_data":451,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"tl930oaausfa.l4.adsco.re","ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-08-02T21:21:38.50421Z","last_seen":"2025-08-02T21:21:38.50421Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":454,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tzegilo.com","ip":{"addr":"172.67.193.52","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-01-14","domain_rank":0,"first_seen":"2022-01-14T15:27:15Z","last_seen":"2025-07-30T00:10:29.697039Z","alert_count":0,"request_count":1,"received_data":18653,"sent_data":406,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fleraprt.com","ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-01-14","domain_rank":0,"first_seen":"2022-01-14T22:55:14Z","last_seen":"2025-08-02T09:21:27.364179Z","alert_count":0,"request_count":2,"received_data":900,"sent_data":1155,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ak.beltsflusker.com","ip":{"addr":"23.109.170.153","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-25","domain_rank":0,"first_seen":"2025-07-31T19:10:18.304736Z","last_seen":"2025-07-31T19:10:18.304737Z","alert_count":1,"request_count":1,"received_data":1446,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"brnxpsoxoi.com","ip":{"addr":"139.45.197.112","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-08-01","domain_rank":0,"first_seen":"2025-08-02T06:09:45.910041Z","last_seen":"2025-08-02T06:09:45.910041Z","alert_count":2,"request_count":2,"received_data":1228,"sent_data":949,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"4.adsco.re","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":19179,"first_seen":"2021-01-04T16:47:52Z","last_seen":"2025-08-01T15:46:16.022655Z","alert_count":0,"request_count":2,"received_data":0,"sent_data":845,"comment":"","tags":null,"fingerprints":null},{"fqdn":"theetheks.com","ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-08-26","domain_rank":0,"first_seen":"2024-08-26T13:04:53Z","last_seen":"2025-07-31T19:10:19.573471Z","alert_count":1,"request_count":1,"received_data":168448,"sent_data":409,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.081891+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.101945+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.121958+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.182083+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.202145+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.222152+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.382309+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.402368+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.422351+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.783302+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.802576+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:17Z","timestamp":1754169677,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:17.822565+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":0,\"bytes_toserver\":248,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.584601+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.602791+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:18Z","timestamp":1754169678,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:18.622759+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":5,\"pkts_toclient\":0,\"bytes_toserver\":310,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.184801+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.202979+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:20Z","timestamp":1754169680,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:20.222946+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":6,\"pkts_toclient\":0,\"bytes_toserver\":372,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.385002+0000\",\"flow_id\":1645610298851299,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.081891+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.403185+0000\",\"flow_id\":580900791094841,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.101945+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-08-02T21:21:23Z","timestamp":1754169683,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.4","port":58799,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-08-02T21:21:23.423173+0000\",\"flow_id\":1092650439400550,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.4\",\"src_port\":58799,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":0,\"bytes_toserver\":434,\"bytes_toclient\":0,\"start\":\"2025-08-02T21:21:17.121958+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"theetheks.com/400/7938571","fqdn":"theetheks.com","domain":"theetheks.com","tld":"com"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"288f6c62de8bc306c0bc871d7ff330fb","sha1":"ed03a07eb48b864234a7ed26152ca67728b53782","sha256":"d535e19e4876eeffd3ba1efb5ca73d3702944126b5601b73b3fcba50bea4fea7","sha512":"2b6cd1d80063064eb64059f92a3d5cf96554b35066bb64bc105370325a595bf5e1663147b946532b134f7259e6588ff832853e9fc88ec75fb5a9e9b892f10e22","ssdeep":"3072:mvsqlL3md76ln64JzLvXYSh/d/CxrCmC7fW50XKN/fo4vzp9Qu9za:ZAqd76HZYSxCxmz7fW50axbvl9Qu9za","tlshash":"4ef3f988b19275512e635134311fd20eaabf6b606c4e8580d19be1b67f3702ed37bde8","size":167592,"data":"","first_seen":"2025-08-02T21:21:42.681216Z","last_seen":"2025-08-02T21:21:42.681216Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/check.html","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f2e0cd22b41fa7c9212af0b11f449d3","sha1":"6c552632a2eeaa712496444594c3e8c68eadbbb0","sha256":"d7ca5af269e02e5109a61ef55df0196e2206204d6c742daba5a153defc097fda","sha512":"c90bb9984fc0b2a5374129cb10fc509e937ba565063e2530578430fb0329f8058c145c914de139fa166d8530cfff9799a8c78aa1ad2752d9ec72e24c0fed477c","ssdeep":"","tlshash":"d201685934f5684d5127b630255b22182d32a40325cbd94efb2cdb301f825a7eca8aef","size":762,"data":"","first_seen":"2025-03-07T08:34:13.499254Z","last_seen":"2026-03-04T07:06:03.173543Z","times_seen":7245,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"c24107ca675c86ce400f00f60737bf91","sha1":"915db7d3426c409da4f1c6d58c38d9dfd6ad39be","sha256":"3688d7e88d248ea850c456f0233738d10695a410a3dec97785ca7422c3f562c1","sha512":"0b10c8522a9d3b4cd1b5d63918ca7888bf837bd48c2c456c38e20e215a0c5e1cc38e5248658c54021b1d2337a68dc1f61b17adfbda678078d0d4a8cb4fc56e40","ssdeep":"","tlshash":"2870002002002830880200022020cb8c2a200280280230008208000800208002808a0a","size":20,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.491972Z","times_seen":18883,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8bf7b38523024c85ba7d58adce06782d","sha1":"e59fece7ba043dc5e369cd5e109eb848c43b7bc6","sha256":"ead6750342664e83f06fb64f826a27a5a7e896aceda7c7f419e170222d837508","sha512":"15d97206fca24c9c6d29519d389f1b5457b337688c8c5f26096e964d352357d92b1ab34c9a9ecc1f1d486f5f3324ff965609fab204be4b54271b2e53b024c8c1","ssdeep":"","tlshash":"368004041cd4dd7430054c41341070d311134f11c0007400f54c471704c054d5c1075c","size":38,"data":"","first_seen":"2024-12-27T13:53:56.12858Z","last_seen":"2026-04-04T06:19:11.226419Z","times_seen":1092,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c391d4e698489e5adc4c77d540f36fca","sha1":"88c07d5bb5087a5cf9f444ea75839ba5dc1e893b","sha256":"10e079f56921a988ec108cb6fa10a6d1b6ac09c0c183298ffb549ff867ad882e","sha512":"8660c98648121e3d31300da8d599dbed8f464b4a7687ad6976b98f44fae8acf263b6408dd92dcbce5a3386987f4c49b91723ae27c062c84639fdec7e01226b1a","ssdeep":"","tlshash":"a3b0121736ece02dc033a53add26b0cbbd1b20209000ee4e33843b38bb030061d806ba","size":102,"data":"","first_seen":"2025-08-02T21:21:42.737651Z","last_seen":"2025-08-02T21:21:42.737651Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/#0.09347032005331257","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"77c8287be10ff4b66a8490ca4d999917","sha1":"7fccb364c5e22958503bcd8b92cdb648d5c4c96e","sha256":"c2d43195d015b5856873b3b0c6e717ee21599ca3f03f820b7c325f27b9b6a31d","sha512":"2007ec2f0297a0479f4507af110911f7022310f757533ba1bbd40228d9b26908758bc09afa59f09471cdc254e49b84baa61f80514a010195d288f8049dface07","ssdeep":"","tlshash":"e3f050ddb475e1e955d22580bd2fbf407876526e240361e0d20cbcc1041868e871dbca","size":486,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-01-09T03:52:32.475699Z","times_seen":6630,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"83157cff6488520dfb2cdb771728ac14","sha1":"cabefafab5503fdc5d563fcd7003a87a47fa4d97","sha256":"e3b91b9616dc2492b3e641d9712f13bdc959452368335d3041635e1b75bb6bc5","sha512":"3a775ee3c46fddef3140376d35b9dac7c9e4c5348aab5c30d6d8b997d635987ded7c300fe18f5e11ed6e281c210831de9745ca622c0d74abbfc17f88551f3bad","ssdeep":"","tlshash":"b5d02288223b0cb492fb2f0a0fbf7a08f0263283c4c099222c4b27445f36e4be710948","size":218,"data":"","first_seen":"2025-08-02T21:21:42.740534Z","last_seen":"2025-08-23T19:04:37.610268Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.xadsmart.com/psvg.connectable.min.css","fqdn":"www.xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"95.173.205.15","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"76462ca0781199c49e0a130102d8f91d","sha1":"4095a95749f47519ff55a468311980f4e11afc60","sha256":"87e2415595d191ff46228e9c5db8fd1c0a8a0cd1c0822fbe1592328c5fa98126","sha512":"4a91d86e57db176bb9d551a47adbec1c1bb3d8fb16b448234536b54c4e469cd9a3ec5164b4539d36adbdfac6e63026466b91dadda4c4f4c5a4af75b2390d0a12","ssdeep":"768:bt9rqAYKKWZzFQ9JsQU+YDngZGihfzmMzhYrTsAysncCWcf5k5sigCQNCntlqo7/:bbNZzFQ9JsTgZvfzmMzhYrTscpkZd","tlshash":"121329aab286282601e742b9503eb317b23305167912d458fcb9cdf96e3dd86117b7fc","size":41925,"data":"","first_seen":"2025-07-31T19:10:28.961709Z","last_seen":"2025-08-06T07:16:49.092195Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/get/2003354?zoneid=2003354\u0026var=sarah667\u0026jp=_clnojxlsvbdkvxsuszqlfb\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=OsiCRA3pV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=4ABjLfraHR0cHM6Ly9sdWx1dmlkLmNvbS9lL3J2bnpvNjRlNTFrZw\u0026afid=2085286100793856\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"4b4ccef58b76378cd9dd3c1783cbf75e","sha1":"6246679030433454e2fb24ea075487906717d9c2","sha256":"63e54c3403aa8d1c616f06affeefe44b1ed197f9a1b4a0c52dc4e92360a5246a","sha512":"7c1cf3bc47adce54cefb2d3de7f2b7d9060567572ac073d995cedc8608c2c4b847e3dfd3905762ab6f1b7a4785480480a7fad1c0b286fb0a5d1aa581ed7b78e0","ssdeep":"","tlshash":"1a6154eccf78f584b8b14dce5539487a398c2c87e983d693c3a4da3581378b54b46d4a","size":3404,"data":"","first_seen":"2025-08-02T21:21:42.671763Z","last_seen":"2025-08-02T21:21:42.671763Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"99eccae6afa72c589ae54b5c3890282a","sha1":"0f102f8f5b556635de65d16cf70fa8269c6761b4","sha256":"b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3","sha512":"01bc413c1695c125b8ab111c60974da99989b618fb674631d998db519996966c569503efb97a3c760b50069e87b6b42891985b00c64810a43935ada075a19d24","ssdeep":"","tlshash":"eb8000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e20c228c3a","size":38,"data":"","first_seen":"2023-03-07T12:59:18Z","last_seen":"2026-04-04T06:19:11.098755Z","times_seen":2582,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"93128c282499b9ac18b63d0170ef3d44","sha1":"20a9c22e9546d49fc54c41ecbfa82880934f45f3","sha256":"f58ab76f9bc7003d1eaa68b8ca01bc723da2137cac1536511da193bd3062f86c","sha512":"7275c7fe7ca0a85191389c0c276f16c73ea59858c6af7268cc1c4a306755a35956ac72c4c8a7ba702c386eaa76ef38e871d50f0b18304dfd9ef1c75430a53f85","ssdeep":"","tlshash":"0d9000020c0ac08a003a208f3a0e3b002a02aba080020202bcea0238b8a8003aa08080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.290898Z","times_seen":13778,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"dab7db54d61fcd7d85923c37ea5b9655","sha1":"c9a4d62c6afb59a6604cca7f32d02e6344abb3f3","sha256":"62fb74822a957facd055dfbf3b65e9526688c06a603ff080baa1dbf6a28c2cb5","sha512":"2a4aefdf56079afa923db9e26e563028337b4b553aca65b7abfe129c229e6b1be6c4db58a78d910a01ec40abf615103a9ff1a72f817c52181cc7bdbc21a14fd9","ssdeep":"","tlshash":"14d023b0b2d338b1860304300f030130075948e2ef02104060cf425c06c1ccc7042c05","size":213,"data":"","first_seen":"2025-08-02T21:21:42.743564Z","last_seen":"2025-08-02T21:21:42.743564Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"365753f5db3715994349e69ec3e6a5f8","sha1":"f61a8cbffd148f747669d5760b5b6999bfb53cba","sha256":"74c4e67497ceefa9e75f8e1c6a659989bb15bd6c6616b684a038abc3602d2dcb","sha512":"7053a27017e32fbf87af72ad8c5332008a946025b8e9a0cc352dacbf0b47dbde763f9a89bcf2ae6c5f1b4a4c1ca936ac4d40e53096de5c93eed12fdd5ad96701","ssdeep":"","tlshash":"2c3122db31a0fdb1078b614c212f1909f5bca4a0a3ade8d1cba9cd747d385484061bfe","size":1813,"data":"","first_seen":"2025-07-29T22:27:57.77684Z","last_seen":"2025-08-18T06:01:05.332385Z","times_seen":192,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"8b5e8699c1b76c14c38283a27772a3e0","sha1":"8e39b41dbcb6877e9b189351a2c90908abdc7754","sha256":"cfab5312f1cfff1e8162225ab27453306ff627f512bcf18225c0a305ca093e1c","sha512":"66ffa0031cc22b4eec8867f36dcf3d887b021a11ea74f51c2a2eff1ec4cf9eeb44c4e1d5a6c197f29d66546c5f42ef283c54261f6157687237e4dabe1715523d","ssdeep":"","tlshash":"cb700000000228a200fe230e8e82230822282223a28820c820220a2820003232380880","size":25,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.508546Z","times_seen":22393,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d720eef71edef78b948a643d5712ec07","sha1":"ea5eb334bd6ddb0f04abafb700dc2ecb30070c76","sha256":"2daa1a91b2430e9867296c9cb26d1483785954a9bdd66f79b2c754bab7092cae","sha512":"63368ff1fef849df7f849af23bc2f24698893bd3d58300282427a76665b2d5c94f097d409f93173ad9c36944b4fffc2e37fa03a91f81e4e04f3737f9b73d2d6f","ssdeep":"","tlshash":"5f6000c00000c00c0000ccc3c00300c030000030c0cc3c0003003c3300cf00ccc00033","size":15,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.51255Z","times_seen":24260,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d9f9b0f82813d813afe0d450e9fab4d6","sha1":"cb6ce93dd97adc3649f697ff49681f5aaf8b1671","sha256":"d204422e9d49293ab422bfabae9607635876cb30f77215f133603bac691f6f4b","sha512":"849997b396eb218b8bbc788eeb34ec3eb9ab4c809a07ac707a57a5e13baabb69d2c52795403d032f007276109c7f4476daa8255550fa236873e1eb9ba6dba3ba","ssdeep":"","tlshash":"706000c20008802002c200028820a2802832008a20022000c00800000000a0c0222808","size":17,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-12T13:30:56.245454Z","times_seen":23634,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7545d1da7159ca66338b4c84b69f8ae4","sha1":"0858800340ee5b8c413a1aabc50fb28d0bdf89db","sha256":"7510742fba4d25113b6124987e97cba40776bc5030a6a3678974dc8ba075bf81","sha512":"dbd944acd2868ed6eb1de313c0efe7590f715129f7ca5a9ae5a3dfb9de0035612a248441d9e6c4c1812d8ec4b3de7cd2a5973c4c71887361a2276de1d73fab94","ssdeep":"","tlshash":"af8000088820202a20be0a0e02a3e232220e3022a0020220000f0280380020bb302880","size":26,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.488245Z","times_seen":22614,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"67b2371a222c2dc94f01b8579fff4f4d","sha1":"0b0a5e2d11790de282055efe8b8cfd6f4378bbfd","sha256":"dfafe4f2e08c006ec277e8042267c6237512a1a93bfcf57657420d4becc0a97b","sha512":"06a32863a820cca2b2f4460c10c4dc3583687648c909c5f67c746e727ecd4ea6301db1273b40dacdaf397a585ff257eb8c3e226fc023e95d3bda257e02505dfb","ssdeep":"","tlshash":"d4700002880200a8302bc808a3022300200080802882000008888002b0000230808088","size":20,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.495091Z","times_seen":20840,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jdadbl.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"95fd065c887d003f9a169dee9876532c","sha1":"0f111b6d5e142fadb966a1feb264d519c12a59d9","sha256":"4d4c84ad505bddf4d49b1222db984d7aaa425c6702c79029801632bf31f2b80d","sha512":"cacd512fbe11ccdf89c56c164255191d88f1edf46a9cb02b1de0d690659923a6508ae8d5d1733c5452974ebfae589f4c1214be047ba67d5218db06c3fe9a25a2","ssdeep":"","tlshash":"5451215775c270a0273b60b4952f710a773a5892250b8860c3e5e9952c2c8ef9177f9b","size":2631,"data":"","first_seen":"2023-05-22T09:51:00Z","last_seen":"2026-04-04T06:19:11.114061Z","times_seen":776,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7a837a4ba8ea13b8193945adf0261e19","sha1":"61428cd720ebc0f01c4c017204c313193c22c101","sha256":"28d9693460ce57dd4e01742e50a1baa10cbed3fa6c20c2a69f02424f80fb9a2e","sha512":"abe0e46d98027527a7d2567c4feaece7ad3c1ec94eed8fea59b9eec596cdd4fa39e7776e9dbc4dd6fe777d9b09300d45ba2a49fc9479e0acbdea92ebf5ef940f","ssdeep":"","tlshash":"516000000003c03300300300030f33000030003000030000000c00303003c03c0030c3","size":14,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-01T14:36:47.441265Z","times_seen":23236,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/2jiGc77.js","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"391ea374a82e33b9213ca1fe96f7de97","sha1":"9280db857ce7da2980ea86c8c4a0b311d395e7e7","sha256":"ae9d1d5e57fe7921126efed4073a9befc127339403bee422c7e24cd0f1812e58","sha512":"405c925acf1f4a210de7c07dc6cf1b095108183a1e0a71f4401367bc3a9f9ff88e9a6ef30a2bbbf697524c8929bbcb72dff0469ec94999b2e655f550ea7870b2","ssdeep":"6144:bBdFoj94bqFVFs2KbCrSXvQEMZP4bobT4bDbgbFb4q8ebOyTM0Ia3Gvu5Fp4fRkj:g2bqu2kZRXit3p","tlshash":"e234d989b6c1b0b402e3a1b4052f551af277b944744ec4c1f729d9d1aeb9a0e9a37f3c","size":245039,"data":"","first_seen":"2025-07-29T22:27:57.713788Z","last_seen":"2025-08-29T23:20:58.983677Z","times_seen":190,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/aas/r45d/vki/2003354/78215968.js?var=sarah667","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"40375a03b24677253fb6880d3a71a495","sha1":"0972beb93d9a78f4c6b42aba71dbd25bfb1d3d36","sha256":"59789a6f66f632656916a66e973846a920c98343b2cf107713e4025b781c4c8a","sha512":"4729b60a149eb66311fcfc9cd79cc6b82a52d5081a577b90db9c79fd6cd55047e1262458f7250e861714775e90c5e51ea33b57a43625b3f8d748df6e8a41c662","ssdeep":"1536:1kFuyLtoCqYqcL5y6PjBg7YgLXBDkWfkCXgllxaJoXJfCP5yvPGJ7FyJEPRx3:1NioHYLY6Pje7DdelCPVymx3","tlshash":"10e3b7bd7a826c720172a13ba83f570e996e58d7a4cd4410cee3c1c8fe69507d191fba","size":146217,"data":"","first_seen":"2025-08-02T21:21:42.724087Z","last_seen":"2025-08-03T05:29:27.612285Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"79e362235e366729632e60d6d35f8904","sha1":"69df1a1691b05442e11e2bc5825fc6297b977a92","sha256":"da82a56eb8524f5d12a2afcf2c5d0cb6184f26995167212a0ccb3bc2ba0def36","sha512":"94ca14ccb12238f547249a07134689257dd97639be34d7f466f52741df7176be982d88c5d294dd42a534a32d908533b5eaae33a13cb47ce0cf065d3098d9383d","ssdeep":"","tlshash":"fe60000000000c30000303000c30c3cc3c3f000030033030030c00000c00c003300c00","size":15,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-04-01T14:36:47.45823Z","times_seen":23587,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"a97ae6bd4dc972c26de801f868a79d5c","sha1":"cf1a46aa575a9718f8d4154813a7892317e7f8bf","sha256":"51c1083130407a8772738aa2380eb5a583240a47d98f2204b124c06fd11aabd5","sha512":"f16b7e511db0f35f83e9380c46a6173de1ca6aebbcf4aec1be6efd8d0cb669fc9a07c4e7702149f0421425109c35a9cd041347677ccaed445c978296502e78a8","ssdeep":"","tlshash":"51600003030c0000c00000030c003000fc333c0c3c0c30000c0030000000f033cccf3c","size":17,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-01T14:36:47.464445Z","times_seen":20795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RFESL45RJX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"40168250509100b7d5e4e6aedafdb67d","sha1":"b0cbd2cc40019ebe5fdba02e781f7b339bcdb95f","sha256":"8ff9c42d81e51841ff44ba8e542fe2a352b9e93f3e16de0b55e1562628c42b54","sha512":"485015c073001c6acb02fbbe568b238b5596303fd2305c438e8d6b06eac4004b0ab731e5d2264880657db8e169e4c98f79aafdabbbe13c9cac8ac1e41308ef03","ssdeep":"3072:7j6PkjHeWKA8xwym06o1Vlpfz0JeE8JGXbrunAIH1EMHsNKlKZtcRWaWU5Fjt2Yb:7rgvm0HjHnCKlo9aWU5Fh2nr7XwK4L","tlshash":"0e8419ce73d674269396f078503f018ba57b29a2b45cc89af189cce42d34a9a4177f7c","size":407453,"data":"","first_seen":"2025-08-02T12:10:01.977072Z","last_seen":"2025-08-03T06:18:27.899963Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"265fbd04531d9cf5fd767b4e3149a5d1","sha1":"9df7368252b2b411d8472e2a6cc46fd5557ac415","sha256":"1b5a1da3648fc66667a67e766f23683675655e69a2f5186d65e750c7af80fa01","sha512":"c66a183c6e2dcabfedf54ccf42ca70a8cb2f9fde6fdfabfcb8ce20dc684821ce10b7892a940f459cc41c7462c97300aa740eecc1a38638845d159c684c9b036a","ssdeep":"","tlshash":"cb9000020c0ac08a003a208e3a0e3b022a2a2ba080020202bcca023ab8a8003aa28080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.308656Z","times_seen":13860,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/polyfills.webvtt.