{"report_id":"ddc6a784-7c81-499d-b32f-bdf5b7a5f875","version":6,"status":"done","tags":[],"date":"2025-10-19T20:04:22Z","url":{"schema":"http","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"172.67.197.173","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"title":"House.of.David.S01E02.Deep.Calls.to.Deep.1080p.ENGLISH SUBT - Lulustream.mp4 - LuluStream"},"submit":{"url":{"schema":"http","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"172.67.197.173","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-23T20:04:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":9,"urlquery":0,"analyzer":10}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.918061+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.938147+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.958130+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.018357+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.038673+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.058393+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.218610+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.238918+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.258646+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"}],"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ak.beltsflusker.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"dh8azcl753e1e.cloudfront.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"mbdippex.com","ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2023-04-26","domain_rank":21571,"first_seen":"2023-06-06T01:40:19Z","last_seen":"2025-10-14T13:58:51.788956Z","alert_count":0,"request_count":2,"received_data":689,"sent_data":1015,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fp.metricswpsh.com","ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-10-29","domain_rank":154722,"first_seen":"2022-04-22T11:20:32Z","last_seen":"2025-10-13T06:55:50.898619Z","alert_count":2,"request_count":2,"received_data":812,"sent_data":1044,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"bid.mbidtg.com","ip":{"addr":"45.133.44.25","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2023-03-09","domain_rank":366400,"first_seen":"2023-03-09T15:21:27Z","last_seen":"2025-10-14T13:58:51.847613Z","alert_count":0,"request_count":1,"received_data":1586,"sent_data":469,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"undefined","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2020-01-28T19:52:40Z","last_seen":"2025-10-13T02:23:01.168858Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":957,"comment":"","tags":null,"fingerprints":null},{"fqdn":"uk7lbpgqtmxx.l4.adsco.re","ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-10-19T20:04:23.674255Z","last_seen":"2025-10-19T20:04:23.674255Z","alert_count":0,"request_count":1,"received_data":463,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"mcpuwpsh.com","ip":{"addr":"94.130.197.240","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2022-08-12","domain_rank":38934,"first_seen":"2022-08-12T16:58:44Z","last_seen":"2025-10-15T06:23:17.285247Z","alert_count":0,"request_count":1,"received_data":9867,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"6.adsco.re","ip":{"addr":"104.17.139.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":91627,"first_seen":"2018-01-15T04:15:29Z","last_seen":"2025-10-16T12:09:00.251565Z","alert_count":0,"request_count":2,"received_data":991,"sent_data":845,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fimvwuzugaxq.com","ip":{"addr":"94.242.247.32","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-05-28","domain_rank":0,"first_seen":"2025-10-19T19:26:49.357591Z","last_seen":"2025-10-19T19:26:49.357591Z","alert_count":0,"request_count":1,"received_data":3110,"sent_data":528,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-10-12T22:12:24.910527Z","alert_count":0,"request_count":1,"received_data":4277,"sent_data":468,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ukankingwithea.com","ip":{"addr":"172.67.192.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-01-01","domain_rank":32650,"first_seen":"2024-09-05T12:50:03Z","last_seen":"2025-10-13T02:21:43.47306Z","alert_count":3,"request_count":1,"received_data":835,"sent_data":428,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"img.lulucdn.com","ip":{"addr":"104.21.31.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-12-19","domain_rank":356993,"first_seen":"2024-07-31T09:55:51Z","last_seen":"2025-10-16T23:04:30.109565Z","alert_count":0,"request_count":1,"received_data":106536,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"adsco.re","ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":3069,"first_seen":"2017-04-03T03:11:30Z","last_seen":"2025-10-14T14:34:27.736865Z","alert_count":0,"request_count":1,"received_data":1787,"sent_data":442,"comment":"","tags":null,"fingerprints":null},{"fqdn":"yweakelandord.com","ip":{"addr":"104.21.47.91","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-11","domain_rank":0,"first_seen":"2025-10-12T08:53:14.358096Z","last_seen":"2025-10-19T11:02:23.291058Z","alert_count":0,"request_count":2,"received_data":1042,"sent_data":1147,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"accounts.google.com","ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":103,"first_seen":"2012-05-23T06:57:57Z","last_seen":"2025-10-12T22:30:34.310669Z","alert_count":0,"request_count":9,"received_data":20719,"sent_data":5544,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"epidermispushupvariable.com","ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-03-12","domain_rank":104539,"first_seen":"2025-03-22T06:33:08.230583Z","last_seen":"2025-10-16T15:31:32.570782Z","alert_count":5,"request_count":5,"received_data":166186,"sent_data":4122,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"uk7lbpgqtmxx.n4.adsco.re","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-10-19T20:04:23.721102Z","last_seen":"2025-10-19T20:04:23.721102Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2025-10-12T22:12:25.402635Z","alert_count":0,"request_count":1,"received_data":8718,"sent_data":531,"comment":"","tags":null,"fingerprints":null},{"fqdn":"luluvid.com","ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-07-29","domain_rank":598770,"first_seen":"2025-07-30T07:44:29.756526Z","last_seen":"2025-10-14T03:00:41.585636Z","alert_count":0,"request_count":16,"received_data":1064997,"sent_data":7341,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"aseinprofitefukhatex.com","ip":{"addr":"108.157.229.23","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-08-08","domain_rank":0,"first_seen":"2025-10-18T14:32:31.242632Z","last_seen":"2025-10-18T14:32:31.242632Z","alert_count":0,"request_count":1,"received_data":4101,"sent_data":1017,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"OpenResty:1.17.8.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-10-12T22:12:10.358486Z","alert_count":0,"request_count":1,"received_data":429712,"sent_data":432,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ak.beltsflusker.com","ip":{"addr":"172.241.53.69","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-25","domain_rank":1645746,"first_seen":"2025-07-31T19:10:18.304736Z","last_seen":"2025-10-16T23:04:29.768713Z","alert_count":1,"request_count":1,"received_data":1424,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"storage.mbidstorage.com","ip":{"addr":"172.67.164.241","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-02-27","domain_rank":394709,"first_seen":"2024-03-05T17:34:43Z","last_seen":"2025-10-14T23:02:59.866462Z","alert_count":0,"request_count":1,"received_data":1533,"sent_data":535,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"4.adsco.re","ip":{"addr":"162.252.214.5","port":2087,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2017-02-14","domain_rank":95532,"first_seen":"2021-01-04T16:47:52Z","last_seen":"2025-10-16T12:09:01.053272Z","alert_count":0,"request_count":2,"received_data":858,"sent_data":845,"comment":"","tags":null,"fingerprints":null},{"fqdn":"nereserv.com","ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2020-12-21","domain_rank":17097,"first_seen":"2020-12-21T11:07:56Z","last_seen":"2025-10-13T06:55:51.072603Z","alert_count":4,"request_count":2,"received_data":644,"sent_data":1104,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"uk7lbpgqtmxx.s4.adsco.re","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":0,"first_seen":"2025-10-19T20:04:23.679319Z","last_seen":"2025-10-19T20:04:23.679319Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.xadsmart.com","ip":{"addr":"95.173.205.15","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"domain_registered":"2020-04-18","domain_rank":409261,"first_seen":"2020-04-18T18:24:57Z","last_seen":"2025-10-13T07:16:38.089434Z","alert_count":0,"request_count":1,"received_data":42471,"sent_data":452,"comment":"","tags":null,"fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}]},{"fqdn":"metricswpsh.com","ip":{"addr":"88.198.209.13","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-10-29","domain_rank":8777,"first_seen":"2021-11-02T17:43:55Z","last_seen":"2025-10-14T07:00:50.082636Z","alert_count":1,"request_count":1,"received_data":322,"sent_data":819,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"js.mbidadm.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2023-02-20","domain_rank":347799,"first_seen":"2023-02-21T18:08:24Z","last_seen":"2025-10-14T13:58:51.913336Z","alert_count":0,"request_count":1,"received_data":150034,"sent_data":416,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"js.mbidpp.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2023-02-20","domain_rank":612388,"first_seen":"2023-04-22T00:02:45Z","last_seen":"2025-10-15T06:23:17.347269Z","alert_count":0,"request_count":1,"received_data":98095,"sent_data":427,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"dh8azcl753e1e.cloudfront.net","ip":{"addr":"3.167.7.226","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2025-07-12T02:52:08.866068Z","last_seen":"2025-10-16T23:04:29.138188Z","alert_count":1,"request_count":1,"received_data":232789,"sent_data":427,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"xadsmart.com","ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"domain_registered":"2020-04-18","domain_rank":39181,"first_seen":"2020-04-19T20:24:06Z","last_seen":"2025-10-13T07:16:37.27321Z","alert_count":0,"request_count":1,"received_data":257,"sent_data":1739,"comment":"","tags":null,"fingerprints":null},{"fqdn":"c.adsco.re","ip":{"addr":"104.17.139.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2017-02-14","domain_rank":100769,"first_seen":"2017-11-29T18:42:15Z","last_seen":"2025-10-13T03:11:58.082242Z","alert_count":0,"request_count":1,"received_data":80383,"sent_data":508,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.918061+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.938147+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:00Z","timestamp":1760904240,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:00.958130+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":62,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.018357+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.038673+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.058393+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":2,\"pkts_toclient\":0,\"bytes_toserver\":124,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.118.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.218610+0000\",\"flow_id\":489421257310765,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.118.