| nuuuppp.sbs/watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h= |  104.21.79.137 | 200 OK | 7.9 kB |
URL User Request GET nuuuppp.sbs/watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h= IP104.21.79.137:443
CertificateIssuerGoogle Trust Services Subjectnuuuppp.sbs Fingerprint7B:B5:71:99:90:16:95:47:89:2F:FB:77:0F:57:A4:D2:88:22:F8:72 ValiditySat, 29 Mar 2025 16:52:11 GMT - Fri, 27 Jun 2025 17:46:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2652) Hash3403ea3ae24f24124888dbe9cda9906a 04a764ffe6005f91a1fbaf329e04a2ae5b233543 3c793212d24fc585ae5414a10af9be5078cbe290e584028b9bd442e635c95ef2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h= HTTP/1.1
Host: nuuuppp.sbs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 11 Apr 2025 17:53:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
apacheserver: true
cf-cache-status: DYNAMIC
content-encoding: br
server: cloudflare
cf-ray: 92ec57489ed8712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| content.jwplatform.com/libraries/KB5zFt7A.js |  54.240.174.25 | 200 OK | 155 kB |
URL GET content.jwplatform.com/libraries/KB5zFt7A.js IP54.240.174.25:443
Requested byhttps://nuuuppp.sbs/watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h= CertificateIssuerAmazon Subjectjwplayer.com Fingerprint4C:E0:FA:4F:1C:F1:21:A8:0C:37:01:61:F5:1E:8E:A5:44:8B:32:6D ValidityWed, 25 Sep 2024 00:00:00 GMT - Thu, 23 Oct 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65145) Size155 kB (154921 bytes) Hasha6d48a93b3a8c70c1ec7ebc8291b6846 f8e98660b8a129c4e0fb89461153f396efecda6d 4d0a13030c1e703316904130665ae8e5d2f48e8781e233bdd967ed4c736b5c41
GET /libraries/KB5zFt7A.js HTTP/1.1
Host: content.jwplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nuuuppp.sbs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Fri, 11 Apr 2025 17:50:12 GMT
server: gunicorn
cache-control: max-age=180
access-control-allow-origin: *
x-robots-tag: none, indexifembedded
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P0RqK9UNw1BBZyqm0sRFJvj6B9f0jOCMf2y7940hb2JQBr6MlGOcCQ==
age: 168
X-Firefox-Spdy: h2
|
IP104.21.79.137:443
Requested byhttps://nuuuppp.sbs/watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h= CertificateIssuerGoogle Trust Services Subjectnuuuppp.sbs Fingerprint7B:B5:71:99:90:16:95:47:89:2F:FB:77:0F:57:A4:D2:88:22:F8:72 ValiditySat, 29 Mar 2025 16:52:11 GMT - Fri, 27 Jun 2025 17:46:23 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashfff4f52b7895545fc4d01991006bfecb fb3f3148a54545272f406563711481b5d7f9de88 64f10a08b5f1c6003510c48885a8e3ce5aa130d5a71d3187abae01a08b54f64d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /jquery.js HTTP/1.1
Host: nuuuppp.sbs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nuuuppp.sbs/watchpremium/NR8QI0fGeDDKAjAU7EZ6rs8j3ydyXGiaZ1sY2imIhDo?h=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 11 Apr 2025 17:53:00 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tNJbKt5A1j0qv8YS8BSWuZ5qbLhQ7gRMj%2BEX2zdDZwT7emcf8SIy3To5fLPohbu7BXYKFubao3LhSedfnZdIgwvAtFnvOIX5wMQmY%2FVELMqnv6aa%2FyYeOKxOfG2JyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 14 Feb 2023 21:00:44 GMT
etag: W/"63ebf67c-13fb9"
expires: Sun, 13 Apr 2025 22:02:49 GMT
cache-control: max-age=259200
age: 71411
cf-cache-status: HIT
content-encoding: br
cf-ray: 92ec574aff9bf5cb-AMS
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=24606&min_rtt=22811&rtt_var=12145&sent=15&recv=13&lost=0&retrans=0&sent_bytes=3934&recv_bytes=1468&delivery_rate=14276&cwnd=12000&unsent_bytes=0&cid=a1ee65ddb688297a&ts=235&x=16"
|