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b3e139c07aac361115e8ec41bde7d2a5","sha1":"0c3fc8d31887dafb86ba778da788ece5cbf76f18","sha256":"1ff5585bdbea001d37f3647975a645f0594090f070915831286de90dd45949d5","sha512":"0b2a16b1b9a63ab3561c9d7e63a2a797781f6abc09c304f28530c6a8c87224083c708989534552d11948aeec3aabb36a943173fbe651c64810d56f08f2bc68b7","ssdeep":"192:gl1026oqO7yNPJUsnOGhcAsej4Du/YVLEO1mTLSRavTdU94o9pD5i:E10tvJN6cC3RPVUTLKKTdObpM","tlshash":"7222f690b2f5609d8281e49f456f0284e2399630fe8bc4cef550c5f9dc74a8a127ebb9","size":10791,"data":"","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-04T06:19:11.159053Z","times_seen":802,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f1e41f0e16667ba072b8a73acb6c0f44","sha1":"4f2b5917683cb4aeaccd07f96d3b97e053b2cf01","sha256":"0ef17b9beebb471e24303a31f0496b6d81057f9de26d6d1f3930d4f38335094c","sha512":"905724804959e3b98f970f466836ea4c65c8920feef7bf8febb660e1b13a4cf51a8cc784542e399db34cc2b551d1444ec646851e749282658950039c8de93da9","ssdeep":"","tlshash":"52d022cbf1bb74a0723f2074c9230124623848eb49899ed5fdcc99040f2e587a400ba3","size":214,"data":"","first_seen":"2025-07-30T07:44:38.064185Z","last_seen":"2026-02-08T09:18:40.023062Z","times_seen":387,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"41310478a380eaf7e07dbad9b4f81a97","sha1":"1714b6ef86e90b5b23e2aaa1e7728ed9c59f4d34","sha256":"848e5342d9196c0f64861ab926a3c5aecce9294750febbd22e5d8df859bdb144","sha512":"7b93f330547524ce01b8f888a8d56c19cd4432fbee43db16aab33fc1aecd77243762c5e7dd5ce767e38c0fdf9d58bc629caf106d77689c1ef90ebeb09406580e","ssdeep":"","tlshash":"d37000000000000b203c00020a023a003003003000880800820808302ae800b802c0a0","size":23,"data":"","first_seen":"2024-02-12T20:00:21Z","last_seen":"2026-03-06T11:55:01.500018Z","times_seen":19951,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fb440b8133f21c3e5d3e39624e7bda94","sha1":"1b46d8568f9bd8a2be944d6a61924a21ec0b6e4f","sha256":"a5e2bc908c3bd3196d273564d073484f9905d13817490eca5aa249e701139cdc","sha512":"f874692932aab2be754d763a3998c5cd3c654a5bcd78c5d839fe0ba506f9a9e563d3cecba0ca71a6b0db35ff94943f6fa8bb0292f10c1aeb7df2704ea6d85fbf","ssdeep":"","tlshash":"047000000000000820200802220322083822223002cc0002220a083022ea00b80282a0","size":20,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-01T14:36:47.456368Z","times_seen":24287,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.min.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T06:44:35.798175Z","times_seen":444728,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"aaf72876f0d5e8a677a383fd45bf938b","sha1":"d8b2ca3c238c933223f4a6313c5c0561f99e0c1c","sha256":"15eb7e222abfc64660d0f94c04053839498df20ea9ac9a13a201701a56ce3bf6","sha512":"c6bec20224539a5319a753a794c7521e7063e76b3d41bac8d7f0159880eaf3ed07c3fc1b0eb4ec285f1970f270f4b0ab68890d5a0ed01e3b1542102ad707f6d7","ssdeep":"","tlshash":"207000080820000820200802220322283822323022cc0002220a083022ea00b80282e2","size":24,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-03-06T11:55:01.498128Z","times_seen":23956,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ab3b4884408bb0261d6b56a7d288fe80","sha1":"b0f370141ada9b591302b575434c255db51ae151","sha256":"e5a13721b456c9e090f80944728fc91767f5ae01b01f59160e73ff2c7cacc587","sha512":"e57cb5cdac6519a8a24e85d5d91f2c6492e282308a94d369619e9455cef8f22a2a6abd62023647fbfa0228b6d3e12da22c280d691cd351608aada9c284ca3a66","ssdeep":"","tlshash":"6c80008ea0803232a2fa02038a822200a2af38ea88008820000a0200288030f232ac8a","size":26,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.519336Z","times_seen":23027,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/5/6568874","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"b9d215af30bc2d311b6e1fde9029ef88","sha1":"d92631687d31c8f24b6dc439e6a9c5b0da7a1b2d","sha256":"e4d7dae2a4acf3ac6080a38222c517352a5737457b2a6d8721c5d21d469f8500","sha512":"6da0c6491bcac80d24ac182fb64c3ef2f3d9862e08c6c9e2dc2171a3ee5777dd2fe8acd40e7fb1856897f8060ee828a871d74a54877be7d1c2812ac708463bb6","ssdeep":"1536:GiACUfrlRSX5Mo0esqj9Us407weYGM1L3UDOho3S8b1a4zNXaH242Wsg2sryA1/u:ZAC0jex4QweYGmebNKH2429CryA1/u","tlshash":"5ab32b9d629238b55da681383c1fc55c6eebaf60044d88e4d0e99c737653074d3bbee8","size":111324,"data":"","first_seen":"2025-08-02T21:21:42.694323Z","last_seen":"2025-08-02T21:21:42.694323Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"bdc6234a33432c503640ad2f62105dbf","sha1":"2e733c2d4f1953a7ca2231208e8e31edc399ab19","sha256":"61e43d202b6cd0ebf29ac8014115fcb890eb5593c4160b9ae285206ca911bce6","sha512":"ff6da6a9cfa04e9c0e4c8c038b70ff6461de31cf3020ffa062fb50d6507ffb72d431652f7a8eaf7fab316b387a16a0ba5923cb568450f6e5a3eb7c232a3793b6","ssdeep":"","tlshash":"bd70008e020000a0cab220a80a022300b0202c0008022200a0a00008202ee038288080","size":21,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-04-01T14:36:47.455314Z","times_seen":20563,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"6877ba0e0b4d5eee484d566010ce8cbb","sha1":"0a0341f8742fdd130df22e8264f52eae6f5d767f","sha256":"78e940e3e5d6daaeeba31818b30bf5e4b1b65bafe7290dbdd8a614ffbdb3665f","sha512":"52280dee146c38abc557aecc6bc670bed1fc30279fd57f8d24532163150b6d8fd78945339cf2d56e5cab9fa331e63dd2cced05e83f23bfb7cf56ebe1e9a3caa5","ssdeep":"","tlshash":"dca0021e10826bb5418a58ff70cad050b1723098b669632db55755192e9d11112b559f","size":60,"data":"","first_seen":"2025-08-02T21:21:42.755721Z","last_seen":"2025-08-02T21:21:42.755721Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"dca14c896efeb4b80c68c457aea67f39","sha1":"2488a552655a41fbd3f3165ea5b1999f46f25738","sha256":"998158f6df4183edd82539e6dc971d32f50bc7ee075f64d4abc46d3011a9da27","sha512":"56d0ea635f1a8dd9f7bfed6a8e087ec4d8e38bf65eaee1e1262740fc7ce80cf1b45ea861f0d5949b69ecc650427ccc8879f1b7c9af78933ba26d0aa9f704033b","ssdeep":"","tlshash":"ac8000b02a02b830888c220eb030c3c83c30000030033800a22c00cc08b0ec02208e8a","size":37,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.497655Z","times_seen":18393,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d8c81442e74e2aee0929479d20170ae0","sha1":"9de4f4b80c02779e4ae982e0638d2075b48db354","sha256":"a5a0d9be349f2f79e82bb0780285442f54e42939e5e4783db7843956e2ced445","sha512":"9b29a0f8504c6d1add7120c2278afbc4f13f7505f666a23669378c6834aaeeb07c9ec1012c247a8b694caebdffa0f0f5ff2d3f135434924682de4ea6eefda8e3","ssdeep":"","tlshash":"678000080ab880b830032a00ac00002222088f80a8a03ac0380e03bb0ca2c000802a2c","size":31,"data":"","first_seen":"2024-12-27T13:53:56.215783Z","last_seen":"2026-04-04T06:19:11.232717Z","times_seen":1084,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"476b43130f4da0758e51a26ea93e733d","sha1":"5eac9c53e9cc1410e58f6f0bdc85528acab30736","sha256":"b19d05a8d492320ab4db4d74ea0e9e90374bed47a18e805f8018ebb00af0c23c","sha512":"d7b6af5bbc8185dfa58fccd8be30e14c79aed4aba53d8824cc066465690837c5f2d173bc3bb78eda33f9ae91ac0434fbb63d4d4c906e1874cc614ecf72ac4291","ssdeep":"","tlshash":"547000088202202a003828028282a220223ca82080028020000a020228002032ba08c8","size":22,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.506782Z","times_seen":22784,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"7145e6d4dd187b573a13f0240103f6f0","sha1":"f8e7ff7fd488f675f418011ef8ecca4a822933b5","sha256":"02665a4c106fc96e71ef5a17511cf353ec3f5cccb82ec9fce719b23967728897","sha512":"8fb980002683780ece97cb8cc6679fb9c8c97f543b927fe1efbf4073887176b68be02fd0ffbbc4bec0ebce401d04132fe4d1ab1edab9d006be9493f77bcfc736","ssdeep":"","tlshash":"0d700020000082000b2000032f83b280300a033000c8000002028f32a8e802fc020080","size":25,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.482966Z","times_seen":21540,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fe99bbf2987d52a27e4d042d61264b5f","sha1":"96bb68de49d3a4146142cce3f02de1ccbf8d0bf6","sha256":"cfe90e4da6c1841088b25b3582dc78b887f3239cdfde633ff426703c6ed538f5","sha512":"9dd74689d8b3460b4da7557d2797047f31cfa1b8522959d152c08f1f48989897e15f026d9b254a7ef61b99b9b18fc002054f29a12a2e30554a68d7815c53f3dd","ssdeep":"","tlshash":"d570000a20a02022082a000082022200288c0082a80800380a008b003c008032222382","size":22,"data":"","first_seen":"2025-03-02T21:04:17.177505Z","last_seen":"2026-03-06T11:55:01.511158Z","times_seen":8483,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6043a0b1ebb36c505a9191b20e11815f","sha1":"6f9cda2539774241dca5f5df2e40b2e83139768e","sha256":"354d474759535f5f0bb63dc6c5ea17455fb3d281aeb3cd6d44c2f3f594c5dec3","sha512":"5a55931f152716ef8803227e0518befc7ec9fdbc66f16aab57824511c7f3a94bfd9b93b4417d6f759d04c517f3d242eec582b49a8d92be6079b88e10a27fb9bb","ssdeep":"","tlshash":"517000a20c0ba0020c228b02838222002020028a288830c220a088203222e0b3028080","size":24,"data":"","first_seen":"2024-05-15T22:21:35Z","last_seen":"2026-03-06T11:55:01.515568Z","times_seen":14363,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/new100.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a404d12258254e435583a10baa32a8b8","sha1":"a7bde7e90a122cc61a016e3e4f94339ca866d6c3","sha256":"32df889d6099045ed25a5e32fbf53de6fbc07ff4b82ccc3363b6d06acb254b84","sha512":"594cda55bee6617a0583494ea1a651335081d4b393aaafe10764b930b9095e7f36edd4b5c82520737f47276f8cca302fd39ed0a6bbd97d400734e3765c3ed6f2","ssdeep":"","tlshash":"1931bb2b2cf4203025f7600d171b6144b0529643251deeb87adc435a3f94d6d8e76bed","size":1473,"data":"","first_seen":"2024-12-27T13:53:56.121207Z","last_seen":"2026-04-04T06:19:11.110792Z","times_seen":695,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.js?v=2","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e596630eff0374adebc068352ed362ae","sha1":"156895e17acd4652f5816db5b310b341960edbbc","sha256":"816c99b4a2b3c2d2d7adca35b602c2b1f5ef56ffed67ae1a4d29bbeefa55ee90","sha512":"625450c3bfe0ea3228565c0f32f167850d3e60a2d90c049c87143c40cf8f413ee8ded3c94740f095c4ec088477ca67c4dd08d91205b6bfd38ced4175d404ce0b","ssdeep":"1536:AFe00b3VLgXLVuRXE0D6Z17WRtekdILG0Up:X0O31gbVuR96mLIy","tlshash":"d1c370ccb1d2b4a603a770b5517f620ef23b59c5384e8194ea25e9d5bc7864e9033fac","size":120878,"data":"","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-04T06:19:11.169575Z","times_seen":917,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"03292dbefe3982b4ca9adb0b588ada31","sha1":"a1ae7ac9b18c166bf0137d4919d9b912a8c74765","sha256":"af6ecc52877435b9766189077c344e7ef00e6c4e5617097c63b5b8756505dc69","sha512":"94d703b0209e9be46c67ddfa93056c5d49124d7db042a559af2c625644e5299f6966fc824e61092bc0b8d2fdb6af6338b05740399e9c784e223595aeb93593dd","ssdeep":"","tlshash":"996000008300a0200828088c3800c00020380020c2022200a202a00e820c00200a0000","size":16,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-04-04T04:57:33.081988Z","times_seen":964,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"11cc3621e45b2f0b945ccf3c32be2d99","sha1":"65369460879076ce3d2ca049392097e9c15b8149","sha256":"8eab171b0d256cf386d222b71fbf5380f2051b67452dbd83f41401a6216a789c","sha512":"e8af12a7397f87b88e2b71577fbb9be3be97b309345786db07de0c882ef2203a6d2b98a7f74c4f5b065e3d67cdb2c54f23ff7694c9ccc83e22ee93e950e60715","ssdeep":"","tlshash":"8bb009b69262c0b9c4469c9eb13ad6e7397a12143813b327901d49205522e5e2b008a0","size":108,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.509046Z","times_seen":20073,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/xupload.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"36d53d0f509d1642267ebb68b36165a6","sha1":"18534c979b23a500124e316d07db0f42e4d72bdd","sha256":"435e82278b5b2cf7980b025827e97d4edeb310b8fe31ef18f8a4535f36ba298f","sha512":"e45c543c6b137c234ca332cf4cda2ffae6af1d8fdb83e900e8508f7407914e96e67bb3b81b4bfd5dada10cceefa1344aa4e7c47125577d605ad2bc9634b77279","ssdeep":"192:7IKE9YGs1qGHh+6IsZWnrbll621w+4UWdRebMQ4WdReDyYQaQv7OsaaFg+BnqGQi:EGCi6BlV9GRebVReDyYS7OsaaF10fq3f","tlshash":"f122654abaa339912a7730390bbf52043b398407114ace54bd5c96c4af8452897fbbfd","size":10768,"data":"","first_seen":"2024-12-01T00:07:19.913985Z","last_seen":"2026-04-04T06:19:11.128521Z","times_seen":708,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e018c77e67a96b7f5440da3c7397e35a","sha1":"a090b0a7035556c7f71070fe10c2e37fa15584c5","sha256":"5c5bb18e544cb67f765d8a6d2c774838d3ae95df9b62f25660c64554a7302d8e","sha512":"cfaad7c410b0f14c2c849855f859a973177c6bdeb27ce9e3dfbbb38169a4abd0f66252213aa1885751c54d1ae761fd68af739081e9b7d6875f084c2240874062","ssdeep":"","tlshash":"0a6000c000030030000300303030c3cc3c30003030333000000c3c3f0000f00c003f0c","size":17,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-04-03T22:14:46.558139Z","times_seen":21324,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b44d07b01f8b22fe72905ad04912f4f6","sha1":"e8aad3f346d25b82bf29e5b54c2867f3be9cb887","sha256":"21b01ab7fd95311e97b273690533ac1b165590628d3e40cdba8865d202a45c49","sha512":"20eff935643fa7a623034c319cdf2c45284b4f0f0a6ccf0dfed377503577511fead37bcb16f01162646ed8eba24814f3259e8863c5724b5a11d27da483829518","ssdeep":"","tlshash":"ffc0c0d0e1e00fb001f514c42f021e04e4c606839ea8a0b31308050ce20388fc70076b","size":172,"data":"","first_seen":"2025-08-02T21:21:42.764273Z","last_seen":"2025-08-02T21:21:42.764273Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"21df7bb294928c2381fee83b3e15edb1","sha1":"850068eb7f2afe010fe05012922e5f746299be06","sha256":"8d7e856c252b981512e1c6cdcb43a5c85d788a0b512c47b1f8e60129cc8e5906","sha512":"4bcb4eb55897047b67a7f00b80158276b4e1377ed4493c36e4bd56b7674163d04c2e4b4af47c103f86bf5d960fae9591cb28f946eb74b36349fe631e7e85ecad","ssdeep":"96:hmO56yCuJJ+2ARnXWVVnFdpu8rP2xsHuEhezBNY+jt59K7vcSW7rwrdbSlhZhQdb:4GpCuJiRnXopprejzjtAnW7ySi34et","tlshash":"c3c1d816eae81424e0fb53f43e2bb100613f0983be4ddf98fa7161542f9819e65e618d","size":6126,"data":"","first_seen":"2025-08-02T21:21:42.766258Z","last_seen":"2025-08-02T21:21:42.766258Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"892e0db99132d1d5647087e4735aa0ca","sha1":"52fe7b530f9a385a57049ffcc27412c6c8aea0f8","sha256":"a4d777ae05ddf92c68d7cf7d283d3fbfe3686e6ca9179fc3bfa995fd6b0e84c2","sha512":"108d93bfa4f21e109d9783048abff3489bb5b22ba194171293b8b322cbdb6293ae434e6645efdf7d84a1ce33e57ef75953808611dbaee5e58340b7b4984595ff","ssdeep":"","tlshash":"4bb092da68d4320440fb603614fb82566036806722488da63a8c09264fa364a6a18a28","size":115,"data":"","first_seen":"2025-03-08T11:51:09.398524Z","last_seen":"2026-04-04T04:57:33.092231Z","times_seen":405,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ac7fe824fc01da2eae66c69cde47673","sha1":"12c7d2596939ad5d05162d227907c9bf707559b0","sha256":"c259f617c5131add5a2a6c588f31e278b6c9443eddfa2399888a0d786712f20c","sha512":"ac205048c8287ebdd4ed9d241173dbca2ec4ceca2963d3706bd6b3d824f31fe3f073295f4003bd848d56dc1aa3733bfea5e620e1ce168519bbc03e8ea6d0ebd0","ssdeep":"","tlshash":"899000020c0af08e0038a0ae3a0e3b002a022ba080028203bcca0238b8a8003a828080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.309926Z","times_seen":13689,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cbf3947dc1f511f594705b4cb793affb","sha1":"80c09c8bf57d0ae7c0911fa86423cf959fd25f59","sha256":"6f4e9cac62dcd10197e77fd2f4e913fb4517281134a19e50603cc8138f904050","sha512":"8cc054be2525aa1853446b8e65095794ba1b133747d4ea4a8021446dd45d8cb5aabe161d72da29bd6a3027ab374395cee6e2f48d3a8f771ac9b18b2f5c9b551d","ssdeep":"","tlshash":"31c08034757185a000bd4459f177d75cbdf361d43da25451885f8a4c5970ec50856cb4","size":179,"data":"","first_seen":"2024-12-13T01:52:08.034741Z","last_seen":"2025-09-23T09:59:13.281697Z","times_seen":226,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"c809887dc51fb5a7e73a3a98c3dd661c","sha1":"7d7574d4dcf1e06e2230379897c5df681ba603de","sha256":"1138f8c1bb11f4a5f7d8354b8c8a642ef94c9c741d76a7f476bac6473b7de085","sha512":"3a5e6abed1f1fa40c5d7d13b98d4e90d180f5913a673f10db23f40b1fe68a70de8e780c2633bb6f37745ce4aaf81707844817fa84baaa2b764a322831c298e7a","ssdeep":"","tlshash":"9b8000f00283008b08308f03230b3300b030200c30c032cf3038003c3002383bc030c0","size":32,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.494055Z","times_seen":17899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"882fb4ec13c370e872df9e4587a98eb6","sha1":"4d41871cdc577c45b141134b16c0eab1b9b720e9","sha256":"791b28f4c489619d78906b8af22fbc11b48c0576134d36470ef92468e47da29c","sha512":"fd2b137155d24d0f76d501103374922d61c5e7947cd4091a694f219281d6feb561114a865de81fab1209ea62f69c35b21f3fb67fee3277be040e04985905bfa0","ssdeep":"","tlshash":"f470000808bb00a28228332f000020020aa2c20288020c8c000202000a08a280320038","size":25,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-24T12:07:46.714569Z","times_seen":14041,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026sid=4c137ec5-e006-42ff-a069-88daf8dbe396\u0026i=1\u0026s1=sarah667\u0026fs1=1\u0026s2=35509\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"9de43fd57d1c94793b8dbc2078e50e5f","sha1":"421474e4652eaf8135c59ce34528118b23a258fb","sha256":"2019f20013c999dfa093b5be0271b0c5e54e7d33785fe100003e6c4b41fe0e38","sha512":"12a22c8484d407af4d093411081634b4714556cecec0322180f2754ef1ec7bab342748c556f0ce7d0d22505bd64c2f4f9e0dd8667bf254f166218338daee7c5f","ssdeep":"","tlshash":"3af0d385972c52fa434890a3e93d1da14e8d45782715500afb28435e44ca1820290187","size":648,"data":"","first_seen":"2025-08-02T21:21:42.703576Z","last_seen":"2025-08-02T21:21:42.703576Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"be6b25353280fac3960e70c9dcb6804f","sha1":"46c69609a3bb697e60644b18dc85d780c44804ea","sha256":"38be2b1c1c886666cd4ac85d71bb8b65e51d95c7c5f40b0c575f7d196a0442cd","sha512":"cfb553df29882616e097d28e643208df6aae0e005e63b7e7d9310a731135e9e33407ec268f12699208db7dd4fe2e8ba8a49de900e8b0a1a4bd83bd522f2ee953","ssdeep":"","tlshash":"10700008e08020a308380002028223222a0c282080822020002b0280288228baa88a80","size":24,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.486771Z","times_seen":22174,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d5757abfc2dfe2efd4bb1409941cf087","sha1":"a3eb249ef753951d22faa61f87302479aff27023","sha256":"bc9c06f981e7daa0478c449324d4010cdbc3c83c9a95879b99a0b531f5cabb87","sha512":"a21d0aae842d3e854147d43d706f8a72afeb8a045e8c020c6a3f0e61a0c91066b86163539ba9a2827f0a61d53b120a90b5c1ba65875e334a87ceca32b06c0117","ssdeep":"","tlshash":"188000ae80a800202230282a020222a02203e002c882008000ab0300208002b0280c80","size":27,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-14T08:01:01.793934Z","times_seen":19591,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/provider.hlsjs.