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.918061+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"38.132.109.186","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.238918+0000\",\"flow_id\":1879517487452323,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"38.132.109.186\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.938147+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2025-10-19T20:04:01Z","timestamp":1760904241,"ip_dst":{"addr":"185.200.116.90","port":3478,"asn":9009,"as":"M247 Europe SRL","country":"Singapore","country_code":"SG"},"ip_src":{"addr":"172.18.0.18","port":51286,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)","source":"{\"timestamp\":\"2025-10-19T20:04:01.258646+0000\",\"flow_id\":1673013312396978,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":51286,\"dest_ip\":\"185.200.116.90\",\"dest_port\":3478,\"proto\":\"UDP\",\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016149,\"rev\":3,\"signature\":\"ET INFO Session Traversal Utilities for NAT (STUN Binding Request)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"confidence\":[\"High\"],\"created_at\":[\"2013_01_04\"],\"deployment\":[\"alert_only\",\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2023_04_24\"]}},\"app_proto\":\"failed\",\"flow\":{\"pkts_toserver\":3,\"pkts_toclient\":0,\"bytes_toserver\":186,\"bytes_toclient\":0,\"start\":\"2025-10-19T20:04:00.958130+0000\"}}"}]}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"epidermispushupvariable.com/check.html","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f2e0cd22b41fa7c9212af0b11f449d3","sha1":"6c552632a2eeaa712496444594c3e8c68eadbbb0","sha256":"d7ca5af269e02e5109a61ef55df0196e2206204d6c742daba5a153defc097fda","sha512":"c90bb9984fc0b2a5374129cb10fc509e937ba565063e2530578430fb0329f8058c145c914de139fa166d8530cfff9799a8c78aa1ad2752d9ec72e24c0fed477c","ssdeep":"","tlshash":"d201685934f5684d5127b630255b22182d32a40325cbd94efb2cdb301f825a7eca8aef","size":762,"data":"","first_seen":"2025-03-07T08:34:13.499254Z","last_seen":"2026-03-04T07:06:03.173543Z","times_seen":7245,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fimvwuzugaxq.com/en/laglulq/ajmm/vubbk?pc=lse\u0026dv=clpgy\u0026qe=3\u0026zwfwzte=iiy\u0026af=pf\u0026sqy=1\u0026id=2003354\u0026tap=255689\u0026iiy=_ousmtvmlcfxjtyjwyfchjt\u0026iir=452167","fqdn":"fimvwuzugaxq.com","domain":"fimvwuzugaxq.com","tld":"com"},"ip":{"addr":"94.242.247.32","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"f654abe04203129f0a2db2ef2d44c602","sha1":"429bc935aebb24937a244b9447a65ad8762f5be3","sha256":"eb23814759f6ca2d37e16c34391d7a75167acf363af8e629cb2491fc0ef9cc84","sha512":"37b50bf8d2065cef308104ae05478eca8c2fab0b1ea6e36fad4900148f1e3ecc7c7c1f9353c64e377432de57471d8338928983b69f1228e862e9729fd1da2aa6","ssdeep":"","tlshash":"fb4189e02c86e2f8dee91d4c293df89af4b1af40f61f40c55d5ac428b8988779ad745c","size":2073,"data":"","first_seen":"2025-10-19T20:04:31.240117Z","last_seen":"2025-10-19T20:04:31.240117Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"265fbd04531d9cf5fd767b4e3149a5d1","sha1":"9df7368252b2b411d8472e2a6cc46fd5557ac415","sha256":"1b5a1da3648fc66667a67e766f23683675655e69a2f5186d65e750c7af80fa01","sha512":"c66a183c6e2dcabfedf54ccf42ca70a8cb2f9fde6fdfabfcb8ce20dc684821ce10b7892a940f459cc41c7462c97300aa740eecc1a38638845d159c684c9b036a","ssdeep":"","tlshash":"cb9000020c0ac08a003a208e3a0e3b022a2a2ba080020202bcca023ab8a8003aa28080","size":49,"data":"","first_seen":"2024-05-15T22:21:34Z","last_seen":"2025-11-06T10:54:25.308656Z","times_seen":13860,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fe99bbf2987d52a27e4d042d61264b5f","sha1":"96bb68de49d3a4146142cce3f02de1ccbf8d0bf6","sha256":"cfe90e4da6c1841088b25b3582dc78b887f3239cdfde633ff426703c6ed538f5","sha512":"9dd74689d8b3460b4da7557d2797047f31cfa1b8522959d152c08f1f48989897e15f026d9b254a7ef61b99b9b18fc002054f29a12a2e30554a68d7815c53f3dd","ssdeep":"","tlshash":"d570000a20a02022082a000082022200288c0082a80800380a008b003c008032222382","size":22,"data":"","first_seen":"2025-03-02T21:04:17.177505Z","last_seen":"2026-03-06T11:55:01.511158Z","times_seen":8483,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f347ec96a52189e53dd6d335cc8ed9ea","sha1":"0fc0c7f65105299d860511e62683232122e79dd4","sha256":"6530649612f535f1adde48ecf8b5de0677e9b5d77db12eb3dfd90b79b363559e","sha512":"d10466fcd3f182f3cf97ed6657e632ee15f5ef90b8d683bbe18a821c6ef8ef9a43bf65b39af4c8de43494fd7e00fb98fe894c6ab63acc741050b447c6d949a1b","ssdeep":"","tlshash":"a4800401d4501c7551c5005d0544c5ccf135137cc0d0305000555dd10475d50370cf00","size":37,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-04-04T11:33:28.13366Z","times_seen":14025,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"javascriptURL","is_inline":false,"md5":"68934a3e9455fa72420237eb05902327","sha1":"7cb6efb98ba5972a9b5090dc2e517fe14d12cb04","sha256":"fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa","sha512":"719fa67eef49c4b2a2b83f0c62bddd88c106aaadb7e21ae057c8802b700e36f81fe3f144812d8b05d66dc663d908b25645e153262cf6d457aa34e684af9e328d","ssdeep":"","tlshash":"aa3000000000000c000000000000000000000000000000000000000030000000000000","size":5,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-06T08:14:54.2073Z","times_seen":66514,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/get/2003354?id=2003354\u0026var=polish84\u0026jp=_clqqjawmabdcyfitkaydjt\u0026dr=49\u0026cuaa=1\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=yTCtexKaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=115402620211200\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026pload=1305\u0026rlp=%5B0%2C1%2C221%2C198%2C4036%2C2792%2C377%2C2456%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"dafce79d73767344255fc64ea819a07c","sha1":"32b4248126bda3870eb74c1343cd7d1ab45bbcf1","sha256":"153edfda06139763152c286db4ae80500df4a32f37f69ec420605377158241d1","sha512":"f64e9ed93a5fd0246b7cf2b0b2996d3cebaecf602f6e2dbb7dbc20db06d090cfdc6c09cb842ff35359db41531e6c1502f998971a9d61e7d90a378fdf02689b81","ssdeep":"","tlshash":"e0412fc07c83c49ca103788c67a96e812887074db8e3a7f1a0add61e6f6487b5f53dc9","size":2086,"data":"","first_seen":"2025-10-19T20:04:31.282931Z","last_seen":"2025-10-19T20:04:31.282931Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"879c12264b74d969b0314e9a9cd1f17d","sha1":"714a5d759f4d1b7d41f8c5526451aef114b33d41","sha256":"28be88d787b6e773eaf5d0818a6c62446ce628dd8ec0659c6f78410588838337","sha512":"3547b27de7764e655bc8749fd5c1166599da57d2a76057e66923476fda692917a9e537a934374c77f361359b9fe94d739bc037044bbcf2648feb43f7ff9f1c7f","ssdeep":"","tlshash":"f7700008e0a03032203a020a228222202a0c2020800000a0080a328028882832380880","size":22,"data":"","first_seen":"2023-03-07T01:03:05Z","last_seen":"2026-03-06T11:55:01.507418Z","times_seen":21973,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.xadsmart.com/lbootstrap-notify.min.css","fqdn":"www.xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"95.173.205.15","port":443,"asn":60068,"as":"Datacamp Limited","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"1376341044.rsc.cdn77.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 03 Sep 2025 10:33:14 GMT","end":"Tue, 02 Dec 2025 10:33:13 GMT"},"fingerprint":{"sha1":"2A:A4:F3:05:02:21:B5:01:E1:EF:C2:39:62:3E:8F:D4:4C:81:34:63","sha256":"7A:84:47:6C:5E:86:BB:DD:00:0C:5B:B3:12:58:38:C1:97:AF:2E:0C:CC:94:AF:AB:16:D3:66:B9:26:DD:91:99"}}},"request":{"raw":"GET /lbootstrap-notify.min.css HTTP/1.1\r\nHost: www.xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: application/x-javascript\r\npopads-node: wb8\r\nexpires: Wed, 22 Oct 2025 22:32:41 GMT\r\naccess-control-allow-origin: https://luluvid.com\r\nlink: \u003chttps://xadsmart.com/\u003e;rel=preconnect\r\ncache-control: public, max-age=604800\r\nx-77-nzt: EwwBX63NDQH31CIFAAwBuUwKAQH3UAAAAAwBJRPCVwG3AgAAAA\r\nx-77-nzt-ray: 2a494a156beb378a5444f568b9da2c01\r\nx-77-cache: HIT\r\nx-77-age: 336596\r\nvary: Accept-Encoding, Origin\r\ncontent-encoding: gzip\r\nserver: CDN77-Turbo\r\nx-77-pop: osloNO\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CDN77","description":"CDN77 is a content delivery network (CDN).","website":"https://www.cdn77.com","common_platform_enumeration":"","icon":"CDN77.png","categories":["CDN"]}],"data":{"size":41925,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1568)","md5":"63812663f830475fffa76945a7478680","sha1":"84c4637209f756493ccd170d021900772571148e","sha256":"cc2bc2a8ac02385e6fa64e1576571dca5513c8011d7cbfc3072963e1b5faf46f","sha512":"cfa4cc235fe8a6061f0245b2f76e6ddb0d6b653c4b4eff67b62a734031c16fd9b6b4e281b3606034fd7d116584663396d0d379c0fe2205bf3ccf3f9a9232777f","ssdeep":"768:bt9rqAYKKWZzFQ9JsQU+YDngZGihfzmMzhYrTsAysncCWcf5k5sigCbtCntlqo7/:bbdZzFQ9JsTgZvfzmMzhYrTscptZd","tlshash":"f4132aabb286282601e741b9503eb316b23305167912d458fcb9cdf96e3dd86117b7fc","first_seen":"2025-10-16T06:03:40.188772Z","last_seen":"2025-10-22T20:41:22.097034Z","times_seen":25,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":20,"connect":1,"send":0,"wait":1,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yweakelandord.com/eTFEWFhWDicrZSBpIBo7PXMSDDYdeQcOGj5SET8bLnR9aQoOVmIsMR0MdWpoSwB9bn4JWCBlaV9CMDksDEJ5aX4QXyI3ZV9HeWl2SgVqa25XB2ItZUgXMCg5Hgx1figNRShlaU4HdGFoTQN3YWhIBg","fqdn":"yweakelandord.com","domain":"yweakelandord.com","tld":"com"},"ip":{"addr":"104.21.47.91","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.147Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yweakelandord.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 08:53:24 GMT","end":"Mon, 05 Jan 2026 09:50:59 GMT"},"fingerprint":{"sha1":"E9:A5:59:FC:88:D4:57:19:6D:06:55:B2:AA:BA:2E:D4:5D:C1:D3:AC","sha256":"15:31:93:46:6D:B1:7F:8F:F2:25:E4:E9:A1:53:3E:FF:81:24:7E:B2:25:C0:07:FD:D9:48:B3:26:C3:17:1E:DB"}}},"request":{"raw":"GET /eTFEWFhWDicrZSBpIBo7PXMSDDYdeQcOGj5SET8bLnR9aQoOVmIsMR0MdWpoSwB9bn4JWCBlaV9CMDksDEJ5aX4QXyI3ZV9HeWl2SgVqa25XB2ItZUgXMCg5Hgx1figNRShlaU4HdGFoTQN3YWhIBg HTTP/1.1\r\nHost: yweakelandord.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cAvvcgGydiGJ6PixF7OeLcVozMxKpP3vxSmQmmgaCeqPXYHKaxq5z6%2BckQmjJXb3yHoKkyj0gVgRLRqcK8BRwn%2FzxgVysaGmn1cbU%2BhHEA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 9912e1c6cee556ab-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":20,"dns":1,"connect":1,"send":0,"wait":107,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xadsmart.com/eljsxbwkxhumnn?HByvGwis=BQOCAAAAAAAACZUAAsx37b4ZPq9UPabw9Yu6m6Y6Ybuvnm3HzWCuyBLMjQ4SEXKCgE44lnekkQK2HcqcuXFrt0ySz7iI4ch_L0hBCqdUY91RCZgGVYhA7AlGUzBzPcGxvtufgk-OdrCRHQSrCx4ONZ6WqOKEdPZkxBF5V28CiaVSsYcKqI8wPdeCfAx21HM1Gf3E7Pm08XdyO6M6B1U597gqQnHWTQ0lZB5n3ckABeB9wqsaLED1fTqroEP9pCPWPAB1Fd1-iBfKREGdlFDlQK5IN4j7jKPiK_pMj12ar7jmFSRxtuIoid_ffi9pcj-jigv5axF7Lb9TI010_bd-y4qdbIOuyVhuf4cv3p4v66AFeHLTM6Lyv5aUZq2gplhJe25VVIyywKq4cdk2_zlFiaXgrIlQ_fO_RcZSPTMFSc_MRBSSHgB3xAQZAZVS4kHpFH82lF7A8YYPY67VuM0a-CfUfyxWCk2g35DT4RNbA3HPcS6EOlXLekWnHOt4SGzI0uq3YP0Hn1VoZXjdSjvW4HcEliD9GW975GhwhKLNc-Lx5TDNMKvLFq4LmBQgEeE-Cs-0fY44vIk79xzXUwoVMzYyT3926UcpafE29srrwME8lB8qnm3EyP081VBQLspVctwHVnHAEHg4YRI7kWCbxSTimrBLSHGDeC-Du2yEyeUxaPsx2UIGbofHbuE3GoUxsDTE1JJVbxwRpygB4XS7REBoMe8Mkw2mcz4dJGA48Oz8-6rCMticstkhGS4Eh4F6kiDFwuEwWtbtroBHsFwxj3T7BFRnYPQcNiMbnqO03RMZ0_IF4IvR7exKUhP6yXyoe28fskEzvcbNkzBAeOnHQCjaC8RwdHmI7H2GHeDGTBn-qyDPgyKyY-qVED7TDuGjY5ANaXm_jBFfm8hq41g5g4yIiv2TkKHHzvoi3pze7QneEot_1eGc605H3bxj66reTrRsG8O94QaYr21PK0yP5f-9Tqn7UGeEyZEE94iK_3vU5yxZN9Ql3z_On7AKvt7a3yCKnOA2Zo1OM_Nd2By-lUrLNWGzTlzH--cQmbuNvvd296m8MxmRpRmzq8ugIEkzIBBp0uWiiIsYBprA2FORCA257aeXFXgCkua1F1eCTPrSiCKTBqPaPOrfhXGeXV9bskJo7ttLHKcC-01hGSqdVGIFRdt1irS1FTnMaPAjWEbf0mAvCS8a2X1Q74Ud\u0026IvlVioqR=4\u0026RgQfOYdG=4998988\u0026KBesuNYS=\u0026pZIcCubQ=0:1,0\u0026jtDuqIxo=\u0026GIxryHMS=\u0026GZmwBjWp=1280,1024,1,1280,1024,0","fqdn":"xadsmart.com","domain":"xadsmart.com","tld":"com"},"ip":{"addr":"104.153.197.251","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"xadsmart.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 04 Apr 2025 00:00:00 GMT","end":"Tue, 05 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"57:60:97:0C:DC:E6:0F:0D:1B:04:5B:46:03:77:64:46:88:C5:CF:87","sha256":"14:CD:91:C4:51:65:3A:E9:F5:6D:CB:BF:EF:86:31:A9:7F:DD:F9:17:57:48:89:78:CE:C4:29:EA:76:4F:04:DB"}}},"request":{"raw":"GET /eljsxbwkxhumnn?HByvGwis=BQOCAAAAAAAACZUAAsx37b4ZPq9UPabw9Yu6m6Y6Ybuvnm3HzWCuyBLMjQ4SEXKCgE44lnekkQK2HcqcuXFrt0ySz7iI4ch_L0hBCqdUY91RCZgGVYhA7AlGUzBzPcGxvtufgk-OdrCRHQSrCx4ONZ6WqOKEdPZkxBF5V28CiaVSsYcKqI8wPdeCfAx21HM1Gf3E7Pm08XdyO6M6B1U597gqQnHWTQ0lZB5n3ckABeB9wqsaLED1fTqroEP9pCPWPAB1Fd1-iBfKREGdlFDlQK5IN4j7jKPiK_pMj12ar7jmFSRxtuIoid_ffi9pcj-jigv5axF7Lb9TI010_bd-y4qdbIOuyVhuf4cv3p4v66AFeHLTM6Lyv5aUZq2gplhJe25VVIyywKq4cdk2_zlFiaXgrIlQ_fO_RcZSPTMFSc_MRBSSHgB3xAQZAZVS4kHpFH82lF7A8YYPY67VuM0a-CfUfyxWCk2g35DT4RNbA3HPcS6EOlXLekWnHOt4SGzI0uq3YP0Hn1VoZXjdSjvW4HcEliD9GW975GhwhKLNc-Lx5TDNMKvLFq4LmBQgEeE-Cs-0fY44vIk79xzXUwoVMzYyT3926UcpafE29srrwME8lB8qnm3EyP081VBQLspVctwHVnHAEHg4YRI7kWCbxSTimrBLSHGDeC-Du2yEyeUxaPsx2UIGbofHbuE3GoUxsDTE1JJVbxwRpygB4XS7REBoMe8Mkw2mcz4dJGA48Oz8-6rCMticstkhGS4Eh4F6kiDFwuEwWtbtroBHsFwxj3T7BFRnYPQcNiMbnqO03RMZ0_IF4IvR7exKUhP6yXyoe28fskEzvcbNkzBAeOnHQCjaC8RwdHmI7H2GHeDGTBn-qyDPgyKyY-qVED7TDuGjY5ANaXm_jBFfm8hq41g5g4yIiv2TkKHHzvoi3pze7QneEot_1eGc605H3bxj66reTrRsG8O94QaYr21PK0yP5f-9Tqn7UGeEyZEE94iK_3vU5yxZN9Ql3z_On7AKvt7a3yCKnOA2Zo1OM_Nd2By-lUrLNWGzTlzH--cQmbuNvvd296m8MxmRpRmzq8ugIEkzIBBp0uWiiIsYBprA2FORCA257aeXFXgCkua1F1eCTPrSiCKTBqPaPOrfhXGeXV9bskJo7ttLHKcC-01hGSqdVGIFRdt1irS1FTnMaPAjWEbf0mAvCS8a2X1Q74Ud\u0026IvlVioqR=4\u0026RgQfOYdG=4998988\u0026KBesuNYS=\u0026pZIcCubQ=0:1,0\u0026jtDuqIxo=\u0026GIxryHMS=\u0026GZmwBjWp=1280,1024,1,1280,1024,0 HTTP/1.1\r\nHost: xadsmart.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\npopads-node: wb9\r\naccess-control-allow-origin: *\r\nasf: 9\r\npopads-ec: ASB\r\ncontent-type: text/javascript;charset=UTF-8\r\ncontent-length: 44\r\ndate: Sun, 19 Oct 2025 20:04:02 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"d5f0a25e4d3522d56d48ce7bc3e518fb","sha1":"86794caff58f7fee6e684c2ba7195f970a8d6f4c","sha256":"9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5","sha512":"a3a81801f516a4eb11f00d6f56dab0ed4b8a79219e6b4f5436993479f09dae08f14cffbab3327ff66fb39201d8eba1153ae7114f7705a01cc6f0edf840ef1616","ssdeep":"","tlshash":"789002801814116115d1500b8d5159d01259b1a4540801324446ca502dc7883a415774","first_seen":"2023-03-07T01:17:45Z","last_seen":"2026-04-06T05:40:02.366907Z","times_seen":22886,"resource_available":true,"data":null}},"time_used":745,"timings":{"blocked":312,"dns":1,"connect":98,"send":0,"wait":120,"receive":0,"ssl":211},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/favicon.ico","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nserver: cloudflare\r\nlast-modified: Thu, 01 Jun 2023 18:52:04 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YUFaARDROzVE1xnUmBXmgTORxwKO0GUU3J5U6yHVp0dQHeTgNRhSkF8KhNeRj0C8wQ%2FcrpHNQgt8NGlnYQdgTzNhUtMMs5tMi0Bb\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"1c1-5fd15eeb261fb\"\r\ncontent-type: image/vnd.microsoft.icon\r\nage: 2005\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\ncf-ray: 9912e1c8ace94e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":449,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 30x30 with PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced, 32 bits/pixel","md5":"91a7665e37c2eeb49f2ee2fbc2e2d19d","sha1":"8f93836b06e6c2fac65258b7420c1df09ad58d37","sha256":"ff27be6c1a1eba3dc17d16581d680e8faba2536b565e90ad7c09c43d62495dd7","sha512":"2fd72836b18efe830a4f6efa526e01dbe267c65845c22272c90fe5df1a12266d266a34217bc89fb9e365ee009dc06a1a572744287b5b529ae8c87af20483d151","ssdeep":"","tlshash":"ddf0d4dbf5476008c3379ed5e46380cbf13cc1d50c9a704b0175791a4d453169391717","first_seen":"2023-08-28T18:58:56Z","last_seen":"2026-03-09T01:07:35.085976Z","times_seen":432,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/polyfills.webvtt.