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e133e8e7b97079d4bc7ec71fae611795","sha1":"14f34839087df4a3a09ba2f11a768f0d14af979d","sha256":"f0d08bd0271c5d085f5d1419b1af887eb9c250aac800cadc4d5ea64c3a348e97","sha512":"c9d584c81ef63afa75e386a97e6467969aec410d4819ef8053e2c740785c03028338e5cf0f278b874bcf116a31ddb9451bf521c8a1cb30bc5d9cefe99f33c34a","ssdeep":"6144:saY41OZdKOOf+nSIY/4nN/Aq5YrOue7stE6KgT/:pY+/4BAq5Yr1eG","tlshash":"1d842adeb695b0664283b1a4903f5607633b7d0a7409c1acfb27e5d61db8889b03bf74","size":386462,"data":"","first_seen":"2023-03-08T14:31:25Z","last_seen":"2026-04-04T06:19:11.108672Z","times_seen":918,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"adcf305e40c1ac059cd5e90d85fa4b2b","sha1":"e9e6c5148b280169dbd447f48bd7cb17c22b3d16","sha256":"637fd01c31cc3a108b5ad408be57a9cd936a0fca66ebe37a13fc4cd807769bc1","sha512":"2d1f291bba9a8e726a5efccea42abd11ea619522d02591c6f886296517f6cb999ff1b0bf541ad4022a02599f4d3517e83192702c6386050dd324f615a6442f70","ssdeep":"","tlshash":"bec080397521843410ac0449f177d75d7db311582c5219429d6d8e0c6470fc54cd5cf8","size":177,"data":"","first_seen":"2024-12-13T01:52:08.042041Z","last_seen":"2025-09-23T09:59:13.282469Z","times_seen":204,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"879c12264b74d969b0314e9a9cd1f17d","sha1":"714a5d759f4d1b7d41f8c5526451aef114b33d41","sha256":"28be88d787b6e773eaf5d0818a6c62446ce628dd8ec0659c6f78410588838337","sha512":"3547b27de7764e655bc8749fd5c1166599da57d2a76057e66923476fda692917a9e537a934374c77f361359b9fe94d739bc037044bbcf2648feb43f7ff9f1c7f","ssdeep":"","tlshash":"f7700008e0a03032203a020a228222202a0c2020800000a0080a328028882832380880","size":22,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.507418Z","times_seen":21973,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xadsmart.com/uxiezjixylxgmhx?wsVrWHOd=BQOCAAAAAAAACZUAArEoNN-Bsu_WHzbaYi4D27GhQf8R8agZYlHBM6MXhHe2lMad9H1byAwo7S5bIJGybkZNCm5pJVnW6virFBPxbYepOryIwOGGIuIwGNwPAUwT2qo5zbbcxw6a8VCCGXP_QiYC8Pzi1IqzRxYIn2F8RqT6G2Tca-8KQS5e9OQeKCMl_2VMREI5V2YSslU0D3xsAG6gQK7W85n2baM3yk6Ff54w8XD0rqV-Gtae2_FL-2pcwohabKN2JqF_FjAK7Rl0rRagSd2QpE_7wYTB8JqtHHE6kVFIqJ8oFSQ4rwSDZk5gbfHMHTNVJ5ZqoXySMMJPjRMQFl8eoAdtiNBwZogUj6LzayH2lQM9vjKs7COTQAiugrO4PilMxB0E5crzHnVxEpU_Scd8ewcv1cZQrTtaBOzyquLXQwgocC_1F_vDcy5XFS_6dLWvckamtRy0RgFp2H28RlCqfffEo9nP1kRXVPW6O1tkXJIcJlw8WVwKXA0EvDZokB4FfE379tP9Vo_k1B39SB3IbQYBOkG-BZc9ebWHJm-xD4xYHM0flrxSj1tPDHfzEwQZuu2Q5U6VC_uCjwhzPDNcL--1DqcOz3kzql88SWzo1s8RNUUW8wDoS5Bj_X6gRZsPiredP0AYt7qkAdXw4p21etOskoIvNvJBMBb656x0FeH7D2SU3gWvWS7IXo5HLWGmq9m_eX4SAoQSkgWbVZGoTpMw693HX0UaBSWAyudhRN9lVM3dMs5CJqJmfaBASDvPeDKsk65UPDm-z8vWwt3ZUnCuo_htdspjRwc_IjhvBTaNd_WwlvRf2qTsLhxceiwYfHcT0MJZ2yq0dXuHXV1Gx1TzAqSdRPQ4pDFvK9SYga2ksXOw4DemQLLyEbnZTIUBT2NdYfVqOxowDE8C5g3AhZsiy5be6PMU1-AKtuakV7vAbH9iMzhyZRuoxdkdqRUCvGAyIEq233JHFLRgAMP_sEAD0wnreMtSuggrWfAoioNYBfAuPFVcT8aqBcPw5QGQ81K9yWAMOD4YxNVOrZIjsW4zXyZLJ94PuPmL97hBskLOlhQkeepCJmTYT-MqMRkfEGzuK6VI05EinBNpmZPnHz5NLOGjtl-po3xnIa1FcTatIiEqYUNBl8vClFVDUwYXUrM3S6_AuMg-qox9QssToXDtI0pBMMOQBrV7tQVVlIC7okff_kva-Rna\u0026dtSTrpxa=4\u0026TDPqMtQW=4998988\u0026zJuRwVjI=\u0026EVPnpeoF=0,0\u0026BHqWAIvj=\u0026KOtqPWEF=\u0026fAVyHeOX=1280,1024,1,1280,1024,0","fqdn":"xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5f0a25e4d3522d56d48ce7bc3e518fb","sha1":"86794caff58f7fee6e684c2ba7195f970a8d6f4c","sha256":"9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5","sha512":"a3a81801f516a4eb11f00d6f56dab0ed4b8a79219e6b4f5436993479f09dae08f14cffbab3327ff66fb39201d8eba1153ae7114f7705a01cc6f0edf840ef1616","ssdeep":"","tlshash":"789002801814116115d1500b8d5159d01259b1a4540801324446ca502dc7883a415774","size":44,"data":"","first_seen":"2023-03-07T01:17:45Z","last_seen":"2026-04-04T06:28:30.345973Z","times_seen":22749,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.cookie.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ae0c2c5d8f01f7d35bb698bb618a62f7","sha1":"63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20","sha256":"75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc","sha512":"eac94ca9d884692af8bdf12aa6e902a3be4eed0772ad8f2932ac1c3328b83a7351cdf743a409bbc0a3cd385956c08d3203d51c572bb1680489e37330fe27a2bb","ssdeep":"96:L4BZxb64Ng7V8cNwpGylRCsKZcj1JXulL6M/aGByLskPSP4lBCClf1wgCyC:LQnb6eg7DgCsk8fgZJkPSPa+gCyC","tlshash":"2e91fd293a0d231d149353f57aee10c8a930d632216ad46c744cb6b06f00c63ddfbbea","size":4331,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-04T06:19:11.113197Z","times_seen":4345,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c38de8529baf4959cf1833bc78c2b773","sha1":"9a9ec7f19815b72fb722d6b38f58eb3de74e3792","sha256":"25c9ed4936067d82cd278d6ac2b8a2d7b5910c50614767f3af467c00f6866ef7","sha512":"5c6df6069e6d76540b7e78fe4803bc32e854d6a5fb56035b1c6add02f0b36cc3f4060b7047fa684b2987b9baec5ba5d6b41edea426dcc4332ff9747ef038b23f","ssdeep":"384:+v0a/K7iYFRdYtri0Qen9tO69aI8tAUeNDaUGRQ2t4PpBahqoo+KXnS7YhfGMOIf:+K72rdQ80GaIoQPzahq/AMOY","tlshash":"f3c2d4a7321eb91a8719626110ef2ec5a2cc48c4718f1f78e724e53674d763485ebef8","size":28002,"data":"","first_seen":"2024-10-23T12:29:25.913544Z","last_seen":"2025-08-29T02:50:19.449531Z","times_seen":195,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"6a88d4bd5bd93656328a2f38b4378d0b","sha1":"d2afdc9b1693f0cf62ab6e88bbcf4e20fb62844e","sha256":"3b1758c84d9df642c22e7c547795bd40ff0a9610795e44c90109fa7f9b8016ab","sha512":"c64eb8517871a1b996d76fd0d9982a9726515a003cebbbdf1639067607e2f7697c97f79fc176802c7e560f325e3f39f40c9edecb49e7c1626b95ca0cb8349424","ssdeep":"","tlshash":"687000380a2000000230202200020002008282a0c0a2a8c0222a820002020200282002","size":21,"data":"","first_seen":"2023-03-07T12:58:03Z","last_seen":"2026-03-06T11:55:01.48721Z","times_seen":8444,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"172.67.193.52","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","size":17879,"data":"","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-04T03:00:17.365104Z","times_seen":6340,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6dc0afc5aee21e3a2c7ba20fcbbc5502","sha1":"b0b548e52b180b7ac2fbac80962700dcd226b31f","sha256":"97e8f3fb205c8b155c8c6370121edddfad4baf9da50783c9b7efc9ed120bf41b","sha512":"e37b0c0f47dd7f5641a98b80cd68fa04f9b932dedd7d691399e0d04a47e75abc50fe62dee85ca735f2dc3c534869f8f8c1478afc9fcde9b91719665003f21a7b","ssdeep":"","tlshash":"819000022c2ac08a0038208e3b0e3b082a022fa080020202bcca0238f8a8803a808080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.308032Z","times_seen":13933,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7d936f0d3e0535e2fa01aa05c9d1508f","sha1":"d20537b105615348981de83acaa439e771f719de","sha256":"ec4b3c7a9f6ffc2691c526ef4e11982138f47505bf1245a72284d5f2ea3a5139","sha512":"b652ddcaf495c6cbd1b4c6ad40996249f94b67922be2c86f6b265b31c364b60fec7647074f81ad90fc8e21efb5349a74dbd0f827d40b45fb5599b9c432ce45fb","ssdeep":"","tlshash":"3a9002114c06c08a0178608e3a1e3b0076012f5180020102bcc60138b454003a4060a0","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.288429Z","times_seen":13737,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"ef9e29d830b47e493c51972bb3af3ef6","sha1":"95d6255c5e100dce97da5619be073c8dbf4f00c0","sha256":"fc5a1ffc9513896711ec2c788490995715c8d32ccda8c4e2c68a9bd8cb214e77","sha512":"af408037587ea95e4db5c0412d582ea898d2fb5084e5917048698bc482dd7c3e8854d87fcf3adf508fd8cceef746eab017029aba07aa934184675a6e6c88f0b9","ssdeep":"","tlshash":"a270000000002830080208002020ca8e2a22208022033a00800a000000208802088b0a","size":19,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.482014Z","times_seen":19081,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"df0f0e3e7f31f2501d7e19833ccb4ddc","sha1":"e551bfcbdd3a7c41875f1a974ad1914604b5969f","sha256":"511e9d231c9360fcb7670f7cbaffb35bf8180f124fc080ebbfa5962d4c8bb089","sha512":"57497c56a50a2a0ed0cd9862fdaf381fbf969bd3048dff24dee46f2dc10139cccfcc4b275d7d74cd3d8f036ada1eabe54d05c4773e80ba797748aeff6c855898","ssdeep":"","tlshash":"b98000f8002300c302300f032b0b3302b033000c3accb0ebba3080303802303f8020c0","size":33,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.513113Z","times_seen":18131,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"61d9031f2b0da3ac81b6732b6d1ecf83","sha1":"515d4db3d1120a7160d1bc7d93d57f7fbdea1fc4","sha256":"436179ef4964c80a03e62015696ba10c5ae70602c6538d07f50b75f35bd72a27","sha512":"3b6ddafdb73b34756f57d92b3db048d03ac38dd2f96be7d4ba695835470b8ce460e2d6059a84e64f3bc2d5237b6151aad2a649f76ab43a81447182684b5741de","ssdeep":"","tlshash":"b58000b02020a830088e020cb030c3cc3e32000230033000a00c028c0830ec00228f88","size":36,"data":"","first_seen":"2023-03-07T01:03:03Z","last_seen":"2026-03-06T11:55:01.504781Z","times_seen":18663,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/pop.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f8fefc6a5aed3327c395f43db6be62d","sha1":"8594728c9e75e88e1a759e8c8466df832323d963","sha256":"ff687e2177537cc8e021014af056c22a44036a19c9101350dedf64a6666d47ba","sha512":"3a7708be2e5469b92a3ad6d3de28fc5edb20586011871e4cf799135037b6f2d162f372913364adce6f7b87ff1cff25bbbbaa5a6488348e4a41938e6b43ab94a9","ssdeep":"","tlshash":"f28000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e00c228c2a","size":36,"data":"","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-04T06:19:11.097081Z","times_seen":1053,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"cae5056dc49b24eb4cb45b69a53392ca","sha1":"5e6e8ef82868cb1e4169a4dbe5237209a77af0b3","sha256":"a8323b405106d3ce3e4f604d34ea0212c4beaef875d6323a59e421efe9f27bf6","sha512":"785a25e623db1730cd994a6402927e584ff1de818d4bf671a5818dc1880644652abb30df419454160119190fd3e67b051ef28adc841dc02874db8fe4420c033c","ssdeep":"","tlshash":"bd1165185c30781933f770ac4535fc55a8b382bad3c8b6dd78b760925a299c21d16fd9","size":1005,"data":"","first_seen":"2024-09-07T18:22:11Z","last_seen":"2025-08-16T18:02:36.262056Z","times_seen":200,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9aa3dc35f8ba994aa0f04a42c4da5062","sha1":"a65df79b7b70e8b8d22a2db929f6598428a827e0","sha256":"89e4c05e12e12f5bdf85a4fb89bad572dd85256091add09fdb9c6e42e703e2bb","sha512":"72ec1d5aaa34463f798b2d2c5976a6221f70e51ea2afff582319f4c8b7e31f4a67ef2a2d39427b4d1cc89ca66c4d4374db662c1137380ce0aad2acfcdbed4d6c","ssdeep":"","tlshash":"ec7000080000a0308808a002882ca3803c20a820b022a008080823080000a020008e0e","size":24,"data":"","first_seen":"2023-03-07T01:03:04Z","last_seen":"2026-03-06T11:55:01.493594Z","times_seen":23251,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a2e2ae70d864d0672a59dcff68b72c05","sha1":"e4646ac4e676291de8fe8021df26be810f04b18d","sha256":"426bcf9f6a00ed4d2a48b0b6b881efd626b35827ffa209aea3d9016a28e8cf1c","sha512":"e21cc17bb82f02c8f096bf22453e6d7a8a7d578d04d6182f31d510b4ac055e1faefb748c9b460c6300cae3129befa944955f4189378f6b50f5da8d031dca13da","ssdeep":"192:oZfOsxIOKqF8TCUs24ab2EdCgetbHL9TIX:oZb7Ka4nVX28CggfOX","tlshash":"7ed1faa13353ae5a43598cd110ff5951f03a57493144c898f9fd6dc7296268492b2f3e","size":6515,"data":"","first_seen":"2025-04-26T00:38:31.369686Z","last_seen":"2025-09-03T09:02:37.53853Z","times_seen":180,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0baa53ba8a5ba5ee6833a629c3000d4e","sha1":"d5de057adc1eaa7888ca975199cf0a116b923aa0","sha256":"0679a036a8577f9592e070f780d06c6bb427a8f15f58008bdeaae2277ce607b4","sha512":"a7e5a993e1e12e7d73d98ab3834fb488a1e3ce361108f3f4583cde7e4454e97768303649ae9fa22bce7cce65aed74d081b69317f169c18dc49e8093ac4d3a60b","ssdeep":"768:dsmoTk+UwrAjMo3m4MSHRJtlgfWivYb7QL19/lw3mcIwT2vB03c9MZjyQoTHKePc:pok3m4bHRDuWWL19/lw3mcKJpAGPKmjo","tlshash":"81734ba97162702a43b238e9967f5311f1ba06902c4690d0d37dc8643c74edf927bb9e","size":78356,"data":"","first_seen":"2025-06-14T18:46:22.558225Z","last_seen":"2025-08-28T19:40:38.269373Z","times_seen":3673,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ak.beltsflusker.com/rDulnwma4CCtiWZF/84626","fqdn":"ak.beltsflusker.com","domain":"beltsflusker.com","tld":"com"},"ip":{"addr":"23.109.170.153","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-04T06:33:33.093087Z","times_seen":14785,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"e969e6981adb7ab1cb174994a5c8c627","sha1":"5f534a259a6f3754d1d392028fd4cbb344fb6563","sha256":"5cb18f9c0eebf644c0bc27e5224177984121b4c4a3f8189861a6d797a15a2e7a","sha512":"10bbe815bb6e4ade10d00a42a82dd10b668e95e275161cb0a637b2ea95785f8f7fc72b31bb48ac9c1dfad03d811912c0683941a3c09357525f164915d5b033cf","ssdeep":"","tlshash":"a380000a88a8a0222a30a0228c020200202e822080ee208083f2032020c283c022b802","size":30,"data":"","first_seen":"2024-02-12T20:00:22Z","last_seen":"2026-03-06T11:55:01.514986Z","times_seen":20053,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.js?v=2","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jwplayer.js?v=2 HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 23:02:18 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YxFZ5mccfcgGS57RvgkX%2F%2FUY%2B0qpW2aWhtECBnlDiye04PljLH%2FQVvUAVniMfzt2hMAlfauGx%2B1WL4grJB815lLIj0ymvERJvg%3D%3D\"}]}\r\nage: 6199\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"1d82e-5fd9220ac069a\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb67568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":120878,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65502)","md5":"e596630eff0374adebc068352ed362ae","sha1":"156895e17acd4652f5816db5b310b341960edbbc","sha256":"816c99b4a2b3c2d2d7adca35b602c2b1f5ef56ffed67ae1a4d29bbeefa55ee90","sha512":"625450c3bfe0ea3228565c0f32f167850d3e60a2d90c049c87143c40cf8f413ee8ded3c94740f095c4ec088477ca67c4dd08d91205b6bfd38ced4175d404ce0b","ssdeep":"1536:AFe00b3VLgXLVuRXE0D6Z17WRtekdILG0Up:X0O31gbVuR96mLIy","tlshash":"d1c370ccb1d2b4a603a770b5517f620ef23b59c5384e8194ea25e9d5bc7864e9033fac","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-04T06:19:11.169575Z","times_seen":917,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/check.html","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /check.html HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Mon, 21 Jul 2025 07:22:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"687deab3-39e\"\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":926,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"088dba8e97eede53134c93219f7ebbae","sha1":"adb707654d1fe0af7d0d7a9f55660d22bd3625e4","sha256":"6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff","sha512":"23a1f87731e8aee4658993cd1ce35ec179fea80b89bf52aca7634488f1bdfcf88b9cabca4859481357a9fee06cbb49df64bbe0878b1dae0e5df4fa34003c6d80","ssdeep":"","tlshash":"6211d04934e1684c1127a6301597a2183c32a40315cbd949fb9cd7301f815a7dc596df","first_seen":"2024-11-22T16:59:41.974716Z","last_seen":"2026-03-04T10:11:28.020186Z","times_seen":13721,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.666Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 31 Jul 2025 10:06:17 GMT\r\nexpires: Fri, 31 Jul 2026 10:06:17 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213297\r\nlast-modified: Wed, 23 Apr 2025 16:05:59 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-04T06:46:19.822496Z","times_seen":295257,"resource_available":false,"data":null}},"time_used":212,"timings":{"blocked":95,"dns":1,"connect":20,"send":0,"wait":21,"receive":1,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ogoampoodopet.com/500/7850681?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"ogoampoodopet.com","domain":"ogoampoodopet.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:19.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ogoampoodopet.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:24:43 GMT","end":"Sat, 18 Oct 2025 05:24:42 GMT"},"fingerprint":{"sha1":"F9:79:8E:73:08:0F:00:A8:A8:34:31:34:F2:AC:FA:89:9C:19:C0:CE","sha256":"F9:81:D8:67:D1:8C:E2:63:34:13:DD:D0:1E:FD:76:40:FB:4D:3D:A6:6D:A0:F5:44:67:8B:82:04:1B:DD:E8:15"}}},"request":{"raw":"GET /500/7850681?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: ogoampoodopet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:19 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: dff837a971c17c90b0e7e72c3f871cba\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=0802197cb65240e2f68fb17f4f39a38b; expires=Sun, 02 Aug 2026 21:21:19 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1879,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"0c642776f1f3b93475583e2f652048eb","sha1":"bd7edcb3b40512a429cdcae372e9df778cbb5234","sha256":"80543fc191958bdeefa7f1ed332026779ac307d46b1cf853b7790f3007bbeb45","sha512":"4b358f45e6453a1ba43a0bf598480166e7ff9b5921d50eadea1abe023c0cf21d44b8a900667ad7f943dc9b825741d4057991ee7d4a8ae204af61aa8938e417e7","ssdeep":"","tlshash":"e641e6a9379f11c48600bb4b88eae45d9996c6ee65872cf1a721c11a45f5ec0cda1420","first_seen":"2025-08-02T21:21:42.664223Z","last_seen":"2025-08-02T21:21:42.664223Z","times_seen":1,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":-1,"dns":12,"connect":26,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ogoampoodopet.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ogoampoodopet.com/impression/vAzovfYYD_dC_4l3BXQX65ZgzenzqOji4iihEl3H6PwNTJE075br4uCOtF8cJOD-nxQnr_dN8kS9bPFShFomDzXpvKZgCdiwUZetEWbpEz0gkkZ9Dbm8ixh0QtMlhePnxL0a6qrTTT13werA3qSZbTcG3tNVolJC5hGfpF4UGyH1HB5nQbOywFCXNjYI7t5VsG3zVRGJGv7ST5A8mDUpD0uMQAigdK3jMIyDLOs9GOY6JApB6RXXHjA6UPPvQIQgmtPnFohZOK9kjeD5Q1hd1vvB--Uu-iip2rhtyEg226nHu9bx4EdOZEz_Rn9VoBEy6ll2mUYuU2vvtDaGmFep-gC2hsij9mtL40vb_BTR6p2K3_YCG8ouOWmz9oVmGvdTse0niqY1m4rD2Bmi6tN2QidutXUP0ZfB6opWd9CLbm31jOvU3dhjbMQFwUctuWEilCZ8Tf84Q2z3wzm2vjKMtBkLvaCh0-ISPyFZGznV2tkcKWAu2gEdUeda00OXOWOZXrTFEyR4iIaLZ8xdyU73pmxy0Jt5B6YTM4moOr21NAG8C2USiWXtUrjOhLCFLOO9_mKnNGh1-SDYDmAOnHEDL0txm4Zwy1pHgiwU8b27nZ-J2PIeA1X5ua3ehDph5oPW4UUhGysB-14LdZHyCh-IYP-fposbPZrKeSPeizy8r3FvgRTz4gOzmE1UVCNcg9X2na-VND_zmL6G5eJLhQML1HVAHx_fXOlUirw-HtU_I4pr_OBxVV0SMPOzg5GWI2QUPz1WGH9IwpKTtY-blJKNK6uJ2jcbCGYdwK8ARtyyAlxTzP79bh4wB54KJld_b9oMXTuotLgBeE7we41SCAetoS_j-GfvSAIG?_z=7850681\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"ogoampoodopet.com","domain":"ogoampoodopet.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:29.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ogoampoodopet.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:24:43 GMT","end":"Sat, 18 Oct 2025 05:24:42 GMT"},"fingerprint":{"sha1":"F9:79:8E:73:08:0F:00:A8:A8:34:31:34:F2:AC:FA:89:9C:19:C0:CE","sha256":"F9:81:D8:67:D1:8C:E2:63:34:13:DD:D0:1E:FD:76:40:FB:4D:3D:A6:6D:A0:F5:44:67:8B:82:04:1B:DD:E8:15"}}},"request":{"raw":"GET /impression/vAzovfYYD_dC_4l3BXQX65ZgzenzqOji4iihEl3H6PwNTJE075br4uCOtF8cJOD-nxQnr_dN8kS9bPFShFomDzXpvKZgCdiwUZetEWbpEz0gkkZ9Dbm8ixh0QtMlhePnxL0a6qrTTT13werA3qSZbTcG3tNVolJC5hGfpF4UGyH1HB5nQbOywFCXNjYI7t5VsG3zVRGJGv7ST5A8mDUpD0uMQAigdK3jMIyDLOs9GOY6JApB6RXXHjA6UPPvQIQgmtPnFohZOK9kjeD5Q1hd1vvB--Uu-iip2rhtyEg226nHu9bx4EdOZEz_Rn9VoBEy6ll2mUYuU2vvtDaGmFep-gC2hsij9mtL40vb_BTR6p2K3_YCG8ouOWmz9oVmGvdTse0niqY1m4rD2Bmi6tN2QidutXUP0ZfB6opWd9CLbm31jOvU3dhjbMQFwUctuWEilCZ8Tf84Q2z3wzm2vjKMtBkLvaCh0-ISPyFZGznV2tkcKWAu2gEdUeda00OXOWOZXrTFEyR4iIaLZ8xdyU73pmxy0Jt5B6YTM4moOr21NAG8C2USiWXtUrjOhLCFLOO9_mKnNGh1-SDYDmAOnHEDL0txm4Zwy1pHgiwU8b27nZ-J2PIeA1X5ua3ehDph5oPW4UUhGysB-14LdZHyCh-IYP-fposbPZrKeSPeizy8r3FvgRTz4gOzmE1UVCNcg9X2na-VND_zmL6G5eJLhQML1HVAHx_fXOlUirw-HtU_I4pr_OBxVV0SMPOzg5GWI2QUPz1WGH9IwpKTtY-blJKNK6uJ2jcbCGYdwK8ARtyyAlxTzP79bh4wB54KJld_b9oMXTuotLgBeE7we41SCAetoS_j-GfvSAIG?_z=7850681\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: ogoampoodopet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=0802197cb65240e2f68fb17f4f39a38b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:29 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: cafc438b5749730d8e960ebe32a6a77d\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-04T06:36:29.343204Z","times_seen":96356,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ogoampoodopet.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RFESL45RJX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.40","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:34:03 GMT","end":"Mon, 29 Sep 2025 08:34:02 GMT"},"fingerprint":{"sha1":"A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1","sha256":"9F:B9:94:8F:84:D3:44:71:A7:81:72:C8:80:4D:14:02:E3:E0:30:0C:F1:17:27:83:00:82:D9:C3:68:D3:B3:AF"}}},"request":{"raw":"GET /gtag/js?id=G-RFESL45RJX HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\nexpires: Sat, 02 Aug 2025 21:21:13 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0\r\ncross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0\r\nreport-to: {\"group\":\"ascgcycc:1099:0\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0\"}],}\r\nserver: Google Tag Manager\r\ncontent-length: 135987\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":407453,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6006)","md5":"40168250509100b7d5e4e6aedafdb67d","sha1":"b0cbd2cc40019ebe5fdba02e781f7b339bcdb95f","sha256":"8ff9c42d81e51841ff44ba8e542fe2a352b9e93f3e16de0b55e1562628c42b54","sha512":"485015c073001c6acb02fbbe568b238b5596303fd2305c438e8d6b06eac4004b0ab731e5d2264880657db8e169e4c98f79aafdabbbe13c9cac8ac1e41308ef03","ssdeep":"3072:7j6PkjHeWKA8xwym06o1Vlpfz0JeE8JGXbrunAIH1EMHsNKlKZtcRWaWU5Fjt2Yb:7rgvm0HjHnCKlo9aWU5Fh2nr7XwK4L","tlshash":"0e8419ce73d674269396f078503f018ba57b29a2b45cc89af189cce42d34a9a4177f7c","first_seen":"2025-08-02T12:10:01.977072Z","last_seen":"2025-08-03T06:18:27.899963Z","times_seen":9,"resource_available":true,"data":null}},"time_used":549,"timings":{"blocked":228,"dns":0,"connect":20,"send":0,"wait":32,"receive":43,"ssl":221},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/get/2003354?zoneid=2003354\u0026var=sarah667\u0026jp=_clnojxlsvbdkvxsuszqlfb\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=OsiCRA3pV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=4ABjLfraHR0cHM6Ly9sdWx1dmlkLmNvbS9lL3J2bnpvNjRlNTFrZw\u0026afid=2085286100793856\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.400Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /get/2003354?zoneid=2003354\u0026var=sarah667\u0026jp=_clnojxlsvbdkvxsuszqlfb\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=OsiCRA3pV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=4ABjLfraHR0cHM6Ly9sdWx1dmlkLmNvbS9lL3J2bnpvNjRlNTFrZw\u0026afid=2085286100793856\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: PTS=CIKhbNJojoFLoWMB; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\nUID=250802162137b2beec22d54b19888b2063cf; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\nCHCK=1; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3404,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3404), with no line terminators","md5":"4b4ccef58b76378cd9dd3c1783cbf75e","sha1":"6246679030433454e2fb24ea075487906717d9c2","sha256":"63e54c3403aa8d1c616f06affeefe44b1ed197f9a1b4a0c52dc4e92360a5246a","sha512":"7c1cf3bc47adce54cefb2d3de7f2b7d9060567572ac073d995cedc8608c2c4b847e3dfd3905762ab6f1b7a4785480480a7fad1c0b286fb0a5d1aa581ed7b78e0","ssdeep":"","tlshash":"1a6154eccf78f584b8b14dce5539487a398c2c87e983d693c3a4da3581378b54b46d4a","first_seen":"2025-08-02T21:21:42.671763Z","last_seen":"2025-08-02T21:21:42.671763Z","times_seen":1,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"brnxpsoxoi.com/","fqdn":"brnxpsoxoi.com","domain":"brnxpsoxoi.com","tld":"com"},"ip":{"addr":"139.45.197.112","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"brnxpsoxoi.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 Aug 2025 10:54:35 GMT","end":"Thu, 30 Oct 2025 10:54:34 GMT"},"fingerprint":{"sha1":"23:B6:F9:86:A0:A7:CC:7C:BC:A4:39:5A:AF:1D:A2:A6:24:E0:39:53","sha256":"F0:C8:15:D7:F7:55:64:5D:30:6E:A5:69:86:0F:6A:E3:3B:E2:3E:63:29:97:E8:63:68:BD:AA:F8:38:98:EA:66"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: brnxpsoxoi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/html\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: text/html\r\nx-t88r72a44c28e91-45i53d51: 00000000000000000000000000000000\r\nvary: Accept-Encoding, Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname\r\naccess-control-allow-credentials: true\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\ntiming-allow-origin: *\r\nx-application-key: ctpwuEmfuD9p5cd11b3c8\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"brnxpsoxoi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.core.controls.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jwplayer.core.controls.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 28 Nov 2023 20:20:44 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tPO20pZSGnMoCcTU2mIw7Ruel2rjureYSdpg0ioWaeiiYxCagcxFyEdgaRgadOvLEmAv0dfeCeifaTsNvvZlts%2B%2BylEFPg5kOQ%3D%3D\"}]}\r\nage: 6921\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5167f-60b3c274227f4\"\r\ncontent-encoding: br\r\ncf-ray: 96909fae8e02568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":333439,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"a8889c5f9e2492b9c3d6f73b5bad08fe","sha1":"6b942336401bc4ecd598f91fcaa7db96c889e6b4","sha256":"43502aabf4a1ce166cb2a84a177579663aa32e1ea7db8666bc67534a53a0f368","sha512":"e09de17c7ddc72248e2e337de5be46e9722d7afa26502a6f49c7358074b865ed65288f1ab3048e639dc96c2695dfbe32443560ab91d3497519a787e34352767a","ssdeep":"6144:YhIMSOAqxEXf1nKFEGwjDwdWoYoQHwmj06n:ewOAqxEXfpKFEYdWJ0g","tlshash":"d3641a39b142323556d7a2a9625b4609733b8085b5068aacff39e9d84c7d48f30f7fb4","first_seen":"2023-12-06T18:00:17Z","last_seen":"2026-04-04T06:19:11.178439Z","times_seen":791,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"naupsakiwhy.com/401/7850681","fqdn":"naupsakiwhy.com","domain":"naupsakiwhy.com","tld":"com"},"ip":{"addr":"139.45.197.107","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.079Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"naupsakiwhy.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Jun 2025 05:08:27 GMT","end":"Wed, 24 Sep 2025 05:08:26 GMT"},"fingerprint":{"sha1":"B0:D9:C3:78:F0:06:66:7A:08:8A:DD:3C:63:22:64:0F:9A:AB:92:05","sha256":"05:41:93:81:C7:AD:3F:07:D7:86:8D:4F:FB:F4:D8:93:00:11:C0:EA:CE:02:99:7D:20:C2:76:DF:4C:B3:98:AB"}}},"request":{"raw":"GET /401/7850681 HTTP/1.1\r\nHost: naupsakiwhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 6022e1172c4909cdc72ec37b02392f42\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=03021926ae084fe6ff2527f4e58aedc3; expires=Sun, 02 Aug 2026 21:21:14 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":171153,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6a20f751621103abb5861331baa3c689","sha1":"81830af7f2c562fa46f24ce43e8ef918dd2d07f1","sha256":"314a37dce8fb53ea11d58f8bdc961bdf731503526ac7f8dfeed7bae449b12e04","sha512":"20f5c470c286b4ee2e3dd997126c96411a344458570603594f3d681e9fd45870eeb1d811fb23b843e6836daf57d79d220cf2cc5cdffe0dd0559a03b96a7e6b9e","ssdeep":"3072:l7WFiRok0DjZuw4kHmRrHg+QiB6/h1ICnr1mbmzgNWgh65X0t:lmsoNjZuw4kHmRzQY6/h1IOHzgMghaXk","tlshash":"3df3e888b282b1552d635134362fd24eb5afab605c4e8980d0dae1b27f3706ed377dd8","first_seen":"2025-08-02T21:21:42.676117Z","last_seen":"2025-08-02T21:21:42.676117Z","times_seen":1,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":32,"dns":10,"connect":27,"send":0,"wait":60,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"naupsakiwhy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re:2087/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.646Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: text/plain;charset=UTF-8\r\ncontent-length: 45\r\naccess-control-allow-origin: https://luluvid.com\r\ncache-control: private, max-age=10\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-max-age: 2592000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 96909fbf3bf656bf-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":63,"timings":{"blocked":23,"dns":5,"connect":1,"send":0,"wait":13,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/wrr?z=6568874\u0026p_rid=327324f5-64c6-4c0d-80df-2f76f9412405\u0026rb=MK1RF_xus2U4q8hFW7voYi5h83NQsfPNjMGjDULIZILJTsFEan_Wn9HIyxjwysl5aBlmfCnQ9xaKO4wE9dnO-s-_-5qt-MnGL4499Y-hLJXyIhfZ0JKoCpiYjBpa22QQDztxfydHsjTjcp4SVOJX5nDaMDix8oFMvjNMiFdXrrcDn8jjRlzPVIXFG-Vwzw_lgFknCrrGBevfhkWuereIuiB6x75FBOoc005Ao4aCtvXFQexzRbk9S23lWrNkfhTZZL2JIVfnQzi4DkZUfqNTBYBLtd1EEo01cuBOGA==\u0026dmn=22hgc.com\u0026userId=0802197cb65240e2f68fb17f4f39a38b","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:17.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"POST /wrr?z=6568874\u0026p_rid=327324f5-64c6-4c0d-80df-2f76f9412405\u0026rb=MK1RF_xus2U4q8hFW7voYi5h83NQsfPNjMGjDULIZILJTsFEan_Wn9HIyxjwysl5aBlmfCnQ9xaKO4wE9dnO-s-_-5qt-MnGL4499Y-hLJXyIhfZ0JKoCpiYjBpa22QQDztxfydHsjTjcp4SVOJX5nDaMDix8oFMvjNMiFdXrrcDn8jjRlzPVIXFG-Vwzw_lgFknCrrGBevfhkWuereIuiB6x75FBOoc005Ao4aCtvXFQexzRbk9S23lWrNkfhTZZL2JIVfnQzi4DkZUfqNTBYBLtd1EEo01cuBOGA==\u0026dmn=22hgc.com\u0026userId=0802197cb65240e2f68fb17f4f39a38b HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\ncontent-type: application/json\r\nContent-Length: 2594\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/62061f74abbe02fcac553c9d8b0a3867.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:19.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/62061f74abbe02fcac553c9d8b0a3867.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 95186\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iJrs4OfTtH7HbESkoXilnjElnke%2BIqVtq5jnCkcaM%2Fe2HJIV%2FWPMGI4ujkibqqU1EvoCL3LZcUFycLtgG0yDRkKKwA6wn7GtflFutuMwFdHNMnvXF6rCqxuIckMPuAoRMwOP7A%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 25 Feb 2025 11:15:16 GMT\r\netag: \"67bda644-173d2\"\r\nexpires: Sun, 03 Aug 2025 13:33:10 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 28089\r\ncf-cache-status: HIT\r\ncf-ray: 96909fd24fcd569f-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=1155\u0026min_rtt=650\u0026rtt_var=479\u0026sent=92\u0026recv=151\u0026lost=0\u0026retrans=0\u0026sent_bytes=9473\u0026recv_bytes=8644\u0026delivery_rate=1564072\u0026ss_exit_cwnd=14923\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=9eef62577e518981\u0026ts=2687\u0026inflight_dur=51\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":95186,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 552 x 552, 8-bit colormap, non-interlaced","md5":"62061f74abbe02fcac553c9d8b0a3867","sha1":"0a51135d970d1edc059e95e006fac5cc189070ba","sha256":"f0481b277c0dfb31b4d980f022b0c53cccb77586af94c66bc5aace3ed5f15eca","sha512":"75a01eafc6cc4502184ac9af3dc3a56d5be8b53564aa071a958518c0202751ba034fa746263a81123effe2c439815f3110987f5c90c4cd984b4296de022ccb4d","ssdeep":"1536:fbO7A0HPSvCRNuapbCSBMFrbftrCBTfLS7ZBw/0W5IYn1VDZC3erVY:fbO7seNZbfBMFvhkTfLSvw/0W5pPAexY","tlshash":"549312c4cc491870696fd5d00eeade8e2ae3e994caf14cd2763ddf24272e0e582961dd","first_seen":"2025-07-17T00:55:25.677577Z","last_seen":"2026-03-29T05:24:08.280904Z","times_seen":61,"resource_available":false,"data":null}},"time_used":65,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":48,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"theetheks.com/400/7938571","fqdn":"theetheks.com","domain":"theetheks.com","tld":"com"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.080Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"theetheks.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sat, 12 Jul 2025 05:27:08 GMT","end":"Fri, 10 Oct 2025 05:27:07 GMT"},"fingerprint":{"sha1":"A8:5F:BC:8D:69:48:61:87:C8:71:59:B1:E8:2D:80:6C:EA:72:62:A8","sha256":"D9:87:7D:26:F7:2E:76:95:22:D7:50:D5:66:A8:A4:8C:E3:00:48:6E:7D:04:26:19:A5:8B:3E:16:50:54:6A:8C"}}},"request":{"raw":"GET /400/7938571 HTTP/1.1\r\nHost: theetheks.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 48616fdfc8883acecb162643389f85e0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=030219033c1d46f9f3e8b0fc94e04ef8; expires=Sun, 02 Aug 2026 21:21:14 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":167592,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"288f6c62de8bc306c0bc871d7ff330fb","sha1":"ed03a07eb48b864234a7ed26152ca67728b53782","sha256":"d535e19e4876eeffd3ba1efb5ca73d3702944126b5601b73b3fcba50bea4fea7","sha512":"2b6cd1d80063064eb64059f92a3d5cf96554b35066bb64bc105370325a595bf5e1663147b946532b134f7259e6588ff832853e9fc88ec75fb5a9e9b892f10e22","ssdeep":"3072:mvsqlL3md76ln64JzLvXYSh/d/CxrCmC7fW50XKN/fo4vzp9Qu9za:ZAqd76HZYSxCxmz7fW50axbvl9Qu9za","tlshash":"4ef3f988b19275512e635134311fd20eaabf6b606c4e8580d19be1b67f3702ed37bde8","first_seen":"2025-08-02T21:21:42.681216Z","last_seen":"2025-08-02T21:21:42.681216Z","times_seen":1,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":36,"dns":10,"connect":26,"send":0,"wait":60,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"theetheks.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"adsco.re/p","fqdn":"adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.733Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"POST /p HTTP/1.1\r\nHost: adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 1632\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 02 Aug 2025 21:21:17 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAS-P-1: OK nyc123\r\nAS-P-2: OK\r\nAS-P-3: OK\r\nAccess-Control-Max-Age: 2592000\r\nCache-Control: no-transform\r\nAccept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Credentials: true\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1212,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with very long lines (1212), with no line terminators","md5":"1fa85922b023f636c795c1d9619f2ac5","sha1":"e919586ad21190ab59fd57e7e2dccedfc3a3ce47","sha256":"b2f6942a9e44ac90e1d768d77df2a742948aa6e5403466d142768b73c788be9c","sha512":"c5b1458483d5d0ab11f41fd71e1873a70a79e5a81cd8dfebe338b91e0c240395d031c731f820f3688fb91a07c6bc2581ac48ca57ce62d9aef574d0c46ded1071","ssdeep":"","tlshash":"5521b4639ccac922aa684d9ba01b30a34f6cb4ffdd001975a8eb5d6516d4884b172e29","first_seen":"2025-08-02T21:21:42.68416Z","last_seen":"2025-08-02T21:21:42.68416Z","times_seen":1,"resource_available":false,"data":null}},"time_used":685,"timings":{"blocked":280,"dns":1,"connect":92,"send":0,"wait":119,"receive":0,"ssl":191},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/2jiGc77.js","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /2jiGc77.js HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 78252\r\nlast-modified: Tue, 29 Jul 2025 10:40:40 GMT\r\nvary: Accept-Encoding\r\netag: \"6888a528-131ac\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 254\r\ncf-cache-status: HIT\r\ncf-ray: 966c0810595b8d79-HEL\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":245039,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"391ea374a82e33b9213ca1fe96f7de97","sha1":"9280db857ce7da2980ea86c8c4a0b311d395e7e7","sha256":"ae9d1d5e57fe7921126efed4073a9befc127339403bee422c7e24cd0f1812e58","sha512":"405c925acf1f4a210de7c07dc6cf1b095108183a1e0a71f4401367bc3a9f9ff88e9a6ef30a2bbbf697524c8929bbcb72dff0469ec94999b2e655f550ea7870b2","ssdeep":"6144:bBdFoj94bqFVFs2KbCrSXvQEMZP4bobT4bDbgbFb4q8ebOyTM0Ia3Gvu5Fp4fRkj:g2bqu2kZRXit3p","tlshash":"e234d989b6c1b0b402e3a1b4052f551af277b944744ec4c1f729d9d1aeb9a0e9a37f3c","first_seen":"2025-07-29T22:27:57.713788Z","last_seen":"2025-08-29T23:20:58.983677Z","times_seen":190,"resource_available":true,"data":null}},"time_used":136,"timings":{"blocked":41,"dns":9,"connect":13,"send":0,"wait":13,"receive":29,"ssl":25},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"HEAD /e/rvnzo64e51kg HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: file_id=9536265; aff=35509; lang=1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 403 Forbidden\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Kp8y9wgwh5Bqn8odx6upv8TAP3TF67vyLGNFW1XQ7UrNRFGejHjryHDrNqs3KRT5G3U%2FQFr9HPHBmpTwSaG4YyDCRCQEVmVy6g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 96909faeee73568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":105,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tl930oaausfa.l4.adsco.re/","fqdn":"tl930oaausfa.l4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.l4.adsco.re","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:55:04 GMT","end":"Thu, 16 Oct 2025 09:55:03 GMT"},"fingerprint":{"sha1":"89:17:D6:F2:7A:24:C5:33:57:EE:DE:EE:8A:24:F2:17:17:F4:D3:82","sha256":"E7:4D:AF:EE:70:50:82:45:92:27:31:C9:82:61:D4:DC:59:1B:06:E0:75:04:FB:AC:D9:72:BB:43:8A:B0:07:C1"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: tl930oaausfa.l4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Fri, 02 Jun 2023 14:03:32 GMT\r\netag: \"6479f6b4-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":307,"timings":{"blocked":141,"dns":59,"connect":31,"send":0,"wait":23,"receive":0,"ssl":50},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/90c3285604e00c4164892d7a1826e68e.