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.539Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /player/jw8/polyfills.webvtt.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 06:30:47 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=N77RzAsXHo3TJWBbgjDjEJcpTS0ejrQvsjFnwxKfLVvSH%2BtR57NIpouGI0Xkgf%2BxHb76ilZE0xhjTzqUKB9hhYidAvD2WtFKbGCZ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"2a27-5fd8446b4edf7\"\r\ncontent-type: application/javascript\r\nage: 6777\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c91d034e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10791,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10393)","md5":"b3e139c07aac361115e8ec41bde7d2a5","sha1":"0c3fc8d31887dafb86ba778da788ece5cbf76f18","sha256":"1ff5585bdbea001d37f3647975a645f0594090f070915831286de90dd45949d5","sha512":"0b2a16b1b9a63ab3561c9d7e63a2a797781f6abc09c304f28530c6a8c87224083c708989534552d11948aeec3aabb36a943173fbe651c64810d56f08f2bc68b7","ssdeep":"192:gl1026oqO7yNPJUsnOGhcAsej4Du/YVLEO1mTLSRavTdU94o9pD5i:E10tvJN6cC3RPVUTLKKTdObpM","tlshash":"7222f690b2f5609d8281e49f456f0284e2399630fe8bc4cef550c5f9dc74a8a127ebb9","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-06T08:23:24.633198Z","times_seen":806,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.mbidpp.com/popunder-admanager/build.m.js","fqdn":"js.mbidpp.com","domain":"mbidpp.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.mbidpp.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 10 Oct 2025 02:32:31 GMT","end":"Thu, 08 Jan 2026 02:32:30 GMT"},"fingerprint":{"sha1":"3F:7A:88:98:BD:5B:B7:36:2F:BB:7C:B0:AE:C1:59:26:70:9E:EE:24","sha256":"26:5B:93:5D:F5:7B:40:62:AB:7C:DB:D4:A5:34:B0:81:9E:B9:1A:E6:1C:08:0A:76:F2:AD:90:BA:27:0B:11:8C"}}},"request":{"raw":"GET /popunder-admanager/build.m.js HTTP/1.1\r\nHost: js.mbidpp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Fri, 17 Oct 2025 10:14:51 GMT\r\netag: W/\"68f2171b-17dab\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 19 Oct 2025 20:09:00 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1742\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":97707,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"a4389dc8b03fbf3dd9dbf071d4e8a2f7","sha1":"e0831032f967bfcf018ab541bf09fa4ce8672728","sha256":"cfd66bc3bd6e16745a201dec779b71165805c50f9e07baabd22136fc85f103fc","sha512":"a25f6af8bd45b1a7152a81005cc5592d1df5069152b0b5282d2aac74f493c344e27f6b7783015d3d14fedbda89323cd169fef228fed9d6c130f5ad9564619685","ssdeep":"768:ubVWcprcLsdOKZlnsKVzl8Ail58Jn62sIHfyH2Xq9qAkdq3KF9x81ohS/SOQdqFU:WkmOKbrA8JgWX5vjI+Rh","tlshash":"41a328cdb3d2707042a7a4ba903f151ab33e29197849442cf965c9d138add4fa327f79","first_seen":"2025-10-17T13:29:44.010154Z","last_seen":"2025-10-22T07:49:28.507147Z","times_seen":103,"resource_available":true,"data":null}},"time_used":262,"timings":{"blocked":112,"dns":24,"connect":21,"send":0,"wait":38,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=379891","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 02:47:45 GMT","end":"Thu, 13 Nov 2025 02:47:44 GMT"},"fingerprint":{"sha1":"F4:AD:2A:0D:F1:0A:AB:04:F2:6F:6F:72:39:99:7F:4B:E4:5B:2E:4C","sha256":"12:8C:54:04:9B:26:0A:7E:35:D0:23:72:4F:A8:FC:52:77:D0:9D:FA:F5:AC:FE:2F:D2:49:97:F4:24:B6:72:0A"}}},"request":{"raw":"OPTIONS /fp?tag_id=379891 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 204 No Content\r\nServer: nginx/1.20.1\r\nDate: Sun, 19 Oct 2025 20:04:00 GMT\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: content-type\r\nAccess-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":227,"timings":{"blocked":102,"dns":1,"connect":26,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.706Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/dnsads.js?ads=1\u0026AdType=1\u0026cbrandom=2\u0026clicktag=http HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 15:50:14 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MJEVlet5OtAlhXq%2FAM2eQt3v2AXBF9ktlW%2B82HY2iunTJVBbQa2ETdqolcAseaeQbeLeWncU1B%2B2oQM81t3%2Bghod8OQM7G4DFu0f\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"26-5cbe26bbab980\"\r\ncontent-type: application/javascript\r\nage: 1349\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c3bbd64e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"99eccae6afa72c589ae54b5c3890282a","sha1":"0f102f8f5b556635de65d16cf70fa8269c6761b4","sha256":"b74a58316385de04b054737776e71c160cd60d2d01b5440b32c21651fb0ab8d3","sha512":"01bc413c1695c125b8ab111c60974da99989b618fb674631d998db519996966c569503efb97a3c760b50069e87b6b42891985b00c64810a43935ada075a19d24","ssdeep":"","tlshash":"eb8000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e20c228c3a","first_seen":"2023-03-07T12:59:18Z","last_seen":"2026-04-06T08:23:24.584504Z","times_seen":2590,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jdadbl.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.695Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/jdadbl.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 13 Sep 2021 21:39:44 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LI8I8g71ARHiObb5KgNUGOfCkhwSguQe6mVeHgh%2B4cYg0PfaOpLwl33vWPIQO2D54Pvv4HxOMMkmQOuiFwr5KLO4%2BBfe5e5ZyiqL\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"a47-5cbe74da38800\"\r\ncontent-type: application/javascript\r\nage: 2582\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c3bbd24e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2631,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2579)","md5":"95fd065c887d003f9a169dee9876532c","sha1":"0f111b6d5e142fadb966a1feb264d519c12a59d9","sha256":"4d4c84ad505bddf4d49b1222db984d7aaa425c6702c79029801632bf31f2b80d","sha512":"cacd512fbe11ccdf89c56c164255191d88f1edf46a9cb02b1de0d690659923a6508ae8d5d1733c5452974ebfae589f4c1214be047ba67d5218db06c3fe9a25a2","ssdeep":"","tlshash":"5451215775c270a0273b60b4952f710a773a5892250b8860c3e5e9952c2c8ef9177f9b","first_seen":"2023-05-22T09:51:00Z","last_seen":"2026-04-06T08:23:24.610989Z","times_seen":780,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/new100.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/new100.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Fri, 27 Dec 2024 03:46:02 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sIVNV5vdDfN1QxPWTmqEYC2NohEkxEGWEK2seTHqgUSUkUDTIu9CbSKSlYXkQr9ENqaXQT8mtdE1UzbK78fyzZT3gQRQ%2F%2BO5GsX7\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"5c1-62a384d3361f7\"\r\ncontent-type: application/javascript\r\nage: 6703\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c3bbd44e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1473,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"a404d12258254e435583a10baa32a8b8","sha1":"a7bde7e90a122cc61a016e3e4f94339ca866d6c3","sha256":"32df889d6099045ed25a5e32fbf53de6fbc07ff4b82ccc3363b6d06acb254b84","sha512":"594cda55bee6617a0583494ea1a651335081d4b393aaafe10764b930b9095e7f36edd4b5c82520737f47276f8cca302fd39ed0a6bbd97d400734e3765c3ed6f2","ssdeep":"","tlshash":"1931bb2b2cf4203025f7600d171b6144b0529643251deeb87adc435a3f94d6d8e76bed","first_seen":"2024-12-27T13:53:56.121207Z","last_seen":"2026-04-06T08:23:24.571774Z","times_seen":699,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:42 GMT","end":"Mon, 15 Dec 2025 08:42:41 GMT"},"fingerprint":{"sha1":"FA:CB:8B:4D:1E:E1:88:7C:A3:C4:6D:7C:67:E7:45:EA:91:C3:CA:93","sha256":"D0:B4:98:FF:9C:E4:26:18:7A:1C:9C:E5:59:51:C5:54:33:E0:7B:5A:DD:DE:BB:57:49:48:07:42:3F:E4:D3:64"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:PT-yYNwOK4-6TtwcEe_Sf0PQdDEcdg:DfL14R3_8dfnYS1j; Expires=Tue, 19-Oct-2027 20:03:59 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S-402481521:1760904239721929\u0026ifkv=AfYwgwWVDb4t3g9OZo8THK7iW46pUCWO3PmOOTqGjwYvVS7vAjoUlUmb3l3vbYSsQserI3XWCVbzBg\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-HOi8cGrCrLf_0LPhy9pjDA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncross-origin-resource-policy: cross-origin\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":535,"timings":{"blocked":241,"dns":0,"connect":49,"send":0,"wait":41,"receive":1,"ssl":196},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aseinprofitefukhatex.com/YzRrNmwCVghbUwIJCRAZEVhWE14lEVlwCAsMCkwPDwNeBQlSUUVVAAxBD1AeDFofGAIGQE4EKgF7PkZeOXEbVyYxUyhSOVNeLloAVHdYRik1bCZmDiJtPHpdWgcsXikOYC9BCiJzOVcmMUAofykMWCx0PlBnOEFbNXxafysUcT97KxcNJ10lRgYpZxVWeD1xFDV/E1EoB0xTQCsiUFh1KxRsKnULJlIHdz0sWDJePxttA24vAGwjZSIBeClCLzMFAwUrFEccYy86VSlhVC9wLngnBlwTAj4IQ1JjLzJnKExdKFZbZDkpcVpAPiVmXHU7MXM6bgBUVlsbPjZkPXcHMnIpQC8EXD9gAhN2DXMmIVEzQhoxcjoCOFENLXw0EH8NWgQ2bRNOWDFTJkA7CnExZzQLEVlwCSZuPVMLDwM5WjoVd1hZPSdgA1UgIV8IVBsQeTkHCEYGKXBfE2Uubg8qEgFFAw1EVkYKLgRcRz0UQxFkWzs","fqdn":"aseinprofitefukhatex.com","domain":"aseinprofitefukhatex.com","tld":"com"},"ip":{"addr":"108.157.229.23","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.141Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aseinprofitefukhatex.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Sun, 05 Oct 2025 00:00:00 GMT","end":"Tue, 03 Nov 2026 23:59:59 GMT"},"fingerprint":{"sha1":"02:2D:E2:FE:C5:03:2C:E8:4C:5A:67:77:1C:35:6F:6C:27:56:76:55","sha256":"F5:78:6A:62:49:E9:AA:A5:19:E0:20:17:D5:CC:96:72:F5:45:39:5B:13:15:5D:A7:48:55:1F:91:6F:95:EA:25"}}},"request":{"raw":"GET /YzRrNmwCVghbUwIJCRAZEVhWE14lEVlwCAsMCkwPDwNeBQlSUUVVAAxBD1AeDFofGAIGQE4EKgF7PkZeOXEbVyYxUyhSOVNeLloAVHdYRik1bCZmDiJtPHpdWgcsXikOYC9BCiJzOVcmMUAofykMWCx0PlBnOEFbNXxafysUcT97KxcNJ10lRgYpZxVWeD1xFDV/E1EoB0xTQCsiUFh1KxRsKnULJlIHdz0sWDJePxttA24vAGwjZSIBeClCLzMFAwUrFEccYy86VSlhVC9wLngnBlwTAj4IQ1JjLzJnKExdKFZbZDkpcVpAPiVmXHU7MXM6bgBUVlsbPjZkPXcHMnIpQC8EXD9gAhN2DXMmIVEzQhoxcjoCOFENLXw0EH8NWgQ2bRNOWDFTJkA7CnExZzQLEVlwCSZuPVMLDwM5WjoVd1hZPSdgA1UgIV8IVBsQeTkHCEYGKXBfE2Uubg8qEgFFAw1EVkYKLgRcRz0UQxFkWzs HTTP/1.1\r\nHost: aseinprofitefukhatex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1215\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nset-cookie: AWSALB=qe7r+qvS1ws0qV2OfX4qDYOMo1as1Y2HIvmTiGJNaihoFl911E65V/WAGLvlEzXKe5ZrwAIMKzmpeLmcmr/koNsx2F82dXR5amD08P2890h8aP3lP0nVFzgJUCGW; Expires=Sun, 26 Oct 2025 20:03:59 GMT; Path=/\nAWSALBCORS=qe7r+qvS1ws0qV2OfX4qDYOMo1as1Y2HIvmTiGJNaihoFl911E65V/WAGLvlEzXKe5ZrwAIMKzmpeLmcmr/koNsx2F82dXR5amD08P2890h8aP3lP0nVFzgJUCGW; Expires=Sun, 26 Oct 2025 20:03:59 GMT; Path=/; SameSite=None\r\nserver: openresty/1.17.8.2\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 fdac35835bcf0937b6f910eeac10720e.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P2\r\nx-amz-cf-id: bIPY6wyaTl--tB63_Mm_ZGCguK6bJAeabFtZa1W7avfrdO1lVrj3cg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon ALB","description":"Amazon Application Load Balancer (ALB) distributes incoming application traffic to increase availability and support content-based routing.","website":"https://aws.amazon.com/elasticloadbalancing/","common_platform_enumeration":"","icon":"Amazon ELB.svg","categories":["Load balancers"]},{"name":"OpenResty:1.17.8.2","description":"OpenResty is a web platform based on nginx which can run Lua scripts using its LuaJIT engine.","website":"https://openresty.org","common_platform_enumeration":"","icon":"OpenResty.svg","categories":["Web servers"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3067,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (3067), with no line terminators","md5":"57faa109a7efca7682fd9bee87988d65","sha1":"c254220e403087b785c01d5f02cb6036e100402a","sha256":"5af6f248364cf772eda9f4fda089125d9a555a601b10432e4b6e34d4aba4b58d","sha512":"560af28ae36415486117144f351abf35c41c798f3eab62a5241e10ba28fe904509cd97e433b72ba49ab75c906266dedf861a2bfa42a57fcf8a4caf133d54a408","ssdeep":"","tlshash":"3551118d34f3a08283f6a024547b799afa285a94834ccb14863d96bcbc755ed7357f4c","first_seen":"2025-10-19T20:04:31.199216Z","last_seen":"2025-10-19T20:04:31.199216Z","times_seen":1,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":33,"dns":5,"connect":12,"send":0,"wait":119,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/get/2003354?id=2003354\u0026var=polish84\u0026jp=_clqqjawmabdcyfitkaydjt\u0026dr=49\u0026cuaa=1\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=V6l6XZVaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=7715226991483392\u0026eclog=0\u0026snc=0\u0026ssc=1\u0026vp=8\u0026pi=W1oqmg\u0026dto=2\u0026pload=2585\u0026rlp=%5B0%2C11%2C525%2C459%2C24442%2C8431%2C585%2C8095%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.690Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epidermispushupvariable.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Sat, 09 Aug 2025 14:34:03 GMT","end":"Fri, 07 Nov 2025 14:34:02 GMT"},"fingerprint":{"sha1":"40:4F:D3:3D:CE:29:0D:21:5B:B1:FC:30:44:30:73:D5:3E:39:B0:12","sha256":"A6:3A:27:4C:E9:A0:FC:0E:A0:83:6C:62:06:37:D9:62:73:79:53:72:72:A4:7D:33:27:A5:35:53:1D:D0:F1:CC"}}},"request":{"raw":"GET /get/2003354?id=2003354\u0026var=polish84\u0026jp=_clqqjawmabdcyfitkaydjt\u0026dr=49\u0026cuaa=1\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=V6l6XZVaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=7715226991483392\u0026eclog=0\u0026snc=0\u0026ssc=1\u0026vp=8\u0026pi=W1oqmg\u0026dto=2\u0026pload=2585\u0026rlp=%5B0%2C11%2C525%2C459%2C24442%2C8431%2C585%2C8095%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: epidermispushupvariable.