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:24.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/90c3285604e00c4164892d7a1826e68e.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 80908\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=pwYFtJL6c1zmrNubIKWXVLa0OT2GzucL%2BKScv6luvBV6B6kzlCGRxM5PuOxvcVtZYPo4G%2BKtrUnzhHuPkjxVBNYPhv52pkHzc1LeYPqzsnDPEP0kFcO2gBzqfHT92GuqC7049Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 04 Mar 2025 18:50:36 GMT\r\netag: \"67c74b7c-13c0c\"\r\nexpires: Sun, 03 Aug 2025 02:19:39 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 68505\r\ncf-cache-status: HIT\r\ncf-ray: 96909ff23956569f-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=440\u0026min_rtt=0\u0026rtt_var=241\u0026sent=164\u0026recv=174\u0026lost=0\u0026retrans=0\u0026sent_bytes=107486\u0026recv_bytes=9925\u0026delivery_rate=11804977\u0026ss_exit_cwnd=14923\u0026ss_exit_reason=2\u0026cwnd=20150\u0026unsent_bytes=0\u0026cid=9eef62577e518981\u0026ts=7785\u0026inflight_dur=69\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":80908,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"90c3285604e00c4164892d7a1826e68e","sha1":"b115037bae8351aa4a926cf201cfb2896fd3aa96","sha256":"2ff3d019e9979db4f9d1c06b008bb30b936fe253f7bb8e18f06effff4723e91d","sha512":"85bd67ba2ab7f7bfa3e026c32201978cb70a6884ef45a618e5e9e73dc9255736e0adf78354f3f2532b09f417a083ea9b51974f0f88b18345f844e27cc7457948","ssdeep":"1536:CPnriJu5PltTrmZCo8RM4ZhfKIfnZSMv6TkToMR8uniLjqvMJhCSyKNVIQiuuIy7:CmWvrmZMR9UIfzXoMR9iXbJhC0vXep","tlshash":"c98312687f4cf20194e9102af1ef9d2bc70cede768a78697b44501757a0fb48ed88068","first_seen":"2025-03-06T17:14:06.8849Z","last_seen":"2025-12-08T04:45:03.0663Z","times_seen":487,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"172.66.163.179","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 05:32:11 GMT","end":"Sat, 18 Oct 2025 06:32:07 GMT"},"fingerprint":{"sha1":"9A:4C:DF:45:B2:CB:DC:2D:2A:D0:5B:6E:4D:BF:49:B6:72:02:C3:5A","sha256":"7B:F2:F8:4B:9D:1F:3F:81:66:CE:47:13:7E:8D:8F:06:D8:1A:6A:49:E1:CF:8D:5E:F4:2F:8D:CC:45:7A:E3:8F"}}},"request":{"raw":"GET /adgpt.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 857\r\nserver: cloudflare\r\nlast-modified: Tue, 29 Jul 2025 10:40:40 GMT\r\nvary: Accept-Encoding\r\netag: \"6888a528-359\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 371714\r\ncf-cache-status: HIT\r\ncf-ray: 96909faf9b57569b-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1813,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1813), with no line terminators","md5":"365753f5db3715994349e69ec3e6a5f8","sha1":"f61a8cbffd148f747669d5760b5b6999bfb53cba","sha256":"74c4e67497ceefa9e75f8e1c6a659989bb15bd6c6616b684a038abc3602d2dcb","sha512":"7053a27017e32fbf87af72ad8c5332008a946025b8e9a0cc352dacbf0b47dbde763f9a89bcf2ae6c5f1b4a4c1ca936ac4d40e53096de5c93eed12fdd5ad96701","ssdeep":"","tlshash":"2c3122db31a0fdb1078b614c212f1909f5bca4a0a3ade8d1cba9cd747d385484061bfe","first_seen":"2025-07-29T22:27:57.77684Z","last_seen":"2025-08-18T06:01:05.332385Z","times_seen":192,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":46,"dns":10,"connect":1,"send":0,"wait":9,"receive":0,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/settings/491223","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /api/settings/491223 HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1be64b6d6652effba7dcf744e90def6a","sha1":"d9fbc7d1fa49fa4733f90a3739882d63972c2352","sha256":"72d79d0ad9a70ef53c1bab65c588d44bffb1a1b5aba0eb2f9f6a886c4c3aec4f","sha512":"ff1aee5b5d4ba25f4f78a0ddc80cd878856815c1ded88b32370c72bff242e73522e6aefb60fa5e53c434f10d2611dab7679152edf9321edc2b656e0265ef7006","ssdeep":"","tlshash":"408004c00dc1545410c010f4434043150103140f535c3304d41d1701147f4d17030150","first_seen":"2023-04-06T10:58:14Z","last_seen":"2026-04-04T05:52:30.453431Z","times_seen":7143,"resource_available":false,"data":null}},"time_used":122,"timings":{"blocked":52,"dns":2,"connect":18,"send":0,"wait":13,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"172.67.193.52","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.395Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tzegilo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 15 Jul 2025 13:03:10 GMT","end":"Mon, 13 Oct 2025 14:01:42 GMT"},"fingerprint":{"sha1":"63:44:F2:D8:6F:1F:20:09:BB:64:B8:65:D7:08:7F:9F:70:FD:23:6A","sha256":"69:42:0C:97:BF:80:90:D6:F2:1C:01:38:E2:96:21:71:C0:69:91:32:F8:1D:3D:97:80:B1:A0:E2:5B:FB:44:02"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: tzegilo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 11 Jul 2024 10:23:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nlink: \u003chttps://flerap.com/\u003e; rel=preconnect; crossorigin, \u003chttps://fleraprt.com/\u003e; rel=preconnect; crossorigin\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mJtp9lCuL1E5qevvPLi1Nu9xtDFEPcW%2Ft7BKzxzgJlN1lefnIrlMW9C%2BPymsSuRIXCNNmu8QmUSpsUYuIS1KSmUoXZybCM71dA%3D%3D\"}]}\r\nage: 3899\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"668fb2be-45d7\"\r\ncontent-encoding: br\r\ncf-ray: 96909fb76bae56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17879,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17229)","md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-04T03:00:17.365104Z","times_seen":6340,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":26,"dns":3,"connect":1,"send":0,"wait":10,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/5/6568874","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"GET /5/6568874 HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 01d390efce0077882e1972ca24209dca\r\nlink: \u003chttps://my.rtmark.net\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://e2ertt.com\u003e; rel=\"preconnect dns-prefetch\"\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\nset-cookie: OAID=008219a2dce347f9e13bd68f3c5183ef; expires=Sun, 02 Aug 2026 21:21:16 GMT; path=/; secure; SameSite=None\noaidts=1754169676; expires=Sun, 02 Aug 2026 21:21:16 GMT; path=/; secure; SameSite=None\nsyncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":111324,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b9d215af30bc2d311b6e1fde9029ef88","sha1":"d92631687d31c8f24b6dc439e6a9c5b0da7a1b2d","sha256":"e4d7dae2a4acf3ac6080a38222c517352a5737457b2a6d8721c5d21d469f8500","sha512":"6da0c6491bcac80d24ac182fb64c3ef2f3d9862e08c6c9e2dc2171a3ee5777dd2fe8acd40e7fb1856897f8060ee828a871d74a54877be7d1c2812ac708463bb6","ssdeep":"1536:GiACUfrlRSX5Mo0esqj9Us407weYGM1L3UDOho3S8b1a4zNXaH242Wsg2sryA1/u:ZAC0jex4QweYGmebNKH2429CryA1/u","tlshash":"5ab32b9d629238b55da681383c1fc55c6eebaf60044d88e4d0e99c737653074d3bbee8","first_seen":"2025-08-02T21:21:42.694323Z","last_seen":"2025-08-02T21:21:42.694323Z","times_seen":1,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":99,"dns":11,"connect":26,"send":0,"wait":60,"receive":0,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tl930oaausfa.n4.adsco.re/","fqdn":"tl930oaausfa.n4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"38.132.109.126","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.n4.adsco.re","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:54:44 GMT","end":"Thu, 16 Oct 2025 09:54:43 GMT"},"fingerprint":{"sha1":"E8:50:0E:37:80:04:3C:5C:59:CD:8C:24:F1:FE:D8:F1:FF:1A:B2:40","sha256":"28:14:77:1D:ED:49:07:14:6E:D8:8C:76:86:9D:DF:DC:03:EF:C8:93:12:71:33:5A:35:E5:1D:99:92:00:32:C6"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: tl930oaausfa.n4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Fri, 16 Jun 2023 08:37:42 GMT\r\netag: \"648c1f56-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":866,"timings":{"blocked":388,"dns":117,"connect":87,"send":0,"wait":88,"receive":0,"ssl":182},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=22954946\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:24.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /500/7938571?excludes=22954946\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=0802197cb65240e2f68fb17f4f39a38b\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:24 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: b390526806f4e023cd36c8e131e40546\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=0802197cb65240e2f68fb17f4f39a38b; expires=Sun, 02 Aug 2026 21:21:24 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1794,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"43a30cc586be1fdd6d080aa0ef649560","sha1":"76dfc0f17e6b208eda9c8c1214ca1d913f61e704","sha256":"e938b3c2111740980f5621f04f1fbfe7c615f88670db7244d5d74dd72246bef3","sha512":"a7584a1655a074bbd96475dbde4ff4081d98fc544278bb1f5db2a5a46fa065e536325273c33c3874f6fc8dfd534e0209dce5309961258e2d5770f6c1c6f111be","ssdeep":"","tlshash":"c8310b61db0ef61907d4054ad8a0f9c48966ebe61a1496c5cc0cf21467b161accd2365","first_seen":"2025-08-02T21:21:42.696951Z","last_seen":"2025-08-02T21:21:42.696951Z","times_seen":1,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/8248820be51a4f6edbd1ee6803dcf516.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:27.856Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/8248820be51a4f6edbd1ee6803dcf516.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:27 GMT\r\ncontent-type: image/png\r\ncontent-length: 80673\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=TfF%2B5C0ZA4CtDWQi%2F58yyTUiWfHeNhpIe%2FvYH4KXzUwjJhIeHwM4S6YnF0Fpt98Y6rf1R2imzXRFcMnBRrhxO3RC%2FXZfO9BhUxhVzYv2Fm6cKroL5ZyDIfozS%2BWbBULQJF2cUQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 05 Mar 2025 02:17:07 GMT\r\netag: \"67c7b423-13b21\"\r\nexpires: Sun, 03 Aug 2025 06:25:37 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 53750\r\ncf-cache-status: HIT\r\ncf-ray: 9690a0051a53569f-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=707\u0026min_rtt=0\u0026rtt_var=212\u0026sent=288\u0026recv=199\u0026lost=0\u0026retrans=0\u0026sent_bytes=274050\u0026recv_bytes=11545\u0026delivery_rate=17429869\u0026ss_exit_cwnd=14923\u0026ss_exit_reason=2\u0026cwnd=32183\u0026unsent_bytes=0\u0026cid=9eef62577e518981\u0026ts=10784\u0026inflight_dur=87\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":80673,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"8248820be51a4f6edbd1ee6803dcf516","sha1":"2601fe3fc86c80d8dae8161c1c989d9cc4efec83","sha256":"cf4b4ed69365ee9d25dc5f88dec8bb275431a2bfbb996eb2175aa1381cb179e5","sha512":"a6237c4c3131d93ab90cb37ef6e1036be2f78f0ee4d01abfe8071e8c6ddeb74c32807018fbedcfc2b9c7040e0b327a82a47198fcad717c1e407bd06452c289ca","ssdeep":"1536:hL4kY4aQ8aRBISryHqkaCTyRBT0mXrQfStdd4PJU6HyAphRe:ZY4aQ8aHXrlImZrQatMP66SAQ","tlshash":"79730296f1b11219f965f3cb8da948c5e406ed8195d27633eb88accc170531fa7cc792","first_seen":"2025-04-21T05:11:59.301935Z","last_seen":"2026-01-14T16:25:07.530226Z","times_seen":221,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/impression/wvOmFO6V-DdaUYe95mTcGFL1B-Q9xmK4qYgJ5CC7nXGk7PX8yIz88aZEkABf0EodSInJFradclDdGm1jzssbI5SdmWUmLf4lmtBclNbt2kfi9h462PpDb7vAr4AWBmWrN6AwespDjQsi0LSMg-H9iEFy_pE90EOImiE6f-Vs8BlE-ph87_a8dsPtP55hIIxJVhhYkkmfpGvmV_XzKu-QhSVLZqL-UtOzizIYOebLtVHrWxAW651OQedcCSaDdzpd_mIFOQ7iuT886KIJoLhgxyg20AVrGwkZglQTvP8w1_KO614KEKlh2UpmMupkWDo9k59zFTSpBSJiogrcagmJ5GlclwSsSD7GEoqG3yyDzAkFJziRE6-nnS_Ll3x0ayPHJX9dhxRe2nxVgAQ4mATiM5J_cVwq6zcCG9SoCVib1MvkwHkPJpvp6QdOaQLlguPHzhQW0SoeU5VEn0QCfISqWCmk2h42H2R0MZ3KtgwiRx-9jRktF_4cLYd8DSHvLjEiR1N3JVakpOL26AlxbxfW_3Wc-rd2w5tNBbNKEQfdQsMK65fLAXXbW_ymCZlEYku3GgqGy5dN8dM6V3_670CchRoess6UCBQhKcl7UT98zEIRu6bpVYPW6u0P3rfsrW5WWhPvGMSsIe-G-BFoUGuff6Jdi8TgGAlGLEXqQwjanxjTMWzP-KiS6b1JG7VZVK_quTQl41P97JzCzWZpHDTsbKvhEGRhAqCCIRzR1LUkgHvEWSMDwThPP0-NEmfj0InCZbCfBzyghIBLrT8TZ2nYJ1hU_G5aB7MVjHVjo5-xOK-Z4oBUOSm_fxFTztiQo1YC6u480VNjRCzYaY7_8yYW6swcHocdO93j?_z=7938571\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:27.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /impression/wvOmFO6V-DdaUYe95mTcGFL1B-Q9xmK4qYgJ5CC7nXGk7PX8yIz88aZEkABf0EodSInJFradclDdGm1jzssbI5SdmWUmLf4lmtBclNbt2kfi9h462PpDb7vAr4AWBmWrN6AwespDjQsi0LSMg-H9iEFy_pE90EOImiE6f-Vs8BlE-ph87_a8dsPtP55hIIxJVhhYkkmfpGvmV_XzKu-QhSVLZqL-UtOzizIYOebLtVHrWxAW651OQedcCSaDdzpd_mIFOQ7iuT886KIJoLhgxyg20AVrGwkZglQTvP8w1_KO614KEKlh2UpmMupkWDo9k59zFTSpBSJiogrcagmJ5GlclwSsSD7GEoqG3yyDzAkFJziRE6-nnS_Ll3x0ayPHJX9dhxRe2nxVgAQ4mATiM5J_cVwq6zcCG9SoCVib1MvkwHkPJpvp6QdOaQLlguPHzhQW0SoeU5VEn0QCfISqWCmk2h42H2R0MZ3KtgwiRx-9jRktF_4cLYd8DSHvLjEiR1N3JVakpOL26AlxbxfW_3Wc-rd2w5tNBbNKEQfdQsMK65fLAXXbW_ymCZlEYku3GgqGy5dN8dM6V3_670CchRoess6UCBQhKcl7UT98zEIRu6bpVYPW6u0P3rfsrW5WWhPvGMSsIe-G-BFoUGuff6Jdi8TgGAlGLEXqQwjanxjTMWzP-KiS6b1JG7VZVK_quTQl41P97JzCzWZpHDTsbKvhEGRhAqCCIRzR1LUkgHvEWSMDwThPP0-NEmfj0InCZbCfBzyghIBLrT8TZ2nYJ1hU_G5aB7MVjHVjo5-xOK-Z4oBUOSm_fxFTztiQo1YC6u480VNjRCzYaY7_8yYW6swcHocdO93j?_z=7938571\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=0802197cb65240e2f68fb17f4f39a38b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:27 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: 7b5f9520cfdefa96dece0ebdd51bcdc0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-04T06:36:29.343204Z","times_seen":96356,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jdadbl.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jdadbl.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 21:39:44 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OBrJqnRio7kCD7rQQjV8xYPoCNglI7w3Yd8S8BFqD%2BIyyQ%2BOaY11Hi8c2uluqrpKUVq5EdSaiSAcFn5Rx3Z5A3lz1841UAhNrw%3D%3D\"}]}\r\nage: 1782\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"a47-5cbe74da38800\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb5c568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2579)","md5":"95fd065c887d003f9a169dee9876532c","sha1":"0f111b6d5e142fadb966a1feb264d519c12a59d9","sha256":"4d4c84ad505bddf4d49b1222db984d7aaa425c6702c79029801632bf31f2b80d","sha512":"cacd512fbe11ccdf89c56c164255191d88f1edf46a9cb02b1de0d690659923a6508ae8d5d1733c5452974ebfae589f4c1214be047ba67d5218db06c3fe9a25a2","ssdeep":"","tlshash":"5451215775c270a0273b60b4952f710a773a5892250b8860c3e5e9952c2c8ef9177f9b","first_seen":"2023-05-22T09:51:00Z","last_seen":"2026-04-04T06:19:11.114061Z","times_seen":776,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/provider.hlsjs.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.077Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/provider.hlsjs.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 06:30:49 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5zMo6SVcA543I7PGwhEXKx2CROu9i1JNSUD2C66nxbRKBBzFCIZhw46NvhVoYhL2V9%2FGvDbRHroNBIJh4w0GxbSVlXsW2besNQ%3D%3D\"}]}\r\nage: 6921\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5e59e-5fd8446d199fb\"\r\ncontent-encoding: br\r\ncf-ray: 96909fae9e1d568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":386462,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"e133e8e7b97079d4bc7ec71fae611795","sha1":"14f34839087df4a3a09ba2f11a768f0d14af979d","sha256":"f0d08bd0271c5d085f5d1419b1af887eb9c250aac800cadc4d5ea64c3a348e97","sha512":"c9d584c81ef63afa75e386a97e6467969aec410d4819ef8053e2c740785c03028338e5cf0f278b874bcf116a31ddb9451bf521c8a1cb30bc5d9cefe99f33c34a","ssdeep":"6144:saY41OZdKOOf+nSIY/4nN/Aq5YrOue7stE6KgT/:pY+/4BAq5Yr1eG","tlshash":"1d842adeb695b0664283b1a4903f5607633b7d0a7409c1acfb27e5d61db8889b03bf74","first_seen":"2023-03-08T14:31:25Z","last_seen":"2026-04-04T06:19:11.108672Z","times_seen":918,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/favicon.ico","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.271Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: image/vnd.microsoft.icon\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Gf42MxZuV6%2BwJdhi0ielGSBl%2B%2Fi2UGzVxsmevHCHSbhWsMY9T2nAOp9cMPA68JFvR2ZkND902B8ElhOIadQO5WJjzQJtLG%2BOss65HHq0k2baoz2dnsSDrxKr3BUK3Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Thu, 01 Jun 2023 18:52:04 GMT\r\netag: W/\"1c1-5fd15eeb261fb\"\r\naccess-control-allow-origin: *\r\nage: 3196\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96909fb03cc85695-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3371\u0026min_rtt=523\u0026rtt_var=2812\u0026sent=173\u0026recv=305\u0026lost=0\u0026retrans=0\u0026sent_bytes=13918\u0026recv_bytes=16674\u0026delivery_rate=426816\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=7e0f4210d1577a62\u0026ts=810\u0026inflight_dur=63\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":449,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 30x30 with PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"91a7665e37c2eeb49f2ee2fbc2e2d19d","sha1":"8f93836b06e6c2fac65258b7420c1df09ad58d37","sha256":"ff27be6c1a1eba3dc17d16581d680e8faba2536b565e90ad7c09c43d62495dd7","sha512":"2fd72836b18efe830a4f6efa526e01dbe267c65845c22272c90fe5df1a12266d266a34217bc89fb9e365ee009dc06a1a572744287b5b529ae8c87af20483d151","ssdeep":"","tlshash":"ddf0d4dbf5476008c3379ed5e46380cbf13cc1d50c9a704b0175791a4d453169391717","first_seen":"2023-08-28T18:58:56Z","last_seen":"2026-03-09T01:07:35.085976Z","times_seen":432,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.lulu-row1.com/api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026sid=4c137ec5-e006-42ff-a069-88daf8dbe396\u0026i=1\u0026s1=sarah667\u0026fs1=1\u0026s2=35509\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg","fqdn":"storage.lulu-row1.com","domain":"lulu-row1.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"5f-hj8-5d2g.dnsdf.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 24 Jul 2025 22:28:39 GMT","end":"Wed, 22 Oct 2025 22:28:38 GMT"},"fingerprint":{"sha1":"7D:BA:BD:39:74:D3:6B:67:2B:8C:4A:A6:D2:43:45:C0:27:E7:C6:65","sha256":"F0:A8:1B:02:B6:02:1B:7B:93:F8:42:4C:CB:C0:86:84:AE:8B:73:1C:00:EE:68:E7:71:0F:BD:FB:35:2B:54:8C"}}},"request":{"raw":"GET /api/users/491223?host=luluvid.com\u0026ev=220\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026sid=4c137ec5-e006-42ff-a069-88daf8dbe396\u0026i=1\u0026s1=sarah667\u0026fs1=1\u0026s2=35509\u0026fs2=1\u0026url=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg HTTP/1.1\r\nHost: storage.lulu-row1.