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2; CHCK=1; PTS=; UID=2510191503055cee0918724cd3bfe5872235\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Sun, 22 Nov 2026 20:04:00 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 22 Nov 2026 20:04:00 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3177,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3177), with no line terminators","md5":"47ee2ea63b54595f3657dfbf6462631a","sha1":"0f16baea4bb164a5438457267d9575a301e1ae1f","sha256":"cdf3318d5b64e2fc69a43132ae6af0c2d4847a7cb12ba0a594adc976ca8dad2b","sha512":"40bf67230b0eb1192ef06a881230aa5a6ed6565a8d1807f4c563ffa0a09bbf4525d3a10e6c3e371d0b4a6024ba1152b34ff4e3bca5885211c2b872b89adfde20","ssdeep":"","tlshash":"cf61b5aa680cc144f0053c06113ebe6ac85a1bd2fd3be960517689cf8279c7d93bb04f","first_seen":"2025-10-19T20:04:31.204453Z","last_seen":"2025-10-19T20:04:31.204453Z","times_seen":1,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bid.mbidtg.com/tags/379891?version_name=c\u0026domain=luluvid.com","fqdn":"bid.mbidtg.com","domain":"mbidtg.com","tld":"com"},"ip":{"addr":"45.133.44.25","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.163Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bid.mbidtg.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 Aug 2025 02:31:58 GMT","end":"Sat, 22 Nov 2025 02:31:57 GMT"},"fingerprint":{"sha1":"FB:24:04:1C:BA:4E:22:11:7F:7E:FB:24:71:C4:83:18:DF:D6:B4:34","sha256":"5D:CA:59:79:55:C9:BC:AE:2C:96:9F:24:F3:43:76:79:40:78:58:AD:A4:32:9F:84:50:E2:07:90:9B:ED:5C:19"}}},"request":{"raw":"GET /tags/379891?version_name=c\u0026domain=luluvid.com HTTP/1.1\r\nHost: bid.mbidtg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: application/json\r\nserver: nginx/1.24.0\r\ncache-control: max-age=300, public\r\nx-cdn-host-id: DS5058\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1347,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1762d052f462b36cb319248b04d7eb64","sha1":"506cca357106260b8ca3eb8946cf1183860318d9","sha256":"1673eb97007f9c3e817df0beae78fdb87b23f3b266f97581ebf0646475115195","sha512":"7695ddebff2d96ceb32b12b0899167d3fc59d7cff24a5b2ba83919354570c0ba114e7e4bed1c021dce987accd3a967e6908216132bc70110f24e2be15c504750","ssdeep":"","tlshash":"8321fcec8575ecaec0c0468a84893f4803a13667b4c8b596f4ac89ac11cf6951a3b10b","first_seen":"2025-10-17T15:07:50.882515Z","last_seen":"2025-10-24T03:36:40.135643Z","times_seen":27,"resource_available":false,"data":null}},"time_used":195,"timings":{"blocked":88,"dns":36,"connect":19,"send":0,"wait":22,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-RFESL45RJX","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.694Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:44 GMT","end":"Mon, 15 Dec 2025 08:40:43 GMT"},"fingerprint":{"sha1":"02:50:AA:DF:C5:16:76:73:9E:ED:AD:C4:E5:98:EB:E7:2D:B9:C3:33","sha256":"6C:68:2F:0A:C2:03:62:A1:8E:7B:3B:BB:D6:6D:96:A7:78:6C:78:0F:1D:F0:EB:77:84:A5:4A:DD:07:44:9B:DD"}}},"request":{"raw":"GET /gtag/js?id=G-RFESL45RJX HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nexpires: Sun, 19 Oct 2025 20:03:58 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 142671\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":429108,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"de85f2529df12abf8d3efd3ba0b1db0e","sha1":"45880a3e279d8ac50a848fa642a47eb26053c38f","sha256":"8dfb2929bea64d4a88a3ab433cdd8417b947317069f663bbd12b9d2fc498930b","sha512":"d9caf8fea46fe1ef82f8ac7796f48d7313aeff7af60b9d9b3f96d528e960b87ceb68e47054b87abea83ef36a201ac0235df46675a0bc3767d6812e1b30ff5c34","ssdeep":"6144:7nB3c6tQSyOL+hy4nkEt7F8KWjxSqpRjeWvkAX6HJLGy1tyyluxwuuSyv:7Bs6rRKhy4nkEt7F0EqPeKRy1bv","tlshash":"82941a8e73c674269396f078503f018ba57b29a2f45cc896f189cce42d74a9a4277f7c","first_seen":"2025-10-19T18:09:00.429343Z","last_seen":"2025-10-19T22:40:55.966394Z","times_seen":3,"resource_available":true,"data":null}},"time_used":626,"timings":{"blocked":237,"dns":0,"connect":27,"send":0,"wait":52,"receive":80,"ssl":228},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/on.js?var=polish84","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.728Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epidermispushupvariable.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Sat, 09 Aug 2025 14:34:03 GMT","end":"Fri, 07 Nov 2025 14:34:02 GMT"},"fingerprint":{"sha1":"40:4F:D3:3D:CE:29:0D:21:5B:B1:FC:30:44:30:73:D5:3E:39:B0:12","sha256":"A6:3A:27:4C:E9:A0:FC:0E:A0:83:6C:62:06:37:D9:62:73:79:53:72:72:A4:7D:33:27:A5:35:53:1D:D0:F1:CC"}}},"request":{"raw":"GET /on.js?var=polish84 HTTP/1.1\r\nHost: epidermispushupvariable.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 17 Oct 2025 12:09:17 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f231ed-25fc6\"\r\nexpires: Sun, 26 Oct 2025 20:03:58 GMT\r\ncache-control: max-age=604800\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":155590,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"d20cd34c0ce632ba42f9c9715a6f0129","sha1":"e8485d12fcc7c413d320cca78794f30ebeaeee56","sha256":"acebab3a34dc13a8c7288193ae322b53c66719ccda8e7d7f128b36f098e87bdf","sha512":"51030d1ba9b3262c37a04e70672873a84a69827622d2ad083ab5c209f24708ffe1d4e617fcf0392e8103b085298220f7592de091224dcf7004fe2a6332c61179","ssdeep":"1536:803Om3Tw2hdvXpDLQa0SFMqFA4fKRHzd6bRa322M/ZScQPJViBYJ5+RDquMMl/6Q:803xLQheJyRHzduiol/6ep","tlshash":"d8e3999d6bb13c378142ac296c2f7609ab3d94e195cd4084d4aed1e42d74b3af331a7e","first_seen":"2025-10-17T15:07:50.796879Z","last_seen":"2025-10-20T06:45:45.745122Z","times_seen":64,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":2,"dns":1,"connect":18,"send":0,"wait":35,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"10:90:B3:3F:30:77:D6:5D:F3:F1:F4:8D:D1:61:AA:F5:9C:D2:09:E6","sha256":"AC:0E:79:60:FD:CB:6E:20:77:C2:D3:75:94:E3:99:85:B9:AA:9B:EE:67:43:40:78:7F:17:FF:3F:6A:BA:05:CF"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:48ZfLfaxVntOWHgrKZOhU1gwJFNfGA:c4BysSGEu1lCI4c3; Expires=Tue, 19-Oct-2027 20:04:01 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:04:01 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1528435705:1760904241570455\u0026ifkv=AfYwgwU8bqbU7cJse8LLmAXaoPhdd6x__iCeBDfnrW2tVmRBwpZpNQOfBptr22B3L2xmW1KxGdBO7g\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-b1CtaM2zfjVt_eAkHaNjEg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: unsafe-none\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":53,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":53,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.core.controls.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /player/jw8/jwplayer.core.controls.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Tue, 28 Nov 2023 20:20:44 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LRaHbiRIgcXPEmzK6%2F1FaHEbDcrQwzv1pNwBoiD7n0wUfRwLKGXzZrYq%2F6T78ediZzb%2BD07SflmhcG1yvkNRGgbSbJnt9gWheix2\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"5167f-60b3c274227f4\"\r\ncontent-type: application/javascript\r\nage: 2581\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c5ac3b4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":333439,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"a8889c5f9e2492b9c3d6f73b5bad08fe","sha1":"6b942336401bc4ecd598f91fcaa7db96c889e6b4","sha256":"43502aabf4a1ce166cb2a84a177579663aa32e1ea7db8666bc67534a53a0f368","sha512":"e09de17c7ddc72248e2e337de5be46e9722d7afa26502a6f49c7358074b865ed65288f1ab3048e639dc96c2695dfbe32443560ab91d3497519a787e34352767a","ssdeep":"6144:YhIMSOAqxEXf1nKFEGwjDwdWoYoQHwmj06n:ewOAqxEXfpKFEYdWJ0g","tlshash":"d3641a39b142323556d7a2a9625b4609733b8085b5068aacff39e9d84c7d48f30f7fb4","first_seen":"2023-12-06T18:00:17Z","last_seen":"2026-04-06T08:23:24.559334Z","times_seen":795,"resource_available":true,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.139.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/plain;charset=UTF-8\r\ncontent-length: 45\r\ncf-ray: 9912e1d1688d0afa-OSL\r\naccess-control-allow-origin: https://luluvid.com\r\ncache-control: private, max-age=10\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-max-age: 2592000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":114,"timings":{"blocked":40,"dns":3,"connect":2,"send":0,"wait":26,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uk7lbpgqtmxx.n4.adsco.re/","fqdn":"uk7lbpgqtmxx.n4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.n4.adsco.re","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Sep 2025 09:14:20 GMT","end":"Sun, 14 Dec 2025 09:14:19 GMT"},"fingerprint":{"sha1":"E1:1C:75:CB:71:36:CE:62:CC:D3:97:20:A3:3E:A2:FA:DB:E6:BA:53","sha256":"71:DD:71:4E:B6:1B:9E:7A:90:D9:9D:D2:2D:76:D2:D4:30:96:42:27:B9:D5:71:B1:13:B4:4E:91:D6:27:1A:8F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: uk7lbpgqtmxx.n4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":777,"timings":{"blocked":384,"dns":120,"connect":88,"send":0,"wait":0,"receive":0,"ssl":181},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adsco.re/p","fqdn":"adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.336Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"POST /p HTTP/1.1\r\nHost: adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Length: 2435\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 19 Oct 2025 20:04:01 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAS-P-1: OK nyc123\r\nAS-P-2: OK\r\nAS-P-3: OK\r\nAccess-Control-Max-Age: 2592000\r\nCache-Control: no-transform\r\nAccept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Allow-Credentials: true\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1212,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with very long lines (1212), with no line terminators","md5":"85d3763f3572a3a5fde9fbdcba3cb245","sha1":"b6499b67a8ac6354fb43f887291e0c7b3e49cdaa","sha256":"67d5de86b5136c15c4df691400c88e44c4d371b466e4f7761daf48b2fcad5427","sha512":"68cb2f4365f862a46774d42b2e507c6f30492478aa2678bb4f419fc9082ef12b9b1111a3d3271ffaf60fab02656d6f174a5d2542b2cd023fb730e7a102fe2d16","ssdeep":"","tlshash":"6e210a20cbc10e6c12f8c5fdcc4780912d8546b3f4cc9814a499f84fac8b6f0932a255","first_seen":"2025-10-19T20:04:31.231748Z","last_seen":"2025-10-19T20:04:31.231748Z","times_seen":1,"resource_available":false,"data":null}},"time_used":701,"timings":{"blocked":288,"dns":1,"connect":93,"send":0,"wait":124,"receive":0,"ssl":192},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ak.beltsflusker.com/rDulnwma4CCtiWZF/84626","fqdn":"ak.beltsflusker.com","domain":"beltsflusker.com","tld":"com"},"ip":{"addr":"172.241.53.69","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.721Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ak.beltsflusker.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 29 Sep 2025 08:06:37 GMT","end":"Sun, 28 Dec 2025 08:06:36 GMT"},"fingerprint":{"sha1":"DE:19:84:4A:2F:F8:19:A5:23:DB:FE:DD:9A:B4:6F:36:EC:5A:5C:86","sha256":"FF:13:E1:70:66:D7:02:49:93:C7:25:26:E0:F4:B0:B0:D5:B9:5D:80:78:CB:09:2D:20:73:8E:87:69:1F:73:F7"}}},"request":{"raw":"GET /rDulnwma4CCtiWZF/84626 HTTP/1.1\r\nHost: ak.beltsflusker.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Mon, 20-Oct-2025 20:03:58 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyL0KglAYh3HPmxiRFH9wqM2lVbRUcJOcU6ILCLEI4eArR%2B3rphq7i24j2ruAbHiG36NpGllTUFnDjDwnch1%2F6XiBD3ECpRmoqGCkrC75DUKB3BVIVRhnjWQ74a5q%2B19A%2FxuixGQty6u9Y9m1JVcNqG%2BUsKpZ5e0RojYEqGWDQM3B0iDOxgwkczPefN%2BDx%2FPTg814cd%2FOX8M9qG6gu0EY%2FgCjMSmZ; expires=Mon, 20-Oct-2025 20:03:58 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-06T08:23:24.567456Z","times_seen":14900,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":66,"dns":60,"connect":18,"send":0,"wait":24,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ak.beltsflusker.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"undefined/bm5jMFQPDABdaw9TARYhHAJeFWYoS1F2MAZWAko3AllWAzFfC01TOAEbB1YmAQAXHjoLGkYCEh08NX4BDwU2XQQqAS5VPitYLnYwXgpRfjk5XRtJMD0/OnkXIBsscmweIyBlbSoDEF0EKgIufC43VixYJFolIVsnOwY6Zg0tK1tpLiseLnYwXzcZCGUsLSkEMDorJno6BgcAVycGJFEFMzoqIls2BAUlYC0ZS1F2Gy8aBFQsOAYxeAIJNzRiFyMHFAkZLzsafjo0AzRZJxYKDmo1CiY1CQ4rV1FyZzQDNFodHT40ejE3JjpiNzgGUmADOAk3Aw0mCg4dDg8gGX5mNBcXADADClVnORYJOmcFICcgaWAhXloDFVwoCGdnOF86XQYMNytUPiMJLgMdKjtUdTksXSVnAjQNNEQ+DQZaBDAvSAlDOwAeXl0eFlYwYGcbOA","fqdn":"undefined","domain":"undefined","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.145Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /bm5jMFQPDABdaw9TARYhHAJeFWYoS1F2MAZWAko3AllWAzFfC01TOAEbB1YmAQAXHjoLGkYCEh08NX4BDwU2XQQqAS5VPitYLnYwXgpRfjk5XRtJMD0/OnkXIBsscmweIyBlbSoDEF0EKgIufC43VixYJFolIVsnOwY6Zg0tK1tpLiseLnYwXzcZCGUsLSkEMDorJno6BgcAVycGJFEFMzoqIls2BAUlYC0ZS1F2Gy8aBFQsOAYxeAIJNzRiFyMHFAkZLzsafjo0AzRZJxYKDmo1CiY1CQ4rV1FyZzQDNFodHT40ejE3JjpiNzgGUmADOAk3Aw0mCg4dDg8gGX5mNBcXADADClVnORYJOmcFICcgaWAhXloDFVwoCGdnOF86XQYMNytUPiMJLgMdKjtUdTksXSVnAjQNNEQ+DQZaBDAvSAlDOwAeXl0eFlYwYGcbOA HTTP/1.1\r\nHost: undefined\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fimvwuzugaxq.com/en/laglulq/ajmm/vubbk?pc=lse\u0026dv=clpgy\u0026qe=3\u0026zwfwzte=iiy\u0026af=pf\u0026sqy=1\u0026id=2003354\u0026tap=255689\u0026iiy=_ousmtvmlcfxjtyjwyfchjt\u0026iir=452167","fqdn":"fimvwuzugaxq.com","domain":"fimvwuzugaxq.com","tld":"com"},"ip":{"addr":"94.242.247.32","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.130Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Wed, 28 May 2025 12:23:51 GMT","end":"Sun, 23 Nov 2025 22:59:00 GMT"},"fingerprint":{"sha1":"91:00:31:5A:FD:09:69:64:92:32:94:40:56:66:7F:48:4C:F6:B3:45","sha256":"F3:54:9E:0F:F3:BE:78:13:95:88:B7:73:56:04:E6:F2:FB:6D:1E:2D:E1:28:8A:4D:A4:A0:4B:94:C8:59:43:D3"}}},"request":{"raw":"GET /en/laglulq/ajmm/vubbk?pc=lse\u0026dv=clpgy\u0026qe=3\u0026zwfwzte=iiy\u0026af=pf\u0026sqy=1\u0026id=2003354\u0026tap=255689\u0026iiy=_ousmtvmlcfxjtyjwyfchjt\u0026iir=452167 HTTP/1.1\r\nHost: fimvwuzugaxq.