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: nauid=aIrtnTEUUGxFA21utjSX; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":648,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (349)","md5":"9de43fd57d1c94793b8dbc2078e50e5f","sha1":"421474e4652eaf8135c59ce34528118b23a258fb","sha256":"2019f20013c999dfa093b5be0271b0c5e54e7d33785fe100003e6c4b41fe0e38","sha512":"12a22c8484d407af4d093411081634b4714556cecec0322180f2754ef1ec7bab342748c556f0ce7d0d22505bd64c2f4f9e0dd8667bf254f166218338daee7c5f","ssdeep":"","tlshash":"3af0d385972c52fa434890a3e93d1da14e8d45782715500afb28435e44ca1820290187","first_seen":"2025-08-02T21:21:42.703576Z","last_seen":"2025-08-02T21:21:42.703576Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"storage.lulu-row1.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=132cb20d-e885-49c7-b254-475781c2bce6","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=132cb20d-e885-49c7-b254-475781c2bce6 HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 803\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Sat, 02 Aug 2025 21:21:16 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":61,"dns":1,"connect":26,"send":0,"wait":26,"receive":1,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ogoampoodopet.com/500/7850681?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"ogoampoodopet.com","domain":"ogoampoodopet.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:19.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ogoampoodopet.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:24:43 GMT","end":"Sat, 18 Oct 2025 05:24:42 GMT"},"fingerprint":{"sha1":"F9:79:8E:73:08:0F:00:A8:A8:34:31:34:F2:AC:FA:89:9C:19:C0:CE","sha256":"F9:81:D8:67:D1:8C:E2:63:34:13:DD:D0:1E:FD:76:40:FB:4D:3D:A6:6D:A0:F5:44:67:8B:82:04:1B:DD:E8:15"}}},"request":{"raw":"OPTIONS /500/7850681?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=naupsakiwhy.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: ogoampoodopet.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:19 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":219,"timings":{"blocked":96,"dns":10,"connect":26,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ogoampoodopet.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/css/main.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /css/main.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Thu, 18 May 2023 18:01:36 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mEkctV1VN1JxFN%2B8PvIZsyAWRYgJQZFpHP1rlI07uZSy3FYpWNMqfKNWGTLXG9dAJs5bix1que2KDYrRifR4C5qfB6nRQb6otw%3D%3D\"}]}\r\nage: 4099\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"c05b-5fbfb986a0000\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb4e568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49243,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"40fa099cd62886ddda0afde4ef18cc84","sha1":"4c53f2b1e903260eeeff8c4f78b1562e015e1951","sha256":"57fd276195b1343bb4664915c74396b2331de23b3a778e05e85c149db2332d55","sha512":"d360bcb45964adc2756e33f7402775cc883e4710864d945a60caba1e33cd70b530de7613ffb853ed062f43dfbf2e471472e92174ec9b392b8200d23dba92f7a0","ssdeep":"1536:AQV8FxnYgp9ry2vYsRwq9AOOGvC4DONaY93Rz:AQVMxnYSy2v/AOOk4Rz","tlshash":"aa238422a7812c0cf06bd1b67d6197d6233e4053d92b1f7c7ab93578c28e4e85173b9a","first_seen":"2023-10-26T04:52:23Z","last_seen":"2026-04-04T06:19:11.139977Z","times_seen":883,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/xupload.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/xupload.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 13 Nov 2024 21:12:37 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MV6A8XVDqoukvmzCSDA71w8%2BaOGwQa%2FamRlcMOGq2Y%2BDi7tziqdUJdVme7jDOGcziV0E9GGgE9VU1hf5YM8wIGqLmGp6glPpZQ%3D%3D\"}]}\r\nage: 1782\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"2a10-626d1cb18bf4f\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb53568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10768,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"36d53d0f509d1642267ebb68b36165a6","sha1":"18534c979b23a500124e316d07db0f42e4d72bdd","sha256":"435e82278b5b2cf7980b025827e97d4edeb310b8fe31ef18f8a4535f36ba298f","sha512":"e45c543c6b137c234ca332cf4cda2ffae6af1d8fdb83e900e8508f7407914e96e67bb3b81b4bfd5dada10cceefa1344aa4e7c47125577d605ad2bc9634b77279","ssdeep":"192:7IKE9YGs1qGHh+6IsZWnrbll621w+4UWdRebMQ4WdReDyYQaQv7OsaaFg+BnqGQi:EGCi6BlV9GRebVReDyYS7OsaaF10fq3f","tlshash":"f122654abaa339912a7730390bbf52043b398407114ace54bd5c96c4af8452897fbbfd","first_seen":"2024-12-01T00:07:19.913985Z","last_seen":"2026-04-04T06:19:11.128521Z","times_seen":708,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/srt/empty.srt","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /srt/empty.srt HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: text/vtt; charset=utf-8\r\ncontent-length: 42\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=XLC6CyOLM4SDqDjFjwl7KM3CNsu%2Bmcs0exQuCvSC%2FAvL7Pg5rQfm%2BBv6oaQPWsytbTtJacmVy6sex6z14GKZqU%2BhRm1ao%2BNB%2FkQO%2BubtjltkTl5MJlHE%2FrGmal%2FNDw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Fri, 08 Jul 2016 15:03:06 GMT\r\netag: \"2a-537211991fe80\"\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 96909fb29cd05695-OSL\r\nserver: cloudflare\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=2564\u0026min_rtt=0\u0026rtt_var=2523\u0026sent=181\u0026recv=310\u0026lost=0\u0026retrans=0\u0026sent_bytes=20455\u0026recv_bytes=17382\u0026delivery_rate=859460\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=7e0f4210d1577a62\u0026ts=1243\u0026inflight_dur=70\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42,"size_decoded":0,"mime_type":"text/vtt; charset=utf-8","magic":"SubRip, ASCII text, with CRLF line terminators","md5":"7f8501e8cf0fd2262e1ec59fa6653797","sha1":"5ea9200f583b21ec2008fc44447b2a15ab31f246","sha256":"f3adadb235f7ecab4a68f4d0961640c155c0d2057d28fe24e19d36b04904ddc6","sha512":"23ad6074030e0fc1cf24cd1085b974d27d25db4f336b432da5f79706208ba9c7945419d78c34b2ae88c2196f4b37bdcac53f8407e95bd8cf1ff98b9cdba54cd7","ssdeep":"","tlshash":"c29004d1ff314f51d4143340145033473151c4070dc550103050d051f5c5701c4013c7","first_seen":"2023-04-20T01:47:48Z","last_seen":"2026-04-04T06:19:11.14933Z","times_seen":849,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7816\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 31 Jul 2025 10:13:27 GMT\r\nexpires: Fri, 31 Jul 2026 10:13:27 GMT\r\ncache-control: public, max-age=31536000\r\nage: 212867\r\nlast-modified: Wed, 23 Apr 2025 16:07:25 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7816,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7816, version 1.0","md5":"25b0e113ca7cce3770d542736db26368","sha1":"cb726212d5d525021752a1d8470a0fb593e0c49e","sha256":"9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526","sha512":"a0d331e62ab4727f49ca286a1ee7fb81cddc5bb9edf71ef84f4bd4fa1552069af1a82752011ba88fae80862d034135926b7e99d70e59d626d66d4ede90e94c30","ssdeep":"192:Agw5ksLwlyK8F2BXU96Fc575OI3+ga534SlEFwTG4ovej9be:Al5y8FSUMS5VOq1KISlvS4ov+4","tlshash":"a3f1af19d5de5a73f80032b45b6911ba7e42fa83bc68bbedf8046a10ad542cb467cc91","first_seen":"2023-04-05T13:48:05Z","last_seen":"2026-04-04T06:46:33.140612Z","times_seen":203534,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":22,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=22954946\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:24.770Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"OPTIONS /500/7938571?excludes=22954946\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:24 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:29.835Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 02 Aug 2025 21:21:29 GMT\r\ndate: Sat, 02 Aug 2025 21:21:29 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":26935,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (1572)","md5":"c1dfd96443eb2be2a1f91f6adb6f9dbb","sha1":"34fcc9ca9febd9112aeeb81b053d0d2bb6ab4b9c","sha256":"59e10836dc5089dc4aa2f54b882ceb39184f2970d915a5de1a594d502876143a","sha512":"efb5355fb90c85834e4ca9fda61acb4d52c9b6d72cecb5a71182203dbc409f463b71ebc183da475021e4c73881ed89da1e794d16e2d5dc9eff95495f59c5d3b6","ssdeep":"768:DFHFYFZFNFO4F/LFYFgFGbyF5OS/vyqr2/MoOf/i/3gBknTOE/NkcKHuh9OO/juV:jZ2pVn","tlshash":"c1c20da10417444097835ce223cebf34fe0f92507142d0b5abfdab6baddbc6652693ad","first_seen":"2025-06-02T18:32:43.310456Z","last_seen":"2025-09-08T23:14:17.148601Z","times_seen":1698,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.cookie.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jquery.cookie.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Tue, 31 May 2011 12:53:56 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cG4%2FMN1oAVt6f%2FezYA9rfzjyLSPPs0bgd9Y0nDOSSulmCx5QIJ4eBog%2BoZgTXSqJt8JY9K8Z8x9hBuT2c77A66h6URchJLZxcA%3D%3D\"}]}\r\nage: 1782\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"10eb-4a491e5980100\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb56568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4331,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"ae0c2c5d8f01f7d35bb698bb618a62f7","sha1":"63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20","sha256":"75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc","sha512":"eac94ca9d884692af8bdf12aa6e902a3be4eed0772ad8f2932ac1c3328b83a7351cdf743a409bbc0a3cd385956c08d3203d51c572bb1680489e37330fe27a2bb","ssdeep":"96:L4BZxb64Ng7V8cNwpGylRCsKZcj1JXulL6M/aGByLskPSP4lBCClf1wgCyC:LQnb6eg7DgCsk8fgZJkPSPa+gCyC","tlshash":"2e91fd293a0d231d149353f57aee10c8a930d632216ad46c744cb6b06f00c63ddfbbea","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-04T06:19:11.113197Z","times_seen":4345,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/pop.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/pop.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 14 May 2015 19:57:56 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2eDYkHGZr6ZFdrNcYwy2NTuppLe5S%2BpEa4fHFmsl40aBTVEFy3OfSkuwupNIz13WgFNINGpmSsgBkmC75wYTLKVBb1EDTK2TBA%3D%3D\"}]}\r\nage: 4099\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"24-5161024c91900\"\r\ncontent-encoding: br\r\ncf-ray: 96909faccb79568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"2f8fefc6a5aed3327c395f43db6be62d","sha1":"8594728c9e75e88e1a759e8c8466df832323d963","sha256":"ff687e2177537cc8e021014af056c22a44036a19c9101350dedf64a6666d47ba","sha512":"3a7708be2e5469b92a3ad6d3de28fc5edb20586011871e4cf799135037b6f2d162f372913364adce6f7b87ff1cff25bbbbaa5a6488348e4a41938e6b43ab94a9","ssdeep":"","tlshash":"f28000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e00c228c2a","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-04T06:19:11.097081Z","times_seen":1053,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.300Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC","sha256":"A2:57:20:B6:AE:46:89:B9:39:C7:57:9B:1E:43:96:E3:5A:BC:7E:3F:1D:18:10:34:CC:53:3D:DB:78:4E:5C:21"}}},"request":{"raw":"GET /css2?family=Poppins:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 02 Aug 2025 21:21:14 GMT\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3591,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"35d825bbfa06a00722474414bc5ef193","sha1":"261399984a263223d6a6d05bdc7f1f8dd4408b57","sha256":"9ceebd00ce42c01cbbe9ade915ff99832c71d12bd44caf48f4c813df001ffc2b","sha512":"8168d93fcd0bbe9572ed9617309593a7ea1f48b6b218d7e3c5886fbad5291d8335947bb2c3a7a417d0a223dd7e8464d6d842e78b2e48d009e32ccd3d45a52059","ssdeep":"","tlshash":"0e719dd1087be1049b831cc123cf6d37ee0ea155b410e5746bfd0c98adabc694362b2d","first_seen":"2025-04-24T06:19:17.974382Z","last_seen":"2025-11-10T17:02:44.561566Z","times_seen":654,"resource_available":false,"data":null}},"time_used":242,"timings":{"blocked":105,"dns":1,"connect":20,"send":0,"wait":31,"receive":0,"ssl":77},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tl930oaausfa.s4.adsco.re/","fqdn":"tl930oaausfa.s4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"185.200.116.60","port":443,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.s4.adsco.re","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 18 Jul 2025 09:54:45 GMT","end":"Thu, 16 Oct 2025 09:54:44 GMT"},"fingerprint":{"sha1":"83:C7:27:CC:F1:15:7A:E0:86:E4:6A:42:8E:8B:4B:D6:F0:81:BE:78","sha256":"27:48:A4:5B:60:63:6F:94:B9:90:BA:1D:D5:C4:1A:8D:62:BF:0C:DE:A0:7F:8D:B1:21:C4:4E:85:A6:3E:D6:33"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: tl930oaausfa.s4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 0\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Tue, 03 Oct 2023 13:29:59 GMT\r\netag: \"651c1757-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":2208,"timings":{"blocked":973,"dns":192,"connect":258,"send":0,"wait":259,"receive":0,"ssl":524},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/90c3285604e00c4164892d7a1826e68e.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:17.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/90c3285604e00c4164892d7a1826e68e.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\ncontent-type: image/png\r\ncontent-length: 80908\r\nserver: cloudflare\r\nlast-modified: Tue, 04 Mar 2025 18:50:36 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\netag: \"67c74b7c-13c0c\"\r\nexpires: Sun, 03 Aug 2025 02:19:39 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 68497\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YsUEjA57YQEYtp61HzFhVuKVdyPPTMM47LAOFOLbK4htZkpKlZIyyiT5ynV4bpEQ%2BCXKGaOko1fJ17l%2BKTIvtEkBytS5a5teyYRr4EF36w%3D%3D\"}]}\r\ncf-ray: 96909fc1a82056b1-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":80908,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"90c3285604e00c4164892d7a1826e68e","sha1":"b115037bae8351aa4a926cf201cfb2896fd3aa96","sha256":"2ff3d019e9979db4f9d1c06b008bb30b936fe253f7bb8e18f06effff4723e91d","sha512":"85bd67ba2ab7f7bfa3e026c32201978cb70a6884ef45a618e5e9e73dc9255736e0adf78354f3f2532b09f417a083ea9b51974f0f88b18345f844e27cc7457948","ssdeep":"1536:CPnriJu5PltTrmZCo8RM4ZhfKIfnZSMv6TkToMR8uniLjqvMJhCSyKNVIQiuuIy7:CmWvrmZMR9UIfzXoMR9iXbJhC0vXep","tlshash":"c98312687f4cf20194e9102af1ef9d2bc70cede768a78697b44501757a0fb48ed88068","first_seen":"2025-03-06T17:14:06.8849Z","last_seen":"2025-12-08T04:45:03.0663Z","times_seen":487,"resource_available":false,"data":null}},"time_used":69,"timings":{"blocked":27,"dns":8,"connect":1,"send":0,"wait":10,"receive":4,"ssl":16},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"xadsmart.com/uxiezjixylxgmhx?wsVrWHOd=BQOCAAAAAAAACZUAArEoNN-Bsu_WHzbaYi4D27GhQf8R8agZYlHBM6MXhHe2lMad9H1byAwo7S5bIJGybkZNCm5pJVnW6virFBPxbYepOryIwOGGIuIwGNwPAUwT2qo5zbbcxw6a8VCCGXP_QiYC8Pzi1IqzRxYIn2F8RqT6G2Tca-8KQS5e9OQeKCMl_2VMREI5V2YSslU0D3xsAG6gQK7W85n2baM3yk6Ff54w8XD0rqV-Gtae2_FL-2pcwohabKN2JqF_FjAK7Rl0rRagSd2QpE_7wYTB8JqtHHE6kVFIqJ8oFSQ4rwSDZk5gbfHMHTNVJ5ZqoXySMMJPjRMQFl8eoAdtiNBwZogUj6LzayH2lQM9vjKs7COTQAiugrO4PilMxB0E5crzHnVxEpU_Scd8ewcv1cZQrTtaBOzyquLXQwgocC_1F_vDcy5XFS_6dLWvckamtRy0RgFp2H28RlCqfffEo9nP1kRXVPW6O1tkXJIcJlw8WVwKXA0EvDZokB4FfE379tP9Vo_k1B39SB3IbQYBOkG-BZc9ebWHJm-xD4xYHM0flrxSj1tPDHfzEwQZuu2Q5U6VC_uCjwhzPDNcL--1DqcOz3kzql88SWzo1s8RNUUW8wDoS5Bj_X6gRZsPiredP0AYt7qkAdXw4p21etOskoIvNvJBMBb656x0FeH7D2SU3gWvWS7IXo5HLWGmq9m_eX4SAoQSkgWbVZGoTpMw693HX0UaBSWAyudhRN9lVM3dMs5CJqJmfaBASDvPeDKsk65UPDm-z8vWwt3ZUnCuo_htdspjRwc_IjhvBTaNd_WwlvRf2qTsLhxceiwYfHcT0MJZ2yq0dXuHXV1Gx1TzAqSdRPQ4pDFvK9SYga2ksXOw4DemQLLyEbnZTIUBT2NdYfVqOxowDE8C5g3AhZsiy5be6PMU1-AKtuakV7vAbH9iMzhyZRuoxdkdqRUCvGAyIEq233JHFLRgAMP_sEAD0wnreMtSuggrWfAoioNYBfAuPFVcT8aqBcPw5QGQ81K9yWAMOD4YxNVOrZIjsW4zXyZLJ94PuPmL97hBskLOlhQkeepCJmTYT-MqMRkfEGzuK6VI05EinBNpmZPnHz5NLOGjtl-po3xnIa1FcTatIiEqYUNBl8vClFVDUwYXUrM3S6_AuMg-qox9QssToXDtI0pBMMOQBrV7tQVVlIC7okff_kva-Rna\u0026dtSTrpxa=4\u0026TDPqMtQW=4998988\u0026zJuRwVjI=\u0026EVPnpeoF=0,0\u0026BHqWAIvj=\u0026KOtqPWEF=\u0026fAVyHeOX=1280,1024,1,1280,1024,0","fqdn":"xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:17.317Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"xadsmart.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 04 Apr 2025 00:00:00 GMT","end":"Tue, 05 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"57:60:97:0C:DC:E6:0F:0D:1B:04:5B:46:03:77:64:46:88:C5:CF:87","sha256":"14:CD:91:C4:51:65:3A:E9:F5:6D:CB:BF:EF:86:31:A9:7F:DD:F9:17:57:48:89:78:CE:C4:29:EA:76:4F:04:DB"}}},"request":{"raw":"GET /uxiezjixylxgmhx?wsVrWHOd=BQOCAAAAAAAACZUAArEoNN-Bsu_WHzbaYi4D27GhQf8R8agZYlHBM6MXhHe2lMad9H1byAwo7S5bIJGybkZNCm5pJVnW6virFBPxbYepOryIwOGGIuIwGNwPAUwT2qo5zbbcxw6a8VCCGXP_QiYC8Pzi1IqzRxYIn2F8RqT6G2Tca-8KQS5e9OQeKCMl_2VMREI5V2YSslU0D3xsAG6gQK7W85n2baM3yk6Ff54w8XD0rqV-Gtae2_FL-2pcwohabKN2JqF_FjAK7Rl0rRagSd2QpE_7wYTB8JqtHHE6kVFIqJ8oFSQ4rwSDZk5gbfHMHTNVJ5ZqoXySMMJPjRMQFl8eoAdtiNBwZogUj6LzayH2lQM9vjKs7COTQAiugrO4PilMxB0E5crzHnVxEpU_Scd8ewcv1cZQrTtaBOzyquLXQwgocC_1F_vDcy5XFS_6dLWvckamtRy0RgFp2H28RlCqfffEo9nP1kRXVPW6O1tkXJIcJlw8WVwKXA0EvDZokB4FfE379tP9Vo_k1B39SB3IbQYBOkG-BZc9ebWHJm-xD4xYHM0flrxSj1tPDHfzEwQZuu2Q5U6VC_uCjwhzPDNcL--1DqcOz3kzql88SWzo1s8RNUUW8wDoS5Bj_X6gRZsPiredP0AYt7qkAdXw4p21etOskoIvNvJBMBb656x0FeH7D2SU3gWvWS7IXo5HLWGmq9m_eX4SAoQSkgWbVZGoTpMw693HX0UaBSWAyudhRN9lVM3dMs5CJqJmfaBASDvPeDKsk65UPDm-z8vWwt3ZUnCuo_htdspjRwc_IjhvBTaNd_WwlvRf2qTsLhxceiwYfHcT0MJZ2yq0dXuHXV1Gx1TzAqSdRPQ4pDFvK9SYga2ksXOw4DemQLLyEbnZTIUBT2NdYfVqOxowDE8C5g3AhZsiy5be6PMU1-AKtuakV7vAbH9iMzhyZRuoxdkdqRUCvGAyIEq233JHFLRgAMP_sEAD0wnreMtSuggrWfAoioNYBfAuPFVcT8aqBcPw5QGQ81K9yWAMOD4YxNVOrZIjsW4zXyZLJ94PuPmL97hBskLOlhQkeepCJmTYT-MqMRkfEGzuK6VI05EinBNpmZPnHz5NLOGjtl-po3xnIa1FcTatIiEqYUNBl8vClFVDUwYXUrM3S6_AuMg-qox9QssToXDtI0pBMMOQBrV7tQVVlIC7okff_kva-Rna\u0026dtSTrpxa=4\u0026TDPqMtQW=4998988\u0026zJuRwVjI=\u0026EVPnpeoF=0,0\u0026BHqWAIvj=\u0026KOtqPWEF=\u0026fAVyHeOX=1280,1024,1,1280,1024,0 HTTP/1.1\r\nHost: xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\npopads-node: wb9\r\naccess-control-allow-origin: *\r\nasf: 9\r\npopads-ec: ASB\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 44\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"d5f0a25e4d3522d56d48ce7bc3e518fb","sha1":"86794caff58f7fee6e684c2ba7195f970a8d6f4c","sha256":"9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5","sha512":"a3a81801f516a4eb11f00d6f56dab0ed4b8a79219e6b4f5436993479f09dae08f14cffbab3327ff66fb39201d8eba1153ae7114f7705a01cc6f0edf840ef1616","ssdeep":"","tlshash":"789002801814116115d1500b8d5159d01259b1a4540801324446ca502dc7883a415774","first_seen":"2023-03-07T01:17:45Z","last_seen":"2026-04-04T06:28:30.345973Z","times_seen":22749,"resource_available":true,"data":null}},"time_used":328,"timings":{"blocked":99,"dns":2,"connect":26,"send":0,"wait":126,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/8248820be51a4f6edbd1ee6803dcf516.