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: UID=25101915044360b5bcae77426c92031089df; Path=/; Expires=Sun, 22 Nov 2026 20:04:00 GMT; Secure; SameSite=None\nCHCK=1; Path=/; Expires=Sun, 22 Nov 2026 20:04:00 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 22 Nov 2026 20:04:00 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2073,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (2073), with no line terminators","md5":"f654abe04203129f0a2db2ef2d44c602","sha1":"429bc935aebb24937a244b9447a65ad8762f5be3","sha256":"eb23814759f6ca2d37e16c34391d7a75167acf363af8e629cb2491fc0ef9cc84","sha512":"37b50bf8d2065cef308104ae05478eca8c2fab0b1ea6e36fad4900148f1e3ecc7c7c1f9353c64e377432de57471d8338928983b69f1228e862e9729fd1da2aa6","ssdeep":"","tlshash":"fb4189e02c86e2f8dee91d4c293df89af4b1af40f61f40c55d5ac428b8988779ad745c","first_seen":"2025-10-19T20:04:31.240117Z","last_seen":"2025-10-19T20:04:31.240117Z","times_seen":1,"resource_available":true,"data":null}},"time_used":315,"timings":{"blocked":141,"dns":1,"connect":17,"send":0,"wait":29,"receive":0,"ssl":104},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.mbidstorage.com/log/count.html","fqdn":"storage.mbidstorage.com","domain":"mbidstorage.com","tld":"com"},"ip":{"addr":"172.67.164.241","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mbidstorage.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 10 Oct 2025 10:38:10 GMT","end":"Thu, 08 Jan 2026 11:36:47 GMT"},"fingerprint":{"sha1":"F0:62:22:59:8C:A6:CB:EB:CE:2A:0F:20:CD:2F:BB:6C:0A:4C:DA:B5","sha256":"F6:AD:A0:EC:ED:56:BA:F1:42:64:7B:D8:39:B2:6A:32:8C:94:D5:DA:08:A2:06:B8:7E:F0:EB:74:B0:A6:BA:28"}}},"request":{"raw":"GET /log/count.html HTTP/1.1\r\nHost: storage.mbidstorage.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Mon, 18 Sep 2023 14:39:06 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=gUBbNyoyXkrdQT3lNV1nZluVtg8PEXrynqg6c8G1YVJJbPFkyHo87W8%2FfoO3pCVczj4IbU11%2Bt%2Bp9CSLN4zc8GJ0gnz6K%2FXwjMHbFh5DKrUjaEx1kd5x\"}]}\r\nvary: Accept-Encoding\r\nx-request-id: 1b030d586bbc6f99b853288c94b257d0\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9912e1d0ed00b1b8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":882,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (700)","md5":"b728ca9cd183d1b7c3f72116b19b22a3","sha1":"c1fd73f6b02cf00b8bc60b09cc99495e8494b739","sha256":"8a7b1ca4bbf273b32ea865d4785a1944d1b2b133678d9b5fe7ee0406f6fd64b2","sha512":"ce52c8caa65b221d0e8a26b7bfe60d20ac628bc8c4d479c72f904fefd587b87a136d24b32c17e6a87082338e606249463a3c6d8d03e28c50ea81e1c1a408cf48","ssdeep":"","tlshash":"c0119c4eb5002c5c4410826a38aa3e2575a56068802fad6064a6f9c23fd0dcec2d3fc2","first_seen":"2023-09-18T17:42:36Z","last_seen":"2025-11-06T10:55:58.203354Z","times_seen":11635,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":28,"dns":5,"connect":1,"send":0,"wait":41,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mbdippex.com/keywords","fqdn":"mbdippex.com","domain":"mbdippex.com","tld":"com"},"ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:36:27 GMT","end":"Tue, 25 Nov 2025 02:36:26 GMT"},"fingerprint":{"sha1":"64:AC:96:73:4F:92:FF:85:D0:1E:15:16:DA:B2:A2:8F:FA:02:1D:05","sha256":"1B:3E:09:8B:67:DE:C9:73:00:B7:68:C4:8A:D7:17:4D:D5:19:A0:85:23:3B:65:9C:31:C6:FB:A5:8E:BA:22:83"}}},"request":{"raw":"OPTIONS /keywords HTTP/1.1\r\nHost: mbdippex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.20.1\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":86,"dns":6,"connect":25,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"6.adsco.re:2087/","fqdn":"6.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.139.102","port":2087,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 6.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/plain;charset=UTF-8\r\ncontent-length: 45\r\ncf-ray: 9912e1d178970b61-OSL\r\naccess-control-allow-origin: https://luluvid.com\r\ncache-control: private, max-age=10\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-max-age: 2592000\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nalt-svc: h3=\":2087\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":45,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":139,"timings":{"blocked":56,"dns":3,"connect":5,"send":0,"wait":18,"receive":0,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mbdippex.com/keywords","fqdn":"mbdippex.com","domain":"mbdippex.com","tld":"com"},"ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.924Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:36:27 GMT","end":"Tue, 25 Nov 2025 02:36:26 GMT"},"fingerprint":{"sha1":"64:AC:96:73:4F:92:FF:85:D0:1E:15:16:DA:B2:A2:8F:FA:02:1D:05","sha256":"1B:3E:09:8B:67:DE:C9:73:00:B7:68:C4:8A:D7:17:4D:D5:19:A0:85:23:3B:65:9C:31:C6:FB:A5:8E:BA:22:83"}}},"request":{"raw":"POST /keywords HTTP/1.1\r\nHost: mbdippex.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 151\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: application/json\r\ncontent-length: 23\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":23,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"313e24d97d4df850114e5029235c3176","sha1":"87f20efacab89c47d7073768f459472b443eac04","sha256":"7a25509394a17ae923f23e222e822e064dfae5c1d2f8a15f2929327b68e67014","sha512":"1b77b1f031d6cca7575ac19083e99a58a8941c6ae9510a732130aaa5a282c824b40e538a7047b28fe0a701c312b8460d7c7e09b336cd2e87eec417db00890d67","ssdeep":"","tlshash":"1d700008220a082eac80aa0032008a022000a0020000a80820b0000083082280088808","first_seen":"2025-07-31T16:51:21.536309Z","last_seen":"2026-04-04T10:08:20.116732Z","times_seen":176,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dh8azcl753e1e.cloudfront.net/?czahd=1202196","fqdn":"dh8azcl753e1e.cloudfront.net","domain":"dh8azcl753e1e.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"3.167.7.226","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.717Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Mon, 05 May 2025 00:00:00 GMT","end":"Thu, 23 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72","sha256":"60:38:9D:24:9E:41:8F:23:AC:D9:14:5C:A3:47:7E:AF:07:DB:9F:2D:6A:8C:0D:08:E9:24:8A:8E:49:A9:4D:28"}}},"request":{"raw":"GET /?czahd=1202196 HTTP/1.1\r\nHost: dh8azcl753e1e.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 79130\r\naccess-control-allow-origin: *\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 c99d057689db169d0b27b6e562e255c2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: Pk7PZcXGDjKpkXChkhIUGIfbYxW5BTcu5doSrT5P6C19p-zu38tbsg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":232328,"size_decoded":0,"mime_type":"text/plain","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)","md5":"35cee73e450dcbe1cca80b2dbb3e7777","sha1":"a9beff018d07076c73174c7265d03f3f8a2f6a5d","sha256":"16263aa87700d36289e535be337a218f27d5844977a4b772ded8214bd7137ab5","sha512":"7b5a42f477a3e66486251b01ba70b86b93a1d74352070a52bdde453653575ba92dea7dd4001e7eeff1c6ba8370a92aaf6c8fbe659e913e08df9b3c29a6b710fc","ssdeep":"3072:XBUNPgDYzi07L02raYDbe+Y5UKS+7L0x2ik+Zc53+Zc0M8EN:XuN4DUi07w2rnXnZU3+iAU","tlshash":"32344cc9ba923469836374b540bf124ab23f5a69b8084dd4f496d4d07db8d0a437bfac","first_seen":"2025-10-19T20:04:31.251902Z","last_seen":"2025-10-19T20:04:31.251902Z","times_seen":1,"resource_available":false,"data":null}},"time_used":240,"timings":{"blocked":-1,"dns":14,"connect":1,"send":0,"wait":193,"receive":18,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"dh8azcl753e1e.cloudfront.net","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=379891","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 02:47:45 GMT","end":"Thu, 13 Nov 2025 02:47:44 GMT"},"fingerprint":{"sha1":"F4:AD:2A:0D:F1:0A:AB:04:F2:6F:6F:72:39:99:7F:4B:E4:5B:2E:4C","sha256":"12:8C:54:04:9B:26:0A:7E:35:D0:23:72:4F:A8:FC:52:77:D0:9D:FA:F5:AC:FE:2F:D2:49:97:F4:24:B6:72:0A"}}},"request":{"raw":"POST /fp?tag_id=379891 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 1971\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Sun, 19 Oct 2025 20:04:00 GMT\r\nContent-Type: application/json; charset=UTF-8\r\nContent-Length: 58\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nSet-Cookie: id=7441581362403447031; Expires=Mon, 19 Oct 2026 20:04:00 GMT; Secure; SameSite=None\r\nVary: Origin\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"c4efc1d6d16235d9433cd2565d887460","sha1":"22d069a5f536640e46122475c79db933e82d7f2e","sha256":"f0a6b8c736b7d8c5d3304a9ccd10d2114a0f25f2ba946cce62204df3384a131f","sha512":"af1cfe529f3173efdc7f4aff67355529095e775d8edb38d8a7c9565e09807aff470a465ffdf89ef6555f06cc88efa675823becc942896c63fa64a3140858f539","ssdeep":"","tlshash":"5ba00294c5c00e3c80200c3a73cf901628e4d304120217880ca66b5108822abe333c91","first_seen":"2025-07-26T17:44:43.174102Z","last_seen":"2026-04-06T08:09:40.667594Z","times_seen":6024,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":-1,"dns":8,"connect":28,"send":0,"wait":26,"receive":0,"ssl":67},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/css/main.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.684Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /css/main.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Thu, 18 May 2023 18:01:36 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YGaY2Ko6aYTbo5P18eFJFYjS4%2FOSvoMded5gLzTaZFjGiyQqMJ04y6cpW0d0dPEbNgUWhHko7LrYujRKXh0jreXpc0QMu5m1u4iP\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"c05b-5fbfb986a0000\"\r\ncontent-type: text/css\r\nage: 2015\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\ncf-ray: 9912e1c3abcb4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49243,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, Unicode text, UTF-8 text","md5":"40fa099cd62886ddda0afde4ef18cc84","sha1":"4c53f2b1e903260eeeff8c4f78b1562e015e1951","sha256":"57fd276195b1343bb4664915c74396b2331de23b3a778e05e85c149db2332d55","sha512":"d360bcb45964adc2756e33f7402775cc883e4710864d945a60caba1e33cd70b530de7613ffb853ed062f43dfbf2e471472e92174ec9b392b8200d23dba92f7a0","ssdeep":"1536:AQV8FxnYgp9ry2vYsRwq9AOOGvC4DONaY93Rz:AQVMxnYSy2v/AOOk4Rz","tlshash":"aa238422a7812c0cf06bd1b67d6197d6233e4053d92b1f7c7ab93578c28e4e85173b9a","first_seen":"2023-10-26T04:52:23Z","last_seen":"2026-04-06T08:23:24.578858Z","times_seen":891,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1528435705:1760904241570455\u0026ifkv=AfYwgwU8bqbU7cJse8LLmAXaoPhdd6x__iCeBDfnrW2tVmRBwpZpNQOfBptr22B3L2xmW1KxGdBO7g","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.651Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"10:90:B3:3F:30:77:D6:5D:F3:F1:F4:8D:D1:61:AA:F5:9C:D2:09:E6","sha256":"AC:0E:79:60:FD:CB:6E:20:77:C2:D3:75:94:E3:99:85:B9:AA:9B:EE:67:43:40:78:7F:17:FF:3F:6A:BA:05:CF"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1528435705:1760904241570455\u0026ifkv=AfYwgwU8bqbU7cJse8LLmAXaoPhdd6x__iCeBDfnrW2tVmRBwpZpNQOfBptr22B3L2xmW1KxGdBO7g HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:TSqBtf1a4UEBziDwYguqLHlj7yrzPw:ce13Do5am9kL7ssG;Path=/;Expires=Tue, 19-Oct-2027 20:04:01 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:04:01 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1528435705%3A1760904241570455\u0026hl=en\u0026ifkv=AfYwgwUsZzsXAob4dJ3bJJDd-H8ERCKSyW301z2WJKaoZ7I4sUzepRyvhAaCPGI7RINX8TIRoPQFwQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-2xnL0ShcpZ0dcl1foidbLQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 418\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re:2087/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"162.252.214.5","port":2087,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.810Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re:2087\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 19 Oct 2025 20:04:01 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Methods: GET, HEAD, OPTIONS\r\nAccess-Control-Allow-Headers: Content-Type\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Max-Age: 2592000\r\nCache-Control: private, max-age=5\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":45,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":390,"timings":{"blocked":-1,"dns":3,"connect":92,"send":0,"wait":101,"receive":0,"ssl":194},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/e/0f6agvvu99b5","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-19T20:03:58.128Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /e/0f6agvvu99b5 HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nexpires: Sat, 18 Oct 2025 20:03:58 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YnXkfgovuoNhRHZ1Kh758fIsZVb%2BwV1p1x5N5R0WPladFzhbgCWVCSpE1G3yuoreKFynggLKW2%2BSwDKZc7MgO2xa1EJToDCA4w%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nset-cookie: lang=1; HttpOnly; Path=/; Domain=luluvid.com\r\ncf-ray: 9912e1c139be5699-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":19163,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (7632), with CRLF, LF line terminators","md5":"9e318645b097492c74687c5cd6812458","sha1":"b9b3113abb5cc2a664e0736d16bc7c058b10c251","sha256":"ae1efc34ba4eea3a1bc5c550cd5d8f031c196750682c7fd30e891997802801d1","sha512":"a49e0e3838bad53ee4d1de5411a58c6e3cf8f567ebd1b60e7482ba725f1ee427ce6633f9dc500b52afbb3bcfb24525ae8d611e8939c44664291db13bc8e795b5","ssdeep":"384:C5yIknkhtmddAXJk9g/rdeHWwvayvf5xVgZ3:4LkkmQZk9g/rdeHWwTvf5xVgZ3","tlshash":"24825b56be95d824d3b640e4a47bf018b03e4147b609ddd8f5aca4053f587caa8b3abc","first_seen":"2025-10-19T20:04:31.262401Z","last_seen":"2025-10-19T20:04:31.262401Z","times_seen":1,"resource_available":false,"data":null}},"time_used":444,"timings":{"blocked":150,"dns":0,"connect":1,"send":0,"wait":145,"receive":0,"ssl":146},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.cookie.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.691Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/jquery.cookie.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Tue, 31 May 2011 12:53:56 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EayM8lOWl6LZYiugRuX%2FQRgjkIfpZ696KUo1uCG4okn9FTL2LnHFg365rt%2FVaC8lQULYXdnVRbWcQ%2BVrZ0%2BbJiCoRLE6V9X7bFFP\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"10eb-4a491e5980100\"\r\ncontent-type: application/javascript\r\nage: 1664\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\ncf-ray: 9912e1c3bbd14e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4331,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"ae0c2c5d8f01f7d35bb698bb618a62f7","sha1":"63556a22ddea1c5f23a5cf7d0b6d35c7aab54e20","sha256":"75aef2e95ea7f3a70999396fba0c2ab866f4ff06313cf1b07780d800a5fc1ebc","sha512":"eac94ca9d884692af8bdf12aa6e902a3be4eed0772ad8f2932ac1c3328b83a7351cdf743a409bbc0a3cd385956c08d3203d51c572bb1680489e37330fe27a2bb","ssdeep":"96:L4BZxb64Ng7V8cNwpGylRCsKZcj1JXulL6M/aGByLskPSP4lBCClf1wgCyC:LQnb6eg7DgCsk8fgZJkPSPa+gCyC","tlshash":"2e91fd293a0d231d149353f57aee10c8a930d632216ad46c744cb6b06f00c63ddfbbea","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-06T08:23:24.589566Z","times_seen":4357,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@400;500;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.42","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.158Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:00 GMT","end":"Mon, 15 Dec 2025 08:41:59 GMT"},"fingerprint":{"sha1":"E9:4F:AE:49:69:8C:15:95:B2:F7:9C:C0:6F:DA:FF:C6:06:1A:22:46","sha256":"89:56:CA:FF:85:BC:CA:ED:64:3B:13:28:77:62:7B:0C:FD:25:AB:78:F3:7E:B5:34:21:E4:79:F2:F9:D2:8C:E7"}}},"request":{"raw":"GET /css2?family=Poppins:wght@400;500;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 19 Oct 2025 20:03:59 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":3591,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"937c14ba7b5ca80d7955c6b5a4e1f283","sha1":"26375ff63193982affe1912f2918a20440b8d207","sha256":"c30b5f4bf7fc73369abceb72ecb439446e79be7f42cf749d79fbc0c7fd490937","sha512":"ff0824b0ccecfd65f0123d255d5578e6e281b47d14ca78dad739bc781123b12e33ab8263f7ee76a9fe8248d7a7a2571a87a5635e2a5c49a85f8090034e31cd88","ssdeep":"","tlshash":"79719cd1087be1149b831cc123cf6d37ee0e9255b810e5786bfe0c98adabc654362b2d","first_seen":"2025-09-17T02:36:20.355897Z","last_seen":"2026-04-06T08:23:24.619294Z","times_seen":1541,"resource_available":false,"data":null}},"time_used":436,"timings":{"blocked":194,"dns":11,"connect":28,"send":0,"wait":45,"receive":0,"ssl":154},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"metricswpsh.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI4NDI1NTkzNjI5MDUyMTA5MCIsInRpbWV6b25lIjowLCJ2ZXIiOiIyLjM4LjYiLCJ0YWdfaWQiOjM3OTg5MSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjoxLjYzLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9","fqdn":"metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"88.198.209.13","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 02:47:45 GMT","end":"Thu, 13 Nov 2025 02:47:44 GMT"},"fingerprint":{"sha1":"F4:AD:2A:0D:F1:0A:AB:04:F2:6F:6F:72:39:99:7F:4B:E4:5B:2E:4C","sha256":"12:8C:54:04:9B:26:0A:7E:35:D0:23:72:4F:A8:FC:52:77:D0:9D:FA:F5:AC:FE:2F:D2:49:97:F4:24:B6:72:0A"}}},"request":{"raw":"GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI4NDI1NTkzNjI5MDUyMTA5MCIsInRpbWV6b25lIjowLCJ2ZXIiOiIyLjM4LjYiLCJ0YWdfaWQiOjM3OTg5MSwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjoxLjYzLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjB9 HTTP/1.1\r\nHost: metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":217,"timings":{"blocked":96,"dns":5,"connect":25,"send":0,"wait":26,"receive":0,"ssl":62},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"4.adsco.re/","fqdn":"4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"162.252.214.5","port":443,"asn":53334,"as":"TUT-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.800Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_256_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: 4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 19 Oct 2025 20:04:01 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Methods: GET, HEAD, OPTIONS\r\nAccess-Control-Allow-Headers: Content-Type\r\nAccess-Control-Allow-Origin: https://luluvid.com\r\nAccess-Control-Max-Age: 2592000\r\nCache-Control: private, max-age=5\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":45,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"5b41cb22f84f645a103acc7bfbf084ff","sha1":"bac3967b26d5ec4a0d09a580714e8219796816bd","sha256":"709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc","sha512":"772066ed1119519a19884fc94de2c9f2cc538b4528d9e2651a89b93d65bd4000b18297bfbdd8903b65146858935d33cac048c321dad2ea4f1f84ca6dd9b7d98f","ssdeep":"","tlshash":"7990041154441d34dc45470c4f0d0f0553dc5153df377374ddc50f0414531344141d00","first_seen":"2023-04-05T06:05:36Z","last_seen":"2026-03-30T19:07:46.969854Z","times_seen":25700,"resource_available":true,"data":null}},"time_used":396,"timings":{"blocked":-1,"dns":0,"connect":95,"send":0,"wait":102,"receive":2,"ssl":197},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=36bcd976-797e-4c9c-ad6d-bc8ba200ed9b\u0026subid=675845462\u0026spot_id=2011895\u0026created_at=2025-10-19\u0026timezone=0\u0026ver=1.168.24","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.806Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:36:27 GMT","end":"Tue, 25 Nov 2025 02:36:26 GMT"},"fingerprint":{"sha1":"64:AC:96:73:4F:92:FF:85:D0:1E:15:16:DA:B2:A2:8F:FA:02:1D:05","sha256":"1B:3E:09:8B:67:DE:C9:73:00:B7:68:C4:8A:D7:17:4D:D5:19:A0:85:23:3B:65:9C:31:C6:FB:A5:8E:BA:22:83"}}},"request":{"raw":"GET /in/dip?event_id=36bcd976-797e-4c9c-ad6d-bc8ba200ed9b\u0026subid=675845462\u0026spot_id=2011895\u0026created_at=2025-10-19\u0026timezone=0\u0026ver=1.168.24 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Sun, 19 Oct 2025 20:04:02 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":345,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ukankingwithea.com/","fqdn":"ukankingwithea.com","domain":"ukankingwithea.com","tld":"com"},"ip":{"addr":"172.67.192.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ukankingwithea.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 25 Aug 2025 14:13:33 GMT","end":"Sun, 23 Nov 2025 15:11:16 GMT"},"fingerprint":{"sha1":"1A:11:63:8A:09:D9:A9:1F:C1:06:34:29:E0:E0:95:E7:BA:BC:63:A3","sha256":"20:A6:48:1D:DB:42:37:88:BF:13:AD:64:91:6B:C4:6D:02:EA:D4:98:E1:E5:88:85:C0:D3:03:48:B4:F1:11:49"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ukankingwithea.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: text/plain\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: https://luluvid.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: X-Requested-With, content-type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V2ClJX7kBZCNsMGXx%2BCVGibRqksBBi8KA4eb%2BZUB0%2B%2BjeMl1NX1ekw%2BPWNoyiyUpbJInMdscdMPjCsTcUiM%2Fo3hd81tVZzOavVIU0HMguBU%3D\"}]}\r\ncontent-encoding: br\r\nset-cookie: csu=1798666716519619@1@1760904239; SameSite=None; Secure; Max-Age=31104000\r\ncf-ray: 9912e1c93c4f712b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"bf2d5c1cb6db82817df5810a3db36e36","sha1":"7211932f617c5256acf5612c4de65c9124023027","sha256":"2458cb358144bd11a96177182ac01c111c7597b5baaae32a51f9e40fdff44609","sha512":"2c44c8479373fc87009594226c998e57adf29be4a7f11751e86ab0a8b99a981816380650c8b0d47506df5160273c895bf332850e17e0bf6b0ef772c1a2d082a4","ssdeep":"","tlshash":"778000f0200a88008800000ab2200808cb220a3332b88003a222288003088003c02cf0","first_seen":"2025-10-19T20:04:31.271318Z","last_seen":"2025-10-19T20:04:31.271318Z","times_seen":1,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":91,"dns":0,"connect":1,"send":0,"wait":144,"receive":0,"ssl":94},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"ukankingwithea.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S-402481521:1760904239721929\u0026ifkv=AfYwgwWVDb4t3g9OZo8THK7iW46pUCWO3PmOOTqGjwYvVS7vAjoUlUmb3l3vbYSsQserI3XWCVbzBg","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.806Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:42 GMT","end":"Mon, 15 Dec 2025 08:42:41 GMT"},"fingerprint":{"sha1":"FA:CB:8B:4D:1E:E1:88:7C:A3:C4:6D:7C:67:E7:45:EA:91:C3:CA:93","sha256":"D0:B4:98:FF:9C:E4:26:18:7A:1C:9C:E5:59:51:C5:54:33:E0:7B:5A:DD:DE:BB:57:49:48:07:42:3F:E4:D3:64"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S-402481521:1760904239721929\u0026ifkv=AfYwgwWVDb4t3g9OZo8THK7iW46pUCWO3PmOOTqGjwYvVS7vAjoUlUmb3l3vbYSsQserI3XWCVbzBg HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:j_ywTRH7gLUe1poN2Gy67K57z9DSsA:1ol0EMfAIvqiQUzO;Path=/;Expires=Tue, 19-Oct-2027 20:03:59 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026dsh=S-402481521%3A1760904239721929\u0026hl=en\u0026ifkv=AfYwgwURD_LchuejbEgkQrBU6H1lz2OQqDLZ8VIHBwXjul8pdLHG7SPOaCnaxGd_JwRtqHAd_qTr-w\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-7zzwbIwCK9APMzDyL56nrA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 421\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":51,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=yTCtexKaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=115402620211200\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026pload=1305\u0026rlp=%5B0%2C1%2C221%2C198%2C4036%2C2792%2C377%2C2456%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.925Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epidermispushupvariable.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Sat, 09 Aug 2025 14:34:03 GMT","end":"Fri, 07 Nov 2025 14:34:02 GMT"},"fingerprint":{"sha1":"40:4F:D3:3D:CE:29:0D:21:5B:B1:FC:30:44:30:73:D5:3E:39:B0:12","sha256":"A6:3A:27:4C:E9:A0:FC:0E:A0:83:6C:62:06:37:D9:62:73:79:53:72:72:A4:7D:33:27:A5:35:53:1D:D0:F1:CC"}}},"request":{"raw":"POST /solid.gif?z=2003354\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=yTCtexKaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=115402620211200\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026pload=1305\u0026rlp=%5B0%2C1%2C221%2C198%2C4036%2C2792%2C377%2C2456%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5 HTTP/1.1\r\nHost: epidermispushupvariable.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: CHCK=1; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\nUID=2510191503092aa491a10d490f84d39aaa1c; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-04-06T07:31:32.417342Z","times_seen":20522,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/srt/empty.srt","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /srt/empty.srt HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1; UGVyc2lzdFN0b3JhZ2U=%7B%7D\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nserver: cloudflare\r\nlast-modified: Fri, 08 Jul 2016 15:03:06 GMT\r\netag: \"2a-537211991fe80\"\r\naccept-ranges: bytes\r\ncontent-length: 42\r\naccess-control-allow-origin: *\r\ncontent-type: text/vtt; charset=utf-8\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qc%2FLDh%2BhnUkv%2Btg4idGUelVMf07I5n%2Baut5tj4YtrWON%2BHcNbSRQfoAeBW4b0yi5%2BNNVk7PjLbmHRG%2B5FmfVDbu5kDMsH0SACR30\"}]}\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c91d024e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42,"size_decoded":0,"mime_type":"text/vtt; charset=utf-8","magic":"SubRip, ASCII text, with CRLF line terminators","md5":"7f8501e8cf0fd2262e1ec59fa6653797","sha1":"5ea9200f583b21ec2008fc44447b2a15ab31f246","sha256":"f3adadb235f7ecab4a68f4d0961640c155c0d2057d28fe24e19d36b04904ddc6","sha512":"23ad6074030e0fc1cf24cd1085b974d27d25db4f336b432da5f79706208ba9c7945419d78c34b2ae88c2196f4b37bdcac53f8407e95bd8cf1ff98b9cdba54cd7","ssdeep":"","tlshash":"c29004d1ff314f51d4143340145033473151c4070dc550103050d051f5c5701c4013c7","first_seen":"2023-04-20T01:47:48Z","last_seen":"2026-04-06T08:23:24.559898Z","times_seen":853,"resource_available":true,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/get/2003354?id=2003354\u0026var=polish84\u0026jp=_clqqjawmabdcyfitkaydjt\u0026dr=49\u0026cuaa=1\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=yTCtexKaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=115402620211200\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026pload=1305\u0026rlp=%5B0%2C1%2C221%2C198%2C4036%2C2792%2C377%2C2456%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epidermispushupvariable.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Sat, 09 Aug 2025 14:34:03 GMT","end":"Fri, 07 Nov 2025 14:34:02 GMT"},"fingerprint":{"sha1":"40:4F:D3:3D:CE:29:0D:21:5B:B1:FC:30:44:30:73:D5:3E:39:B0:12","sha256":"A6:3A:27:4C:E9:A0:FC:0E:A0:83:6C:62:06:37:D9:62:73:79:53:72:72:A4:7D:33:27:A5:35:53:1D:D0:F1:CC"}}},"request":{"raw":"GET /get/2003354?id=2003354\u0026var=polish84\u0026jp=_clqqjawmabdcyfitkaydjt\u0026dr=49\u0026cuaa=1\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.614-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=0VbaBdYxvCMugwbFOz3pV\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=yTCtexKaHR0cHM6Ly9sdWx1dmlkLmNvbS9lLzBmNmFndnZ1OTliNQ\u0026afid=115402620211200\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=8\u0026dto=2\u0026pload=1305\u0026rlp=%5B0%2C1%2C221%2C198%2C4036%2C2792%2C377%2C2456%2C0%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: epidermispushupvariable.