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:24.940Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/8248820be51a4f6edbd1ee6803dcf516.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:24 GMT\r\ncontent-type: image/png\r\ncontent-length: 80673\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Y4FMfeGMI4jyWB4hPD4EMJtWmlGuuFEAEhTZsSA8NExRYbkTw%2BWBsBs655XwO2xZ5Wxtm4I8R03O5RBJczKVSmQDGV1g35WXEw3OluT%2BfBnEcRbc2G7cgV%2FYBP%2BXqBTqLPPvFg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 05 Mar 2025 02:17:07 GMT\r\netag: \"67c7b423-13b21\"\r\nexpires: Sun, 03 Aug 2025 06:25:37 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 53747\r\ncf-cache-status: HIT\r\ncf-ray: 96909ff2e95c569f-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=481\u0026min_rtt=0\u0026rtt_var=203\u0026sent=226\u0026recv=186\u0026lost=0\u0026retrans=0\u0026sent_bytes=190885\u0026recv_bytes=10722\u0026delivery_rate=14203536\u0026ss_exit_cwnd=14923\u0026ss_exit_reason=2\u0026cwnd=25080\u0026unsent_bytes=0\u0026cid=9eef62577e518981\u0026ts=7875\u0026inflight_dur=79\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":80673,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced","md5":"8248820be51a4f6edbd1ee6803dcf516","sha1":"2601fe3fc86c80d8dae8161c1c989d9cc4efec83","sha256":"cf4b4ed69365ee9d25dc5f88dec8bb275431a2bfbb996eb2175aa1381cb179e5","sha512":"a6237c4c3131d93ab90cb37ef6e1036be2f78f0ee4d01abfe8071e8c6ddeb74c32807018fbedcfc2b9c7040e0b327a82a47198fcad717c1e407bd06452c289ca","ssdeep":"1536:hL4kY4aQ8aRBISryHqkaCTyRBT0mXrQfStdd4PJU6HyAphRe:ZY4aQ8aHXrlImZrQatMP66SAQ","tlshash":"79730296f1b11219f965f3cb8da948c5e406ed8195d27633eb88accc170531fa7cc792","first_seen":"2025-04-21T05:11:59.301935Z","last_seen":"2026-01-14T16:25:07.530226Z","times_seen":221,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":15,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.xadsmart.com/psvg.connectable.min.css","fqdn":"www.xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"95.173.205.15","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.102Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1376341044.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Jun 2025 06:29:51 GMT","end":"Tue, 23 Sep 2025 06:29:50 GMT"},"fingerprint":{"sha1":"A6:BD:44:5B:F6:EB:AE:48:79:85:5D:6B:31:98:F2:AA:06:FD:47:6D","sha256":"96:36:CA:FD:DC:90:04:16:03:03:D9:4A:CC:C5:82:B0:B6:DB:21:92:7F:62:C0:90:C7:0B:70:EB:D4:49:2C:B0"}}},"request":{"raw":"GET /psvg.connectable.min.css HTTP/1.1\r\nHost: www.xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/x-javascript\r\npopads-node: wb5\r\nexpires: Wed, 06 Aug 2025 18:31:53 GMT\r\naccess-control-allow-origin: https://luluvid.com\r\nlink: \u003chttps://xadsmart.com/\u003e;rel=preconnect\r\ncache-control: public, max-age=604800\r\nx-77-nzt: EwwBX63NDQH3JBwEAAwBuUwKEwH3DAAAAAwBJRPCVwG3AQAAAA\r\nx-77-nzt-ray: 2a494a157aaef47e6f818e6869f21407\r\nx-77-cache: HIT\r\nx-77-age: 269348\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: osloNO\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":41925,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1568)","md5":"76462ca0781199c49e0a130102d8f91d","sha1":"4095a95749f47519ff55a468311980f4e11afc60","sha256":"87e2415595d191ff46228e9c5db8fd1c0a8a0cd1c0822fbe1592328c5fa98126","sha512":"4a91d86e57db176bb9d551a47adbec1c1bb3d8fb16b448234536b54c4e469cd9a3ec5164b4539d36adbdfac6e63026466b91dadda4c4f4c5a4af75b2390d0a12","ssdeep":"768:bt9rqAYKKWZzFQ9JsQU+YDngZGihfzmMzhYrTsAysncCWcf5k5sigCQNCntlqo7/:bbNZzFQ9JsTgZvfzmMzhYrTscpkZd","tlshash":"121329aab286282601e742b9503eb317b23305167912d458fcb9cdf96e3dd86117b7fc","first_seen":"2025-07-31T19:10:28.961709Z","last_seen":"2025-08-06T07:16:49.092195Z","times_seen":50,"resource_available":true,"data":null}},"time_used":76,"timings":{"blocked":16,"dns":24,"connect":4,"send":0,"wait":9,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re:2087/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":2087,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: text/plain;charset=UTF-8\r\ncontent-length: 45\r\naccess-control-allow-origin: https://luluvid.com\r\ncache-control: private, max-age=10\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-max-age: 2592000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 96909fbf4aae56c3-OSL\r\nalt-svc: h3=\":2087\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":62,"timings":{"blocked":23,"dns":2,"connect":6,"send":0,"wait":12,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/#0.09347032005331257","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.167.186","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo RSA Organization Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 23 Sep 2024 00:00:00 GMT","end":"Mon, 29 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"3B:64:1C:DA:8C:64:22:01:36:0F:54:7A:99:6E:AD:26:C2:EF:59:8B","sha256":"A4:41:84:14:13:00:DA:93:54:10:5C:59:8A:A9:83:17:01:36:39:BE:1D:43:E5:FB:1C:F3:D6:AF:8A:ED:84:E2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: c.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: text/html\r\ncache-control: public, max-age=2678400\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\npermissions-policy: ch-ua=(self \"https://adsco.re\"),ch-ua-mobile=(self \"https://adsco.re\"),ch-ua-full-version=(self \"https://adsco.re\"),ch-ua-platform=(self \"https://adsco.re\"),ch-ua-platform-version=(self \"https://adsco.re\"),ch-ua-arch=(self \"https://adsco.re\"),ch-ua-model=(self \"https://adsco.re\"),ch-device-memory=(self \"https://adsco.re\"),ch-downlink=(self \"https://adsco.re\"),ch-ect=(self \"https://adsco.re\"),ch-rtt=(self \"https://adsco.re\"),ch-width=(self \"https://adsco.re\"),ch-viewport-width=(self \"https://adsco.re\"),ch-dpr=(self \"https://adsco.re\")\r\nlink: \u003c//6.adsco.re/\u003e;rel=prefetch;crossorigin;as=fetch,\u003c//4.adsco.re/\u003e;rel=prefetch;crossorigin;as=fetch,\u003c//adsco.re/\u003e;rel=preconnect\r\nexpires: Tue, 02 Sep 2025 21:21:16 GMT\r\netag: W/\"C6pTuopbpe5oM6YpwwANTg==\"\r\ncf-cache-status: HIT\r\nage: 148395\r\npriority: u=4,i=?0\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 96909fbf2ecc0b45-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78356,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (689)","md5":"0baa53ba8a5ba5ee6833a629c3000d4e","sha1":"d5de057adc1eaa7888ca975199cf0a116b923aa0","sha256":"0679a036a8577f9592e070f780d06c6bb427a8f15f58008bdeaae2277ce607b4","sha512":"a7e5a993e1e12e7d73d98ab3834fb488a1e3ce361108f3f4583cde7e4454e97768303649ae9fa22bce7cce65aed74d081b69317f169c18dc49e8093ac4d3a60b","ssdeep":"768:dsmoTk+UwrAjMo3m4MSHRJtlgfWivYb7QL19/lw3mcIwT2vB03c9MZjyQoTHKePc:pok3m4bHRDuWWL19/lw3mcKJpAGPKmjo","tlshash":"81734ba97162702a43b238e9967f5311f1ba06902c4690d0d37dc8643c74edf927bb9e","first_seen":"2025-06-14T18:46:22.558225Z","last_seen":"2025-08-28T19:40:38.269373Z","times_seen":3673,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"22hgc.com/wrr?z=6568874\u0026p_rid=327324f5-64c6-4c0d-80df-2f76f9412405\u0026rb=MK1RF_xus2U4q8hFW7voYi5h83NQsfPNjMGjDULIZILJTsFEan_Wn9HIyxjwysl5aBlmfCnQ9xaKO4wE9dnO-s-_-5qt-MnGL4499Y-hLJXyIhfZ0JKoCpiYjBpa22QQDztxfydHsjTjcp4SVOJX5nDaMDix8oFMvjNMiFdXrrcDn8jjRlzPVIXFG-Vwzw_lgFknCrrGBevfhkWuereIuiB6x75FBOoc005Ao4aCtvXFQexzRbk9S23lWrNkfhTZZL2JIVfnQzi4DkZUfqNTBYBLtd1EEo01cuBOGA==\u0026dmn=22hgc.com\u0026userId=0802197cb65240e2f68fb17f4f39a38b","fqdn":"22hgc.com","domain":"22hgc.com","tld":"com"},"ip":{"addr":"139.45.197.105","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:17.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"22hgc.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sat, 02 Aug 2025 05:09:04 GMT","end":"Fri, 31 Oct 2025 05:09:03 GMT"},"fingerprint":{"sha1":"2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7","sha256":"B6:72:7E:0C:F9:8F:00:9E:83:E7:48:ED:71:79:69:F8:D9:80:C7:BC:27:3E:A7:35:0C:61:9A:18:F2:6F:17:39"}}},"request":{"raw":"OPTIONS /wrr?z=6568874\u0026p_rid=327324f5-64c6-4c0d-80df-2f76f9412405\u0026rb=MK1RF_xus2U4q8hFW7voYi5h83NQsfPNjMGjDULIZILJTsFEan_Wn9HIyxjwysl5aBlmfCnQ9xaKO4wE9dnO-s-_-5qt-MnGL4499Y-hLJXyIhfZ0JKoCpiYjBpa22QQDztxfydHsjTjcp4SVOJX5nDaMDix8oFMvjNMiFdXrrcDn8jjRlzPVIXFG-Vwzw_lgFknCrrGBevfhkWuereIuiB6x75FBOoc005Ao4aCtvXFQexzRbk9S23lWrNkfhTZZL2JIVfnQzi4DkZUfqNTBYBLtd1EEo01cuBOGA==\u0026dmn=22hgc.com\u0026userId=0802197cb65240e2f68fb17f4f39a38b HTTP/1.1\r\nHost: 22hgc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:17 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":258,"timings":{"blocked":115,"dns":1,"connect":27,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/rvnzo64e51kg","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-08-02T21:21:13.298Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /e/rvnzo64e51kg HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nexpires: Fri, 01 Aug 2025 21:21:13 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dDc4ZrYSuFfL29D4Gbm6oFYdcWr5GMMyICNuXozMxdmABP3J%2Bmjxd6c3Ln19XEQGwtciLngCnJrOEokxKIz1ZoJSxcSvDQLz8Q%3D%3D\"}]}\r\ncontent-encoding: br\r\nset-cookie: lang=1; HttpOnly; Path=/; Domain=luluvid.com\r\ncf-ray: 96909faa4fd7568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}],"data":{"size":46024,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (28063), with CRLF, LF line terminators","md5":"282c63d74ec756c184179364b054c3ba","sha1":"28624bd6f3991bd9289acc938988026b712da8ff","sha256":"d51d538b1c753e26fb8116e594ed4f481ead64591c1cc2a0af914c0f2241e4e0","sha512":"6ab243d2b6f60e7016a3a2040bfdd6add33dac307e652e31b9dc894ad7d21314590effd68711d025b645fd3d522566cbfa322bbff40671bc5e1aa6392ff3cad4","ssdeep":"768:RJ2TZxWNRK72rdQ80GaIoQPzahq/AMOejtAZb7Ka4nVGpdfOo:n2Tqc72GGI7MOejtceZo","tlshash":"19234aa7355eb816832a61a010ff3984a0ed44c5714f8e7cf768e4263ad727485e7ef8","first_seen":"2025-08-02T21:21:42.715568Z","last_seen":"2025-08-02T21:21:42.715568Z","times_seen":1,"resource_available":false,"data":null}},"time_used":132,"timings":{"blocked":23,"dns":1,"connect":1,"send":0,"wait":86,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 30 Jun 2025 12:11:05 GMT","end":"Sun, 28 Sep 2025 13:11:03 GMT"},"fingerprint":{"sha1":"89:E0:23:FC:5B:0F:07:0F:7E:EC:B8:4F:B5:1D:3B:1F:6B:5C:22:0B","sha256":"66:DE:FF:43:09:A3:D6:B0:70:4E:47:82:C8:66:35:42:25:2E:23:CA:5A:1A:CF:A3:1E:23:A0:0E:D3:E3:95:95"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=0802197cb65240e2f68fb17f4f39a38b; expires=Sun, 02 Aug 2026 21:21:14 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 96909fb1ae3f56c4-OSL\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"5e36ca1528655b32a413b2fb2f9679cf","sha1":"9ab3ed5e1c0396dd02c15166c245dfad25cce2a4","sha256":"8374370faf07fee542ba8f61cfba3d63c5ee574f93a5d35afbd161469e1a010d","sha512":"1c7d5650f146be441797e3cd514f0b6922951c052508140019cc79d38f22f8cd6095a5fbe0769246dcbd73cbd6d16ba614768e7ca92b2420812c1270d0731d4a","ssdeep":"","tlshash":"3fa022c0083e22c000030f0828828203000000c0202002ccc0f8f0c2208e80f88a0280","first_seen":"2025-08-02T21:21:42.718009Z","last_seen":"2025-08-02T21:21:42.718009Z","times_seen":1,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":16,"dns":1,"connect":1,"send":0,"wait":36,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.643Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/impression/InJ4CtSqmJWRbJYhs9n2LCHajEPU5tfvGyw1Xi00FevMAuKtU4UoLizvAdIYoklsBDMgQPkL6m-fYxInyLJVND4rxfSbK1oICq-dFT69IwJuMiojk234whhuym5sRxLOSarbgL3dQFV5-SEH6PFQVNvd3KGJ87l3Q10NTqakzK7_6J9-yX5NX5ovqASFp3N_aK36GD4T7fcbBrYnzCMihMh0aGQaK6ctchkFjwwkFnI_MJ2RzTWsG68aURDMJSLahI-BxkWtACLW3vJsg3KeFc_BfpFPgCeTmP6TUB11R2Co9Vd3pi9h-_wv3rW9gMgx2xtdst_Zfg-UfoYAnV4spZosRpL6hZse9qoDR-7rkYj1mY8ckCYDE0qFiW9THhxpqCAYDpXNPi6fwKRw03kXjbvQT4vOyMg7DIUjQZhl25-4Iu6nHdlzyZCWZj2O9BYoPVCCLnsgnf1qHcFkPvvDF8x3PG6xJIPOt-u9KcFhHIZRNVz27qCEEZaTf-cCHD0YQuu9klnAkXukKrGowJtBzV3EtyPCgwxQg6IDFocdHRyHFQMSnE1jALp9pashX4jEOAxkLrDuWFqlo3c6NO4yZyk4aB21r8iDouuFX3536KEj64hAr1TbtRcR3NtPjWZGyHoik-H3xKU3Z8kqFIufYnTJElhohStzu2rfYm3QKh5qd7WqPGunfWJCg5oPlV7f5fa_DLDEMrG2uCcZwoLVVQDg_0QV1K-h-EELxbERzEm1x2w9yEuJ1QVh7VBZfaDvchVRg-hZ0h1DXXPhdA7g7uNWNLZW0UgEjn8Xr33KOucAtEyRQmoyLdKaauUsPiQ6jCkEGJzpn0rhZPWPDqXrinT_L1uBxFyn?_z=7938571\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:24.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /impression/InJ4CtSqmJWRbJYhs9n2LCHajEPU5tfvGyw1Xi00FevMAuKtU4UoLizvAdIYoklsBDMgQPkL6m-fYxInyLJVND4rxfSbK1oICq-dFT69IwJuMiojk234whhuym5sRxLOSarbgL3dQFV5-SEH6PFQVNvd3KGJ87l3Q10NTqakzK7_6J9-yX5NX5ovqASFp3N_aK36GD4T7fcbBrYnzCMihMh0aGQaK6ctchkFjwwkFnI_MJ2RzTWsG68aURDMJSLahI-BxkWtACLW3vJsg3KeFc_BfpFPgCeTmP6TUB11R2Co9Vd3pi9h-_wv3rW9gMgx2xtdst_Zfg-UfoYAnV4spZosRpL6hZse9qoDR-7rkYj1mY8ckCYDE0qFiW9THhxpqCAYDpXNPi6fwKRw03kXjbvQT4vOyMg7DIUjQZhl25-4Iu6nHdlzyZCWZj2O9BYoPVCCLnsgnf1qHcFkPvvDF8x3PG6xJIPOt-u9KcFhHIZRNVz27qCEEZaTf-cCHD0YQuu9klnAkXukKrGowJtBzV3EtyPCgwxQg6IDFocdHRyHFQMSnE1jALp9pashX4jEOAxkLrDuWFqlo3c6NO4yZyk4aB21r8iDouuFX3536KEj64hAr1TbtRcR3NtPjWZGyHoik-H3xKU3Z8kqFIufYnTJElhohStzu2rfYm3QKh5qd7WqPGunfWJCg5oPlV7f5fa_DLDEMrG2uCcZwoLVVQDg_0QV1K-h-EELxbERzEm1x2w9yEuJ1QVh7VBZfaDvchVRg-hZ0h1DXXPhdA7g7uNWNLZW0UgEjn8Xr33KOucAtEyRQmoyLdKaauUsPiQ6jCkEGJzpn0rhZPWPDqXrinT_L1uBxFyn?_z=7938571\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: OAID=0802197cb65240e2f68fb17f4f39a38b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:24 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: edf05334bdb8cd147b3a35300a55c273\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-04T06:36:29.343204Z","times_seen":96356,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.min.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.727Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 03 Mar 2021 00:27:20 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K%2FByT1qroQoVbb9fm4aX%2BVA5T9R01UXM0go5Gnb5Cckr0mKSGXyn48RZDzOLlCUHtub8XQ3S8OPUsVCgxUR9p47mTu93A2ysqw%3D%3D\"}]}\r\nage: 1782\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"15d9d-5bc96e9f7ca00\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb51568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T06:44:35.798175Z","times_seen":444728,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/new100.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/new100.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Fri, 27 Dec 2024 03:46:02 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RlccaJRlk9gDPl2JJUkOtsTrL2RVNHt4kpiGUJA30ltaBzq9sfhj2U5kONTi5F%2Bxic5NHQHjM2HxUO10YlV5P%2BGLVdLVVi1A6A%3D%3D\"}]}\r\nage: 637\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5c1-62a384d3361f7\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb61568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1473,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"a404d12258254e435583a10baa32a8b8","sha1":"a7bde7e90a122cc61a016e3e4f94339ca866d6c3","sha256":"32df889d6099045ed25a5e32fbf53de6fbc07ff4b82ccc3363b6d06acb254b84","sha512":"594cda55bee6617a0583494ea1a651335081d4b393aaafe10764b930b9095e7f36edd4b5c82520737f47276f8cca302fd39ed0a6bbd97d400734e3765c3ed6f2","ssdeep":"","tlshash":"1931bb2b2cf4203025f7600d171b6144b0529643251deeb87adc435a3f94d6d8e76bed","first_seen":"2024-12-27T13:53:56.121207Z","last_seen":"2026-04-04T06:19:11.110792Z","times_seen":695,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.739Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 15:50:14 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iojbC2069UI9S8L3ZUXogmur9hZWdpIhqolvxxG1Ir220VrcPNnR9mJDp6%2FpHsVSWhLaBAlSRXQ0JpG95V2iWZek184kZvrFgQ%3D%3D\"}]}\r\nage: 6199\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"26-5cbe26bbab980\"\r\ncontent-encoding: br\r\ncf-ray: 96909facbb6d568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"99eccae6afa72c589ae54b5c3890282a","sha1":"0f102f8f5b556635de65d16cf70fa8269c6761b4","sha256":"b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3","sha512":"01bc413c1695c125b8ab111c60974da99989b618fb674631d998db519996966c569503efb97a3c760b50069e87b6b42891985b00c64810a43935ada075a19d24","ssdeep":"","tlshash":"eb8000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e20c228c3a","first_seen":"2023-03-07T12:59:18Z","last_seen":"2026-04-04T06:19:11.098755Z","times_seen":2582,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ak.beltsflusker.com/rDulnwma4CCtiWZF/84626","fqdn":"ak.beltsflusker.com","domain":"beltsflusker.com","tld":"com"},"ip":{"addr":"23.109.170.153","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ak.beltsflusker.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 25 Jul 2025 07:59:02 GMT","end":"Thu, 23 Oct 2025 07:59:01 GMT"},"fingerprint":{"sha1":"6D:DC:BB:60:47:86:74:81:29:0F:5E:CA:31:F5:66:3B:AE:EE:F9:B5","sha256":"24:1A:A7:67:C8:4C:76:E4:DE:0F:E0:AD:31:5A:D0:EB:DC:CA:3E:E5:CF:82:DC:06:C3:0A:27:A7:BA:F7:8E:56"}}},"request":{"raw":"GET /rDulnwma4CCtiWZF/84626 HTTP/1.1\r\nHost: ak.beltsflusker.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 02 Aug 2025 21:21:13 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWdcFnYQDeASKQHj1xSv4SAr9g3Wh3ZQKensbE32bTH6T8TwvKB7g78kZ4Sdv8MRY13Z1U3VlPXa8GoaubZtyaLqSVc00NbiTW2%2F5sJCNcNpWbmxv9wiXmRQZOfajFpTh0am%2F5qr0oSLEg%2BFKZIhXJ5YM6WD0sZEpQkSKr4T0VRqa9JcT%2FEMbhOy5dlkql%2F0Sgd6KMD8jfZNKuGV%2BQcDKPE883N8Wbidt1l6KxEc8Gy4I%2FgtOI7c0a%2FONVNB2tfoG6EX0%2F%2F73ODxYiUTQLkdCrO07mR%2B4dk3m; expires=Sun, 03-Aug-2025 21:21:13 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjA9l6BadnCbbYMXXgFZhEDwxyZGfu5%2B2zxLp5XKcVpAjYTkrrM6yKvDnl5qkBPcNuBRwfdin8PX5AHF0ewd9h0wUrWyOzi8kes%2FgYZbM%2FWfLJe7ByNuABeWjfDzT72l%2F4KmjSBo2gGh3uqQC%2B9%2BwFe7x3U; expires=Sun, 03-Aug-2025 21:21:13 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-04T06:33:33.093087Z","times_seen":14785,"resource_available":true,"data":null}},"time_used":225,"timings":{"blocked":95,"dns":48,"connect":18,"send":0,"wait":21,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"ak.beltsflusker.