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\nUID=2510191503055cee0918724cd3bfe5872235; Path=/; Expires=Sun, 22 Nov 2026 20:03:59 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2086,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (2086), with no line terminators","md5":"dafce79d73767344255fc64ea819a07c","sha1":"32b4248126bda3870eb74c1343cd7d1ab45bbcf1","sha256":"153edfda06139763152c286db4ae80500df4a32f37f69ec420605377158241d1","sha512":"f64e9ed93a5fd0246b7cf2b0b2996d3cebaecf602f6e2dbb7dbc20db06d090cfdc6c09cb842ff35359db41531e6c1502f998971a9d61e7d90a378fdf02689b81","ssdeep":"","tlshash":"e0412fc07c83c49ca103788c67a96e812887074db8e3a7f1a0add61e6f6487b5f53dc9","first_seen":"2025-10-19T20:04:31.282931Z","last_seen":"2025-10-19T20:04:31.282931Z","times_seen":1,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"yweakelandord.com/QkU3cUVtelQCeBACcT0LCgsOJCslAWVCdBogZiMJIXRfVHcAAXI4YzYsU0x0cHUFQHx1Y0cYIX90D1c2NiRDBDZ/dBEYKyQqClczf3QZQWtwawJXMH90EQU1IyIKQGMyMUMdeHNyAUF8cnEFQnxydgU","fqdn":"yweakelandord.com","domain":"yweakelandord.com","tld":"com"},"ip":{"addr":"104.21.47.91","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"yweakelandord.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 08:53:24 GMT","end":"Mon, 05 Jan 2026 09:50:59 GMT"},"fingerprint":{"sha1":"E9:A5:59:FC:88:D4:57:19:6D:06:55:B2:AA:BA:2E:D4:5D:C1:D3:AC","sha256":"15:31:93:46:6D:B1:7F:8F:F2:25:E4:E9:A1:53:3E:FF:81:24:7E:B2:25:C0:07:FD:D9:48:B3:26:C3:17:1E:DB"}}},"request":{"raw":"GET /QkU3cUVtelQCeBACcT0LCgsOJCslAWVCdBogZiMJIXRfVHcAAXI4YzYsU0x0cHUFQHx1Y0cYIX90D1c2NiRDBDZ/dBEYKyQqClczf3QZQWtwawJXMH90EQU1IyIKQGMyMUMdeHNyAUF8cnEFQnxydgU HTTP/1.1\r\nHost: yweakelandord.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BxYC7nWmpzCTCCIOMTj8qIQIUwNJZ%2BwTR7eUawQoPS8%2Fztcy6qRRXemXu7fFS3uOKQiP5xpD4p7xnWWNG%2BqJcXAYmAZkKthCKgEZPslX5g%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 9912e1c6cee956ab-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":11,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:42 GMT","end":"Mon, 15 Dec 2025 08:42:41 GMT"},"fingerprint":{"sha1":"FA:CB:8B:4D:1E:E1:88:7C:A3:C4:6D:7C:67:E7:45:EA:91:C3:CA:93","sha256":"D0:B4:98:FF:9C:E4:26:18:7A:1C:9C:E5:59:51:C5:54:33:E0:7B:5A:DD:DE:BB:57:49:48:07:42:3F:E4:D3:64"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:aSrPUehv3FtIbkfEQxILfuXEIpJZOQ:-PKI5Omxu2tc3N1p; Expires=Tue, 19-Oct-2027 20:03:59 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026dsh=S-802094661:1760904239645337\u0026ifkv=AfYwgwWd_lbDBKbOXALpQyE62XjIlyiaxssLwqq9WPxpN7qejBuKb_S5z-GDK5m0rTQpHeqC93iDkg\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-3udXr_KoDgvMPH7-AU-2Zw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\ncross-origin-opener-policy: unsafe-none\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":379,"timings":{"blocked":166,"dns":1,"connect":23,"send":0,"wait":39,"receive":0,"ssl":127},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jwplayer.js?v=2","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.704Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /player/jw8/jwplayer.js?v=2 HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 23:02:18 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PY1IuGa1vemk3Sk7tFwD3nb2PwTrGa1pFEiIr44PPrZyEdMcFzKaXdkb6zra4OdLFjgGbDdELENtbrgNumuBjR0WHqUUXscNpgsY\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"1d82e-5fd9220ac069a\"\r\ncontent-type: application/javascript\r\nage: 1350\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c3bbd54e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":120878,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65502)","md5":"e596630eff0374adebc068352ed362ae","sha1":"156895e17acd4652f5816db5b310b341960edbbc","sha256":"816c99b4a2b3c2d2d7adca35b602c2b1f5ef56ffed67ae1a4d29bbeefa55ee90","sha512":"625450c3bfe0ea3228565c0f32f167850d3e60a2d90c049c87143c40cf8f413ee8ded3c94740f095c4ec088477ca67c4dd08d91205b6bfd38ced4175d404ce0b","ssdeep":"1536:AFe00b3VLgXLVuRXE0D6Z17WRtekdILG0Up:X0O31gbVuR96mLIy","tlshash":"d1c370ccb1d2b4a603a770b5517f620ef23b59c5384e8194ea25e9d5bc7864e9033fac","first_seen":"2023-06-27T00:33:19Z","last_seen":"2026-04-06T08:23:24.586121Z","times_seen":922,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/pop.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/pop.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Thu, 14 May 2015 19:57:56 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n5oK7pl0e84kefNNXjJrFnWQeGkBpSsvkL%2FSbXkhT2EO6COonhEBp9409cBK98%2BvQs4HDdQR%2FK9V6wZacL%2Bi55N0PwJeoL9248R0\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"24-5161024c91900\"\r\ncontent-type: application/javascript\r\nage: 6892\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c3cbd74e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"2f8fefc6a5aed3327c395f43db6be62d","sha1":"8594728c9e75e88e1a759e8c8466df832323d963","sha256":"ff687e2177537cc8e021014af056c22a44036a19c9101350dedf64a6666d47ba","sha512":"3a7708be2e5469b92a3ad6d3de28fc5edb20586011871e4cf799135037b6f2d162f372913364adce6f7b87ff1cff25bbbbaa5a6488348e4a41938e6b43ab94a9","ssdeep":"","tlshash":"f28000ee08e2bcbec02c0000000e02a802b00c00a023ac20a00e8e0233e2e00c228c2a","first_seen":"2023-03-07T01:03:07Z","last_seen":"2026-04-06T08:23:24.607082Z","times_seen":1060,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/provider.hlsjs.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /player/jw8/provider.hlsjs.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Wed, 07 Jun 2023 06:30:49 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iSN8X2HG5Z8YzXdyoaMUf4GM2neW8iqrgCk9SuTV2Liv6jbbjG7izs8OVhP6w%2FKqIEErwc1ciFD6gYcL5z1PX4t7TrMSaEn9Rtkc\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"5e59e-5fd8446d199fb\"\r\ncontent-type: application/javascript\r\nage: 6777\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\ncf-ray: 9912e1c5ac3d4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":386462,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65143)","md5":"e133e8e7b97079d4bc7ec71fae611795","sha1":"14f34839087df4a3a09ba2f11a768f0d14af979d","sha256":"f0d08bd0271c5d085f5d1419b1af887eb9c250aac800cadc4d5ea64c3a348e97","sha512":"c9d584c81ef63afa75e386a97e6467969aec410d4819ef8053e2c740785c03028338e5cf0f278b874bcf116a31ddb9451bf521c8a1cb30bc5d9cefe99f33c34a","ssdeep":"6144:saY41OZdKOOf+nSIY/4nN/Aq5YrOue7stE6KgT/:pY+/4BAq5Yr1eG","tlshash":"1d842adeb695b0664283b1a4903f5607633b7d0a7409c1acfb27e5d61db8889b03bf74","first_seen":"2023-03-08T14:31:25Z","last_seen":"2026-04-06T08:23:24.604209Z","times_seen":922,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/xupload.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/xupload.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Wed, 13 Nov 2024 21:12:37 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OV2U8WUhU8bhKi8O6AuOxajTBYJDgQx3G2H%2BZi7RpHkkQ9A%2Fil2m3N6L7kNCeCjl6vzNX11Frdp0SbCGBrWtomO26eKJUBHAIdm%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"2a10-626d1cb18bf4f\"\r\ncontent-type: application/javascript\r\nage: 6892\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\ncf-ray: 9912e1c3bbd04e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10768,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"36d53d0f509d1642267ebb68b36165a6","sha1":"18534c979b23a500124e316d07db0f42e4d72bdd","sha256":"435e82278b5b2cf7980b025827e97d4edeb310b8fe31ef18f8a4535f36ba298f","sha512":"e45c543c6b137c234ca332cf4cda2ffae6af1d8fdb83e900e8508f7407914e96e67bb3b81b4bfd5dada10cceefa1344aa4e7c47125577d605ad2bc9634b77279","ssdeep":"192:7IKE9YGs1qGHh+6IsZWnrbll621w+4UWdRebMQ4WdReDyYQaQv7OsaaFg+BnqGQi:EGCi6BlV9GRebVReDyYS7OsaaF10fq3f","tlshash":"f122654abaa339912a7730390bbf52043b398407114ace54bd5c96c4af8452897fbbfd","first_seen":"2024-12-01T00:07:19.913985Z","last_seen":"2026-04-06T08:23:24.6285Z","times_seen":712,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"img.lulucdn.com/0f6agvvu99b5_xt.jpg","fqdn":"img.lulucdn.com","domain":"lulucdn.com","tld":"com"},"ip":{"addr":"104.21.31.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.707Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lulucdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 29 Sep 2025 12:28:39 GMT","end":"Sun, 28 Dec 2025 13:26:45 GMT"},"fingerprint":{"sha1":"2F:C5:67:F6:FF:9B:05:8F:DD:90:57:26:6C:99:F9:34:EB:7D:BE:72","sha256":"0B:66:7D:FF:DB:69:A7:86:DD:B4:5D:54:A5:2F:F6:FC:94:FA:C5:64:4D:55:76:9C:7F:69:02:9E:14:5F:9D:70"}}},"request":{"raw":"GET /0f6agvvu99b5_xt.jpg HTTP/1.1\r\nHost: img.lulucdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 105767\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Sat, 04 Oct 2025 15:50:50 GMT\r\netag: \"68e1425a-19d27\"\r\nexpires: Sun, 26 Oct 2025 20:03:31 GMT\r\ncache-control: max-age=604800\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\ncf-cache-status: DYNAMIC\r\nspeculation-rules: \"/cdn-cgi/speculation\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JwWquE40HpxIoPg6UtKWPnxQlttQJ%2FHDrEYcRoy%2BhyYoopKpYO%2F2%2B%2Bvt42k6xg4%2FaaJa2XWWQHEui6E7fMCwwuZ1ZLQeCCObzJnBUr0%3D\"}]}\r\ncf-ray: 9912e1c3e9887127-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":105767,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, baseline, precision 8, 1200x604, components 3","md5":"19b759c121b7c98eec7770a8cce49eb5","sha1":"b01157fe9b7f60f4dff2c5304eed2b6a795ecfca","sha256":"84b1cdcde7ed038b43a64b6ffa1cab636519980164ad69a88ad84b73aa1eedb5","sha512":"13c289467ee5e128011599f2dc3028aa2767479ec353255d67ebaf1d0ff7dcd160ca6399e95d0f58e6df3f15eb8509e1422416dab62897e7f6e88d1b10e7844c","ssdeep":"3072:CJVdbZ4nCtlSLSPzEFcg2sB0As8ubrqOQv6NGv/:GdinHSzI2sqz8ui1vJ/","tlshash":"d2a31286ee0cf129ccd2d2fd9b07abcbb838200993bc17b59364d11c18d9b79d654a9c","first_seen":"2025-10-19T20:04:31.300467Z","last_seen":"2025-10-19T20:04:31.300467Z","times_seen":1,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":4,"connect":1,"send":0,"wait":42,"receive":101,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epidermispushupvariable.com/check.html","fqdn":"epidermispushupvariable.com","domain":"epidermispushupvariable.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.465Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epidermispushupvariable.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Sat, 09 Aug 2025 14:34:03 GMT","end":"Fri, 07 Nov 2025 14:34:02 GMT"},"fingerprint":{"sha1":"40:4F:D3:3D:CE:29:0D:21:5B:B1:FC:30:44:30:73:D5:3E:39:B0:12","sha256":"A6:3A:27:4C:E9:A0:FC:0E:A0:83:6C:62:06:37:D9:62:73:79:53:72:72:A4:7D:33:27:A5:35:53:1D:D0:F1:CC"}}},"request":{"raw":"GET /check.html HTTP/1.1\r\nHost: epidermispushupvariable.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Mon, 22 Sep 2025 06:11:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68d0e8af-39e\"\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":926,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"088dba8e97eede53134c93219f7ebbae","sha1":"adb707654d1fe0af7d0d7a9f55660d22bd3625e4","sha256":"6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff","sha512":"23a1f87731e8aee4658993cd1ce35ec179fea80b89bf52aca7634488f1bdfcf88b9cabca4859481357a9fee06cbb49df64bbe0878b1dae0e5df4fa34003c6d80","ssdeep":"","tlshash":"6211d04934e1684c1127a6301597a2183c32a40315cbd949fb9cd7301f815a7dc596df","first_seen":"2024-11-22T16:59:41.974716Z","last_seen":"2026-03-04T10:11:28.020186Z","times_seen":13721,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"epidermispushupvariable.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026dsh=S-402481521%3A1760904239721929\u0026hl=en\u0026ifkv=AfYwgwURD_LchuejbEgkQrBU6H1lz2OQqDLZ8VIHBwXjul8pdLHG7SPOaCnaxGd_JwRtqHAd_qTr-w\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"10:90:B3:3F:30:77:D6:5D:F3:F1:F4:8D:D1:61:AA:F5:9C:D2:09:E6","sha256":"AC:0E:79:60:FD:CB:6E:20:77:C2:D3:75:94:E3:99:85:B9:AA:9B:EE:67:43:40:78:7F:17:FF:3F:6A:BA:05:CF"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026dsh=S-402481521%3A1760904239721929\u0026hl=en\u0026ifkv=AfYwgwURD_LchuejbEgkQrBU6H1lz2OQqDLZ8VIHBwXjul8pdLHG7SPOaCnaxGd_JwRtqHAd_qTr-w\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-BhFpV8lrLDiLUUfboAS0Ng' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.OhYC1t3tRm4.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uk7lbpgqtmxx.l4.adsco.re/","fqdn":"uk7lbpgqtmxx.l4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"185.200.118.62","port":443,"asn":9009,"as":"M247 Europe SRL","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.825Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.l4.adsco.re","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Mon, 15 Sep 2025 09:14:30 GMT","end":"Sun, 14 Dec 2025 09:14:29 GMT"},"fingerprint":{"sha1":"AA:48:1D:E2:C4:73:88:D6:A0:D5:36:32:2B:EE:2F:67:01:C4:3D:23","sha256":"FC:04:34:8C:BD:15:93:CB:47:29:34:FA:05:BA:8C:F8:AE:96:33:7F:42:F2:72:62:C9:07:CC:D2:57:B3:1D:27"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: uk7lbpgqtmxx.l4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/html\r\ncontent-length: 0\r\nlast-modified: Fri, 02 Jun 2023 14:03:32 GMT\r\netag: \"6479f6b4-0\"\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range\r\naccess-control-expose-headers: Content-Length,Content-Range\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":130,"dns":52,"connect":24,"send":0,"wait":25,"receive":0,"ssl":53},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1528435705%3A1760904241570455\u0026hl=en\u0026ifkv=AfYwgwUsZzsXAob4dJ3bJJDd-H8ERCKSyW301z2WJKaoZ7I4sUzepRyvhAaCPGI7RINX8TIRoPQFwQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.738Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:40:36 GMT","end":"Mon, 15 Dec 2025 08:40:35 GMT"},"fingerprint":{"sha1":"10:90:B3:3F:30:77:D6:5D:F3:F1:F4:8D:D1:61:AA:F5:9C:D2:09:E6","sha256":"AC:0E:79:60:FD:CB:6E:20:77:C2:D3:75:94:E3:99:85:B9:AA:9B:EE:67:43:40:78:7F:17:FF:3F:6A:BA:05:CF"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1528435705%3A1760904241570455\u0026hl=en\u0026ifkv=AfYwgwUsZzsXAob4dJ3bJJDd-H8ERCKSyW301z2WJKaoZ7I4sUzepRyvhAaCPGI7RINX8TIRoPQFwQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:04:01 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-security-policy: script-src 'nonce-K1JsygUSu8XRcoDYLTIjQg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.OhYC1t3tRm4.