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/aas/r45d/vki/2003354/78215968.js?var=sarah667","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"GET /aas/r45d/vki/2003354/78215968.js?var=sarah667 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Mon, 28 Jul 2025 14:30:11 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68878973-23bca\"\r\nx-js-ab2: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146217,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"40375a03b24677253fb6880d3a71a495","sha1":"0972beb93d9a78f4c6b42aba71dbd25bfb1d3d36","sha256":"59789a6f66f632656916a66e973846a920c98343b2cf107713e4025b781c4c8a","sha512":"4729b60a149eb66311fcfc9cd79cc6b82a52d5081a577b90db9c79fd6cd55047e1262458f7250e861714775e90c5e51ea33b57a43625b3f8d748df6e8a41c662","ssdeep":"1536:1kFuyLtoCqYqcL5y6PjBg7YgLXBDkWfkCXgllxaJoXJfCP5yvPGJ7FyJEPRx3:1NioHYLY6Pje7DdelCPVymx3","tlshash":"10e3b7bd7a826c720172a13ba83f570e996e58d7a4cd4410cee3c1c8fe69507d191fba","first_seen":"2025-08-02T21:21:42.724087Z","last_seen":"2025-08-03T05:29:27.612285Z","times_seen":2,"resource_available":true,"data":null}},"time_used":376,"timings":{"blocked":152,"dns":2,"connect":21,"send":0,"wait":50,"receive":0,"ssl":145},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"GET /500/7938571?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: f863c11fd106ac6b1339a0ad8ef673e9\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=0802197cb65240e2f68fb17f4f39a38b; expires=Sun, 02 Aug 2026 21:21:16 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1802,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"ba9e0bb0fd168bc17a044f5e9aa28c46","sha1":"0e77baa1278cfcee25faf7a67bf8246e917134d4","sha256":"c6e535264cbc7f21478fa0ca3a4e25376606196beeb4b0c363ae97dd710a8298","sha512":"185691d8c510a14415c08d386c6bbb5454c0a9a710fd9a0e5d4cc24b26c87b150b998d5e3c1a534bf7da389fd028b38d25f431f807a3982db1157b3b45ea21d9","ssdeep":"","tlshash":"dd3109ae7a56a85093409c7af49a68bc99cbc9ee51289b7eb13cc51003851f50de4a90","first_seen":"2025-08-02T21:21:42.726731Z","last_seen":"2025-08-02T21:21:42.726731Z","times_seen":1,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":10,"connect":28,"send":0,"wait":140,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jw8-theme.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.069Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/jw8-theme.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Tue, 05 Mar 2024 05:34:02 GMT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9APvDw1NDMvhPKjyorpGc7m92JepwtspXA%2B9quI5MihaU0RdBtUgKkWsHKDZOjg3ymCDrArpOkJAE7xkYdfcPldUx9Dmu4bwdw%3D%3D\"}]}\r\nage: 2560\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"5f3b-612e330968823\"\r\ncontent-encoding: br\r\ncf-ray: 96909fae8e06568d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24379,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (938), with CRLF line terminators","md5":"fe5e9757de5bbdd3f8157ce67950d325","sha1":"f7e4ea57093c9f84ecb4b2e11f5f548cfd62bad7","sha256":"0422fca1202e71e489ae82a3b4c530935be8b8685c532cfcafeced89f08d537b","sha512":"e8941f56e78e4ccbc1a5c42fd14b9d37049eb6781d7750a3e68b895237b5882ed7935a482834158cbc9d43723f0a40cc5212b49da18bf9515962c21466cedbf0","ssdeep":"384:tyqynyuymyHyoywyfyCy5yAyqyPybyiy/yJy9yDyDyDyRyOyJyTyJyDy8ymyCyUj:tyqynyuymyHyoywyfyCy5yAyqyPybyiA","tlshash":"73b273969242822c2d3b5678ff233a04ebaf7557d749a3e4be7c611c8b71183f0e5a50","first_seen":"2024-04-15T00:22:36Z","last_seen":"2026-04-04T06:19:11.108126Z","times_seen":721,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/polyfills.webvtt.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.660Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 29 Jul 2025 10:03:31 GMT","end":"Mon, 27 Oct 2025 11:02:00 GMT"},"fingerprint":{"sha1":"53:CF:F6:01:C1:72:A9:E7:49:5E:AF:9E:7D:27:38:11:CA:5A:B4:A1","sha256":"1B:8E:99:CE:81:24:93:64:0A:19:F9:E7:85:C1:FE:61:DD:09:69:F9:8E:34:9F:86:2E:33:A4:52:F0:0E:C7:6D"}}},"request":{"raw":"GET /player/jw8/polyfills.webvtt.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/rvnzo64e51kg\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: application/javascript\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Oc0OvpwdQu1fO1f5vWK9SAzUwmXF3fZNt4tDCHgkdMlXqcTB1YRn%2BXf4QU6isMOFCpWgdUdR2scOFTrVQVGy%2F3ERrhcnTgOO5j62iYXdmlJbh5H%2Bx7Hy8j10KXevOQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Wed, 07 Jun 2023 06:30:47 GMT\r\netag: W/\"2a27-5fd8446b4edf7\"\r\naccess-control-allow-origin: *\r\nage: 2431\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncontent-encoding: br\r\ncf-ray: 96909fb29cd15695-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3289\u0026min_rtt=523\u0026rtt_var=2273\u0026sent=177\u0026recv=308\u0026lost=0\u0026retrans=0\u0026sent_bytes=15191\u0026recv_bytes=17294\u0026delivery_rate=426816\u0026ss_exit_cwnd=14907\u0026ss_exit_reason=2\u0026cwnd=14000\u0026unsent_bytes=0\u0026cid=7e0f4210d1577a62\u0026ts=1188\u0026inflight_dur=67\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10791,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10393)","md5":"b3e139c07aac361115e8ec41bde7d2a5","sha1":"0c3fc8d31887dafb86ba778da788ece5cbf76f18","sha256":"1ff5585bdbea001d37f3647975a645f0594090f070915831286de90dd45949d5","sha512":"0b2a16b1b9a63ab3561c9d7e63a2a797781f6abc09c304f28530c6a8c87224083c708989534552d11948aeec3aabb36a943173fbe651c64810d56f08f2bc68b7","ssdeep":"192:gl1026oqO7yNPJUsnOGhcAsej4Du/YVLEO1mTLSRavTdU94o9pD5i:E10tvJN6cC3RPVUTLKKTdObpM","tlshash":"7222f690b2f5609d8281e49f456f0284e2399630fe8bc4cef550c5f9dc74a8a127ebb9","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-04T06:19:11.159053Z","times_seen":802,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lulustream.com/player/jw8/player-logo.svg","fqdn":"lulustream.com","domain":"lulustream.com","tld":"com"},"ip":{"addr":"172.67.222.47","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:14.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lulustream.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 08 Jun 2025 06:13:38 GMT","end":"Sat, 06 Sep 2025 07:11:16 GMT"},"fingerprint":{"sha1":"FC:8E:9C:BB:EB:51:3A:D1:25:83:33:9D:E2:63:DB:06:3F:72:BC:60","sha256":"AD:8A:DE:A7:BC:5C:07:7C:3A:B4:32:B9:F0:F7:F7:BB:3F:91:4C:84:C1:76:0E:3A:1F:FE:56:EA:CA:33:07:E7"}}},"request":{"raw":"GET /player/jw8/player-logo.svg HTTP/1.1\r\nHost: lulustream.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:14 GMT\r\ncontent-type: image/svg+xml\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Sat, 02 Mar 2024 14:00:06 GMT\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\nserver: cloudflare\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=schWb6ZdZutV0feR3SmZWyQR0BiokSW5WBBHdABXj670DdicaXQT7BhOj%2FvEKJhQbajMpM0sohNT28HuGxLL8Ec%2B%2FUuhBE6x2gOeaQ%3D%3D\"}]}\r\nage: 655\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"1042-612ade8e6b08c\"\r\ncontent-encoding: br\r\ncf-ray: 96909fb45a850b06-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4162,"size_decoded":0,"mime_type":"image/svg+xml","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"768968009fa2b626574a3b871d2f9cde","sha1":"52ab9f5b33d7e8c6b519938a5f9f8ff7f3b317c2","sha256":"5f1a48d762995d085f95db9c5e85fe1cd731ace9332279690ed14ece3ab8faec","sha512":"962579d677e9a567dc36a1ef63a3981c619659b76cf5686768a692165091f9dd603f22475310d20f49bfc34d271e934c462c50433fd00d3876c6d61affa3fe18","ssdeep":"96:24JN/6mRay/iay/pqFbuEbQ/yohxDwu94VJ4eSGj8JkoHLz7Ngi:2yN4CtCpqF8xUEhuekI79","tlshash":"b281655b1355979afb9d00b8e8a8048eb6e4c5c7c4b4f1d0b7532826e09c8f2b58c3bd","first_seen":"2024-06-14T17:25:08Z","last_seen":"2026-04-04T06:19:11.099335Z","times_seen":148,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":35,"dns":6,"connect":2,"send":0,"wait":14,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"phoangaisool.com/500/7938571?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"phoangaisool.com","domain":"phoangaisool.com","tld":"com"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"phoangaisool.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:27:33 GMT","end":"Sat, 18 Oct 2025 05:27:32 GMT"},"fingerprint":{"sha1":"1B:B6:A8:E4:08:A6:29:EB:A9:7A:9B:7B:F9:85:53:57:9B:C7:36:4B","sha256":"0E:69:6F:3E:06:9D:64:E5:1B:E6:9B:A0:66:40:B8:3B:8B:F7:A0:BA:DA:77:B5:E5:0B:C7:3B:FF:11:3D:C1:C9"}}},"request":{"raw":"OPTIONS /500/7938571?excludes=\u0026oaid=0802197cb65240e2f68fb17f4f39a38b\u0026var=\u0026ymid=\u0026tgp=\u0026js_build=8\u0026sw_version=v1.683.0\u0026dmn=theetheks.com\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fluluvid.com%2Fe%2Frvnzo64e51kg\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: phoangaisool.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:16 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":3,"dns":4,"connect":27,"send":0,"wait":26,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"phoangaisool.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bobapsoabauns.com/www/images/62061f74abbe02fcac553c9d8b0a3867.png","fqdn":"bobapsoabauns.com","domain":"bobapsoabauns.com","tld":"com"},"ip":{"addr":"172.67.166.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:29.850Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bobapsoabauns.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 20 Jul 2025 00:31:08 GMT","end":"Sat, 18 Oct 2025 01:29:43 GMT"},"fingerprint":{"sha1":"4E:96:D6:75:E3:4E:EB:72:97:6E:6C:E5:16:12:62:F0:5C:39:62:43","sha256":"AC:C3:8A:C8:E3:75:C3:F1:0D:5F:68:9A:20:81:89:FC:96:E0:CC:A1:B8:04:E1:4D:96:DE:70:B4:7E:4B:70:EE"}}},"request":{"raw":"GET /www/images/62061f74abbe02fcac553c9d8b0a3867.png HTTP/1.1\r\nHost: bobapsoabauns.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:29 GMT\r\ncontent-type: image/png\r\ncontent-length: 95186\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=CpN8NZmGOyzYJsWb33Dfjg7QkkCtFVgSVMuMHPQrDx8pNirs2gI%2B1YKWviwyNhKAjL61wbrVR28mNs33EysARSWxAm5W6yNrY6uzdaz%2FxtfhswGhSdwlhxlheMcVo%2F2XG8Nrlw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nlast-modified: Tue, 25 Feb 2025 11:15:16 GMT\r\netag: \"67bda644-173d2\"\r\nexpires: Sun, 03 Aug 2025 13:33:10 GMT\r\ncache-control: max-age=86400\r\ntiming-allow-origin: *\r\naccept-ranges: bytes\r\nage: 28099\r\ncf-cache-status: HIT\r\ncf-ray: 9690a0119b1f569f-OSL\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=894\u0026min_rtt=0\u0026rtt_var=911\u0026sent=350\u0026recv=204\u0026lost=0\u0026retrans=0\u0026sent_bytes=357213\u0026recv_bytes=12013\u0026delivery_rate=17429869\u0026ss_exit_cwnd=14923\u0026ss_exit_reason=2\u0026cwnd=39947\u0026unsent_bytes=0\u0026cid=9eef62577e518981\u0026ts=12781\u0026inflight_dur=95\u0026x=40\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":95186,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 552 x 552, 8-bit colormap, non-interlaced","md5":"62061f74abbe02fcac553c9d8b0a3867","sha1":"0a51135d970d1edc059e95e006fac5cc189070ba","sha256":"f0481b277c0dfb31b4d980f022b0c53cccb77586af94c66bc5aace3ed5f15eca","sha512":"75a01eafc6cc4502184ac9af3dc3a56d5be8b53564aa071a958518c0202751ba034fa746263a81123effe2c439815f3110987f5c90c4cd984b4296de022ccb4d","ssdeep":"1536:fbO7A0HPSvCRNuapbCSBMFrbftrCBTfLS7ZBw/0W5IYn1VDZC3erVY:fbO7seNZbfBMFvhkTfLSvw/0W5pPAexY","tlshash":"549312c4cc491870696fd5d00eeade8e2ae3e994caf14cd2763ddf24272e0e582961dd","first_seen":"2025-07-17T00:55:25.677577Z","last_seen":"2026-03-29T05:24:08.280904Z","times_seen":61,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"bobapsoabauns.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:29.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 31 Jul 2025 10:09:08 GMT\r\nexpires: Fri, 31 Jul 2026 10:09:08 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213141\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-04T06:43:15.240415Z","times_seen":713931,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.lulucdn.com/rvnzo64e51kg_xt.jpg","fqdn":"img.lulucdn.com","domain":"lulucdn.com","tld":"com"},"ip":{"addr":"172.67.174.234","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:13.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lulucdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 01 Aug 2025 09:29:08 GMT","end":"Thu, 30 Oct 2025 10:27:32 GMT"},"fingerprint":{"sha1":"D9:E6:AB:5C:B3:C0:95:1C:8D:9D:CD:A8:18:4F:4B:78:54:E7:06:21","sha256":"CD:6F:8D:65:B3:CA:5C:1F:7F:8A:F3:8F:21:1C:7C:91:4F:6F:E0:22:72:88:C5:9A:CC:91:AB:A2:33:90:28:F3"}}},"request":{"raw":"GET /rvnzo64e51kg_xt.jpg HTTP/1.1\r\nHost: img.lulucdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 02 Aug 2025 21:21:13 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 114498\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Sun, 27 Apr 2025 09:09:46 GMT\r\netag: \"680df45a-1bf42\"\r\nexpires: Sat, 09 Aug 2025 19:38:51 GMT\r\ncache-control: max-age=604800\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncf-cache-status: DYNAMIC\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7f%2Fig%2Fr6rSS7cKdpupO8O3VVwdVh2T26gvz73ph1COZW8ym7lckkvTauS31%2BZrbUP6NmLfjuK0mvK5TAr%2BucGsz2hy8nANMWAjlGIOk%3D\"}]}\r\ncf-ray: 96909fad1b1db4fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":114498,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 675x1200, components 3","md5":"b3cbceb16e8e49257996b5d2f3db2836","sha1":"17b47db386e2e70cb3000d3e10526b3cc6d9b250","sha256":"984dd5cf26a7e37cd059fec99218705a49583e230a601196e2f87d4129491fc6","sha512":"96f39118facaf646069b24c0aafeab9aa1079245c6a6bfa082a08f155a9c4b2fc35f58c996aa095b22bb83652d5a976d3abe996f3e7d90db0a8137921871a9f7","ssdeep":"3072:71LzCvTzKCMY/ckuR8gWO1GPzqet2eZEktlmdIp:71LsyCHckuR2RRlmdc","tlshash":"54b31381e7248cbaf726ef737687ec49ab414b30a85440e1de5887c832474ed9d6ad4e","first_seen":"2025-08-02T21:21:42.731749Z","last_seen":"2025-08-02T21:21:42.731749Z","times_seen":1,"resource_available":false,"data":null}},"time_used":259,"timings":{"blocked":35,"dns":7,"connect":1,"send":0,"wait":48,"receive":120,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"appointeeivyspongy.com/solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=OsiCRA3pV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=4ABjLfraHR0cHM6Ly9sdWx1dmlkLmNvbS9lL3J2bnpvNjRlNTFrZw\u0026afid=2085286100793856\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5","fqdn":"appointeeivyspongy.com","domain":"appointeeivyspongy.com","tld":"com"},"ip":{"addr":"94.242.247.24","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.396Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Mon, 03 Mar 2025 23:53:54 GMT","end":"Sat, 30 Aug 2025 21:59:00 GMT"},"fingerprint":{"sha1":"22:0A:29:24:35:4B:B9:91:E2:D5:B4:B8:11:B7:D6:27:9C:32:E6:30","sha256":"05:06:86:B2:97:A6:6B:C8:3D:1D:4E:94:C8:C7:44:A1:5B:6B:39:87:8C:2E:29:CE:36:1A:80:A6:02:00:F3:F6"}}},"request":{"raw":"POST /solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.571\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=OsiCRA3pV\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=4ABjLfraHR0cHM6Ly9sdWx1dmlkLmNvbS9lL3J2bnpvNjRlNTFrZw\u0026afid=2085286100793856\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026im=1\u0026noch=1\u0026cs=5 HTTP/1.1\r\nHost: appointeeivyspongy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: UID=250802162197908b5fbe904b99987229ab4d; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\nCHCK=1; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\nPTS=CIKhbNJojoFLoWMB; Path=/; Expires=Sat, 05 Sep 2026 21:21:15 GMT; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-04-04T06:19:11.134515Z","times_seen":20429,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"brnxpsoxoi.com/","fqdn":"brnxpsoxoi.com","domain":"brnxpsoxoi.com","tld":"com"},"ip":{"addr":"139.45.197.112","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:15.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"brnxpsoxoi.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 Aug 2025 10:54:35 GMT","end":"Thu, 30 Oct 2025 10:54:34 GMT"},"fingerprint":{"sha1":"23:B6:F9:86:A0:A7:CC:7C:BC:A4:39:5A:AF:1D:A2:A6:24:E0:39:53","sha256":"F0:C8:15:D7:F7:55:64:5D:30:6E:A5:69:86:0F:6A:E3:3B:E2:3E:63:29:97:E8:63:68:BD:AA:F8:38:98:EA:66"}}},"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: brnxpsoxoi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: HEAD\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 02 Aug 2025 21:21:15 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 0\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid\r\naccess-control-max-age: 86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":231,"timings":{"blocked":102,"dns":11,"connect":26,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-08-02","alert":"Sinkholed","trigger":"brnxpsoxoi.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=132cb20d-e885-49c7-b254-475781c2bce6","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:16.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=132cb20d-e885-49c7-b254-475781c2bce6 HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1759\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Sat, 02 Aug 2025 21:21:16 GMT\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 12\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"adb4650bfc9d2a73d4dd69583b0ceb14","sha1":"1ce399d6e936232aaf2192cd7903a279c5015f22","sha256":"21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed","sha512":"3fbce22572bbed1aada0f7c6706f16a97e7c0ea132dfee1a7eb80f5e68da1cc63c891a5bc3ea8e87f0c97be3002212a0efbb2af9553acb45e0d447a685cd805b","ssdeep":"","tlshash":"436000000c3000000cc00c0000c00030ff300f00000f00c0000c00f003030c0c00c000","first_seen":"2023-04-05T07:30:31Z","last_seen":"2026-04-04T05:52:39.374236Z","times_seen":55974,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":89,"dns":4,"connect":26,"send":0,"wait":27,"receive":1,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/rvnzo64e51kg","date":"2025-08-02T21:21:29.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 07 Jul 2025 08:35:11 GMT","end":"Mon, 29 Sep 2025 08:35:10 GMT"},"fingerprint":{"sha1":"43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD","sha256":"F1:59:AE:4E:F0:84:C7:D9:0F:67:4F:CB:FE:A6:ED:7D:47:17:4F:83:AA:B4:ED:FE:F5:F2:69:A8:AB:43:0E:0B"}}},"request":{"raw":"GET /s/roboto/v48/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 40128\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 31 Jul 2025 10:09:08 GMT\r\nexpires: Fri, 31 Jul 2026 10:09:08 GMT\r\ncache-control: public, max-age=31536000\r\nage: 213141\r\nlast-modified: Thu, 29 May 2025 23:30:55 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40128,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 40128, version 1.0","md5":"9a01b69183a9604ab3a439e388b30501","sha1":"8ed1d59003d0dbe6360481017b44665153665fbe","sha256":"20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2","sha512":"0e6795255b6eea00b5403fd7e3b904d52776d49ac63a31c2778361262883697943aedcb29feee85694ba6f19eaa34dddb9a5bfe7118f4a25b4757e92c331feca","ssdeep":"768:Vce3jkow68wmT4IBX0tXdlSirS61gSjcz0GPwHbP+w2jec56O:VcI/iEEEtXdFJj+0GPwHbP+w5rO","tlshash":"3703023a5e3ccf1a84157a703950f6d9a8481e548e9d143b4f1ac7bf085dde2209b6d4","first_seen":"2025-01-08T22:59:02.845106Z","last_seen":"2026-04-04T06:43:15.240415Z","times_seen":713931,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}