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":59,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/js/jquery.min.js","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.687Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Wed, 03 Mar 2021 00:27:20 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BNqMyU4iwFgeSmaT5WLxdEHiWbGgtiAPrcta8URpV7zTNo11XKOv5M8yjBxSfCzXpFo2KIWNj4gPo63p2ZfeX%2FKSQ9dAWc7L%2FwCF\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"15d9d-5bc96e9f7ca00\"\r\ncontent-type: application/javascript\r\nage: 6892\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\ncf-ray: 9912e1c3bbce4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-06T08:11:35.016697Z","times_seen":445677,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:41:52 GMT","end":"Mon, 15 Dec 2025 08:41:51 GMT"},"fingerprint":{"sha1":"89:22:0A:7D:C4:DA:9A:62:E8:BB:1D:75:F2:AF:6C:80:09:53:D0:9F","sha256":"3E:15:EC:D6:31:6A:14:01:07:F9:F2:65:18:42:B3:08:7B:47:93:0C:CE:2C:93:2D:DA:E4:21:74:79:B6:F0:6F"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 16 Oct 2025 11:50:33 GMT\r\nexpires: Fri, 16 Oct 2026 11:50:33 GMT\r\ncache-control: public, max-age=31536000\r\nage: 288806\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-04-06T08:09:04.977405Z","times_seen":296824,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":113,"dns":1,"connect":8,"send":0,"wait":8,"receive":1,"ssl":107},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026dsh=S-802094661:1760904239645337\u0026ifkv=AfYwgwWd_lbDBKbOXALpQyE62XjIlyiaxssLwqq9WPxpN7qejBuKb_S5z-GDK5m0rTQpHeqC93iDkg","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:42 GMT","end":"Mon, 15 Dec 2025 08:42:41 GMT"},"fingerprint":{"sha1":"FA:CB:8B:4D:1E:E1:88:7C:A3:C4:6D:7C:67:E7:45:EA:91:C3:CA:93","sha256":"D0:B4:98:FF:9C:E4:26:18:7A:1C:9C:E5:59:51:C5:54:33:E0:7B:5A:DD:DE:BB:57:49:48:07:42:3F:E4:D3:64"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026dsh=S-802094661:1760904239645337\u0026ifkv=AfYwgwWd_lbDBKbOXALpQyE62XjIlyiaxssLwqq9WPxpN7qejBuKb_S5z-GDK5m0rTQpHeqC93iDkg HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:oydPdGulkyPKYV3GOiQbMTq_X6l9ww:TcXA-i3-DHPinQ-u;Path=/;Expires=Tue, 19-Oct-2027 20:03:59 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026dsh=S-802094661%3A1760904239645337\u0026hl=en\u0026ifkv=AfYwgwWyL0vEzSWUH7G47SpH8hGsbBxughcOE6fkoLoIYN_E3BfLDxUILI_PIC8U8PlOuLFQKiWaRA\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-rZsSNWRlH_eCNI0GVw4VjA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 417\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026dsh=S-802094661%3A1760904239645337\u0026hl=en\u0026ifkv=AfYwgwWyL0vEzSWUH7G47SpH8hGsbBxughcOE6fkoLoIYN_E3BfLDxUILI_PIC8U8PlOuLFQKiWaRA\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.251.9.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:59.916Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 08:42:42 GMT","end":"Mon, 15 Dec 2025 08:42:41 GMT"},"fingerprint":{"sha1":"FA:CB:8B:4D:1E:E1:88:7C:A3:C4:6D:7C:67:E7:45:EA:91:C3:CA:93","sha256":"D0:B4:98:FF:9C:E4:26:18:7A:1C:9C:E5:59:51:C5:54:33:E0:7B:5A:DD:DE:BB:57:49:48:07:42:3F:E4:D3:64"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026dsh=S-802094661%3A1760904239645337\u0026hl=en\u0026ifkv=AfYwgwWyL0vEzSWUH7G47SpH8hGsbBxughcOE6fkoLoIYN_E3BfLDxUILI_PIC8U8PlOuLFQKiWaRA\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sun, 19 Oct 2025 20:03:59 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-VwgIRlo1GiErLLB3OZ8i0g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.OhYC1t3tRm4.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uk7lbpgqtmxx.s4.adsco.re/","fqdn":"uk7lbpgqtmxx.s4.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.829Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: uk7lbpgqtmxx.s4.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":455,"timings":{"blocked":0,"dns":200,"connect":254,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"c.adsco.re/#0.16639779952221523","fqdn":"c.adsco.re","domain":"adsco.re","tld":"re"},"ip":{"addr":"104.17.139.102","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:00.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.adsco.re","organization":"Adscore Technologies DMCC"},"issuer":{"commonName":"Sectigo Public Server Authentication CA OV R36","organization":"Sectigo Limited"},"validity":{"start":"Mon, 15 Sep 2025 00:00:00 GMT","end":"Thu, 01 Oct 2026 23:59:59 GMT"},"fingerprint":{"sha1":"EC:13:B4:EC:A8:B2:CD:2E:12:E1:84:0E:E5:64:5D:88:D5:CA:3A:59","sha256":"C9:35:54:5E:EF:18:4E:21:62:7D:1D:23:55:D2:B9:CC:68:48:01:7B:AC:A5:8B:D9:3D:71:85:DC:07:17:02:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: c.adsco.re\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:04:00 GMT\r\ncontent-type: text/html\r\ncf-ray: 9912e1d12ff8a41f-OSL\r\ncache-control: public, max-age=2678400\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR\r\npermissions-policy: ch-ua=(self \"https://adsco.re\"),ch-ua-mobile=(self \"https://adsco.re\"),ch-ua-full-version=(self \"https://adsco.re\"),ch-ua-platform=(self \"https://adsco.re\"),ch-ua-platform-version=(self \"https://adsco.re\"),ch-ua-arch=(self \"https://adsco.re\"),ch-ua-model=(self \"https://adsco.re\"),ch-device-memory=(self \"https://adsco.re\"),ch-downlink=(self \"https://adsco.re\"),ch-ect=(self \"https://adsco.re\"),ch-rtt=(self \"https://adsco.re\"),ch-width=(self \"https://adsco.re\"),ch-viewport-width=(self \"https://adsco.re\"),ch-dpr=(self \"https://adsco.re\")\r\nlink: \u003c//adsco.re/\u003e; crossorigin; rel=preconnect, \u003chttps://6.adsco.re/\u003e; rel=prefetch; crossorigin; as=fetch, \u003chttps://4.adsco.re/\u003e; rel=prefetch; crossorigin; as=fetch, \u003chttps://6.adsco.re:2087/\u003e; rel=prefetch; crossorigin; as=fetch, \u003chttps://4.adsco.re:2087/\u003e; rel=prefetch; crossorigin; as=fetch\r\nexpires: Wed, 19 Nov 2025 20:04:00 GMT\r\netag: W/\"DSJfZXQzQDcKqYUstUK/qg==\"\r\ncontent-encoding: gzip\r\nvary: accept-encoding\r\nage: 185393\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":78912,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (713)","md5":"0d225f65743340370aa9852cb542bfaa","sha1":"75b869b7fe9e5bf9c70356841fb979b1b6c368b1","sha256":"d4d57cd30e17b462717663ce996c9c9503a93404aeaa31754792e77df15a93c1","sha512":"099072317bda8d335f173b79c2600f68d50bf84c1288ae72248d901929b11d219d2a3bfd0d4b207fa1491f51fc0419b98e59ccb93415dfd5ff2e2511c4b045b1","ssdeep":"768:dsmoTKUwrAjMo3m4MSHIMRBy5kgxYbFQzd9elw3mbuk92lLkt6WZjyQCT/8G2N2B:pov3m4bHIeEk+zd9elw3mb2VwQyAY3s3","tlshash":"40734ba97162702a43b238e9567f5311f1ba0aa02c0690d0d37dc9643c74edf927fb9e","first_seen":"2025-10-17T16:36:26.763699Z","last_seen":"2025-10-30T20:42:39.517924Z","times_seen":609,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=36bcd976-797e-4c9c-ad6d-bc8ba200ed9b\u0026subid=675845462\u0026spot_id=2011895\u0026created_at=2025-10-19\u0026timezone=0\u0026ver=1.168.24","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"94.130.198.6","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.175Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 02:36:27 GMT","end":"Tue, 25 Nov 2025 02:36:26 GMT"},"fingerprint":{"sha1":"64:AC:96:73:4F:92:FF:85:D0:1E:15:16:DA:B2:A2:8F:FA:02:1D:05","sha256":"1B:3E:09:8B:67:DE:C9:73:00:B7:68:C4:8A:D7:17:4D:D5:19:A0:85:23:3B:65:9C:31:C6:FB:A5:8E:BA:22:83"}}},"request":{"raw":"GET /in/dip?event_id=36bcd976-797e-4c9c-ad6d-bc8ba200ed9b\u0026subid=675845462\u0026spot_id=2011895\u0026created_at=2025-10-19\u0026timezone=0\u0026ver=1.168.24 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.20.1\r\ndate: Sun, 19 Oct 2025 20:04:01 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T08:11:44.873372Z","times_seen":13414019,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":3,"dns":0,"connect":0,"send":0,"wait":257,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-19","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mcpuwpsh.com/get/","fqdn":"mcpuwpsh.com","domain":"mcpuwpsh.com","tld":"com"},"ip":{"addr":"94.130.197.240","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:04:01.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"popunder-base.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 05 Sep 2025 07:32:10 GMT","end":"Thu, 04 Dec 2025 07:32:09 GMT"},"fingerprint":{"sha1":"50:EA:C1:7E:9B:20:00:A4:62:CE:FD:F9:FD:D2:E9:BE:77:FE:08:47","sha256":"81:9C:C4:CA:23:66:01:BB:6E:7A:21:04:B3:6B:69:EF:E7:F2:C5:8D:CB:6E:F7:3D:A2:3C:90:1F:BE:0B:6F:48"}}},"request":{"raw":"POST /get/ HTTP/1.1\r\nHost: mcpuwpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://luluvid.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1810\r\nOrigin: https://luluvid.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.16.0\r\ndate: Sun, 19 Oct 2025 20:04:02 GMT\r\ncontent-type: application/json\r\ncontent-length: 3126\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9488,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"ea5cd9317244125995026c7a7e5ae28c","sha1":"157b33d80a93cc1ac3a9178e75fc211db089880d","sha256":"6299373446d62a114d55ec37dc7719af24d1539410ab9e2240fe842b7c221bbb","sha512":"15cb612360f87c3db11621376ef169e251435b71f7454e0f4cb64aad64f040adba583a2953f79419b911a45e83f546bbd804036069971bb206232d40e5fe0339","ssdeep":"192:TN7Tb3yaxu37gkjyp+BU7ERhss17gkjyp+BQ7TVN7Tb3yaxuDRhssG:TN7Tb3307g8kkU7EROs17g8kkQ7TVN7L","tlshash":"161209c21ae3f960ac2c7cdae7a0a31897d7d7f61d83484fd9aa4e48494d35211c2f6c","first_seen":"2025-10-19T20:04:31.340006Z","last_seen":"2025-10-19T20:04:31.340006Z","times_seen":1,"resource_available":false,"data":null}},"time_used":598,"timings":{"blocked":98,"dns":6,"connect":24,"send":0,"wait":400,"receive":0,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.mbidadm.com/static/scripts.js","fqdn":"js.mbidadm.com","domain":"mbidadm.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.729Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.mbidadm.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 10 Oct 2025 11:32:16 GMT","end":"Thu, 08 Jan 2026 11:32:15 GMT"},"fingerprint":{"sha1":"88:9C:B6:EB:AC:98:A0:27:35:AA:FD:0D:B5:C2:CD:C9:73:16:3E:EA","sha256":"CE:C5:C6:50:83:26:2E:20:51:C7:C6:A8:25:AD:8A:40:64:89:39:5F:3C:65:63:22:12:7E:D5:E8:1B:BC:FB:E2"}}},"request":{"raw":"GET /static/scripts.js HTTP/1.1\r\nHost: js.mbidadm.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Mon, 13 Oct 2025 12:13:27 GMT\r\netag: W/\"68ecece7-2488e\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 19 Oct 2025 20:08:58 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1747\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":149646,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"87d68f03f3fde76843696feeca5fd7f9","sha1":"7dd349e529a30fd665a941b0d76b2efcec6e4480","sha256":"babca6218c85101f564e5f601d1624206b259bbd89c28f07e389582163f0a60f","sha512":"c6627d8d9e8c39531ef06aea7a1ce44805cd4a549b37aea6c9a02e6b9a7b30a4aea0e6ffb60a519e99849f74324e08913e2a16adb2b91c369b3ed66e69638e17","ssdeep":"1536:Z2c1pgoXEMtQy9RixdpOkxQKf7YbK2Ec+tskajUOPVKIZujAB5R1AuvfVf3dnCjH:BRizplOK8mvDtsjbnujATLRs+da","tlshash":"a8e33ac9b2d2b07407e75099d43f1206f73a1a16b80c9058f6a6e9c17878ddb9237f7a","first_seen":"2025-10-13T17:18:26.576821Z","last_seen":"2025-10-20T00:01:49.312869Z","times_seen":54,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":39,"dns":32,"connect":21,"send":0,"wait":21,"receive":0,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"luluvid.com/player/jw8/jw8-theme.css","fqdn":"luluvid.com","domain":"luluvid.com","tld":"com"},"ip":{"addr":"104.21.13.40","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://luluvid.com/e/0f6agvvu99b5","date":"2025-10-19T20:03:58.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"luluvid.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 10:35:35 GMT","end":"Thu, 25 Dec 2025 11:32:46 GMT"},"fingerprint":{"sha1":"06:35:19:EC:63:F1:3B:8F:FD:00:55:69:5E:26:2A:BB:A6:C5:B4:3B","sha256":"3E:46:01:59:51:E4:E9:2B:68:AD:BE:B6:11:BA:B5:D9:24:94:37:FC:92:D7:78:E7:B6:34:00:66:A6:32:C9:87"}}},"request":{"raw":"GET /player/jw8/jw8-theme.css HTTP/1.1\r\nHost: luluvid.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://luluvid.com/e/0f6agvvu99b5\r\nCookie: lang=1\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 19 Oct 2025 20:03:58 GMT\r\nserver: cloudflare\r\nlast-modified: Tue, 05 Mar 2024 05:34:02 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X7x1N6ZbkAgSJgqsmK1YCTh4bp56D3dD19ADRFdVvaynLN2o1GQNJtAGlFWeCmqW2pNx7HSdiPAKdwlpc%2BsOXXs1Ye9UCsclSPhB\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\netag: W/\"5f3b-612e330968823\"\r\ncontent-type: text/css\r\nage: 5798\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\ncf-ray: 9912e1c5ac3c4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24379,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (938), with CRLF line terminators","md5":"fe5e9757de5bbdd3f8157ce67950d325","sha1":"f7e4ea57093c9f84ecb4b2e11f5f548cfd62bad7","sha256":"0422fca1202e71e489ae82a3b4c530935be8b8685c532cfcafeced89f08d537b","sha512":"e8941f56e78e4ccbc1a5c42fd14b9d37049eb6781d7750a3e68b895237b5882ed7935a482834158cbc9d43723f0a40cc5212b49da18bf9515962c21466cedbf0","ssdeep":"384:tyqynyuymyHyoywyfyCy5yAyqyPybyiy/yJy9yDyDyDyRyOyJyTyJyDy8ymyCyUj:tyqynyuymyHyoywyfyCy5yAyqyPybyiA","tlshash":"73b273969242822c2d3b5678ff233a04ebaf7557d749a3e4be7c611c8b71183f0e5a50","first_seen":"2024-04-15T00:22:36Z","last_seen":"2026-04-06T08:23:24.62426Z","times_seen":725,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}