Report - us-central1-emerge-email.cloudfunctions.net/app/tracker/d60d559abcff582bb5ec38009c666928/0c1b85c1-0e79-4a71-97e7-4b24e5577aab/click?redirect=https://powercash99.top/

Report Overview

Visited public
2025-03-27 12:03:59
Tags
URL
us-central1-emerge-email.cloudfunctions.net/app/tracker/d60d559abcff582bb5ec38009c666928/0c1b85c1-0e79-4a71-97e7-4b24e5577aab/click?redirect=https://powercash99.top/
Finishing URL
powercash99.top/
IP / ASN
216.239.36.54
#15169 GOOGLE
Title
My Blog – My WordPress Blog

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

110

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-03-26	801 B	124 kB	142.250.74.10
powercash99.top	unknown	2024-10-23	2025-03-27	2025-03-27	32 kB	1.9 MB	104.21.77.194
us-central1-emerge-email.cloudfunctions.net	unknown	2015-12-03	2022-06-08	2025-03-26	633 B	196 kB	216.239.36.54
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-03-26	2.7 kB	199 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed
2025-03-27	medium	powercash99.top	Sinkholed

ThreatFox

No alerts detected

JavaScript (46)

	URL	From	Size	First Seen	Last Seen
	powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.9.7.1	ScriptElement	32 kB	2023-08-09	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 18:07 Last Seen2025-04-25 11:32 Times Seen2578 Hash 8be54ef27129e20478ca502b081a26a9 b22ef871fea44dd3b5cb05371497b8ec8d12e4a5 617fd0ce1a536b748feec2602721d96a4ef4d0297c17fecb49a356abc462d1d3 Loading...

	powercash99.top/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js	ScriptElement	3.9 kB	2024-05-22	2025-03-27
Pretty URL powercash99.top/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-22 10:33 Last Seen2025-03-27 12:04 Times Seen49 Hash 3f653b3dbb1729677a83a6f1895a9103 c0b398d0593a69aff3fb3bffcc0ef637f1690f8d 86472f9da01f586554b369a0c68d4dd001516dd6ad7168784f83464daf84f53c Loading...

	powercash99.top/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6	ScriptElement	4.8 kB	2024-11-13	2025-04-25
Pretty URL powercash99.top/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-13 05:08 Last Seen2025-04-25 21:56 Times Seen12260 Hash c6fddbb6be69793478de26fc245b2acf a136ebf5054fdc19729b3592005fe0fefec4bb4c 9a1e0d38b691f1d22a92cff65ec0439b428170ac39a4493c7ecb06d5585f56a3 Loading...

	powercash99.top/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.21.3	ScriptElement	5.8 kB	2024-05-20	2025-04-24
Pretty URL powercash99.top/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.21.3 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-20 23:30 Last Seen2025-04-24 13:18 Times Seen566 Hash 433c6063ff1d1210765920d4bc953899 92cb388b4b29bf512cf2f8ae007bd774f97d614e 70208adf6f66d47e2c620793900d2f60c79f2b90ab74eb2e2c3e8fbb086c3bc3 Loading...

	powercash99.top/	ScriptElement	989 B	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash a92f5bc884f91b6fdc4e6fca2c7652ea 90faf7cb3a76fb1346ccabe19109fc89f8b63edd 009a77f242623f28573c97d00f53bfb7570aaf75787e101eab109da9817249f3 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.9.7.1	ScriptElement	1.7 kB	2024-03-20	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 13:06 Last Seen2025-04-25 20:50 Times Seen8843 Hash 691a1e43450e7cda541a3bd6f10fd5db d3a78cb77ccec297c9d32fee99a2a4761f604a8c 8b083f64f2e9e8ac445c730dfce7013cc6449ce155fd1c2f42b60edba4ecb4b1 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.9.7.1	ScriptElement	2.7 kB	2023-08-10	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 12:12 Last Seen2025-04-25 11:32 Times Seen2158 Hash ba87701f6d844edf206e0fc2635c7d6b 3ff1e6667e387667456d5154f5aef723903c0ee1 3196159a327bb9655aa2150a88f46a6bd3705b71e149702db195d87deed79ae4 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.9.7.1	ScriptElement	22 kB	2025-02-27	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-27 04:14 Last Seen2025-04-25 11:32 Times Seen145 Hash 4f6a29a1ede817f20ac364907c3de13a 82a50deb4393975d9a1adf63023ce5991e536708 2137c4e292448183917a4ede265d546ab578e8ebd600b9922c44ac08f02c92f5 Loading...

	powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/actions.min.js?ver=1.6	ScriptElement	14 kB	2025-03-27	2025-03-27
Pretty URL powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/actions.min.js?ver=1.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash 3984814ea8a24244f221692b1995c131 65bbf85c82c4065edec50ca4e5423179fb9324ec 81f1f7d9de980d5471397e18e0638d491fafaee8371f53318bf0f429a628fb5c Loading...

	powercash99.top/	ScriptElement	3.2 kB	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash b3215c0073a54320f18ce2ccd0efe0bc 4f4c5f6aebe173a39e9f688b3f9ebcba56277f46 245558cff0b1e55095514fbca7cbeca72f5bed8dae6799d831f45b955e95bd13 Loading...

	powercash99.top/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-04-25
Pretty URL powercash99.top/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-04-25 22:45 Times Seen102680 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	powercash99.top/	ScriptElement	232 B	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash ca3b1a151748330a55f6bcbffcf29a4e 6e8482e358ce2ea009f25a655e184de00013adb6 3c8bb0eb7d76e60a59077da842de61c73ec06414b66e15473b2457967abf8cff Loading...

	powercash99.top/	ScriptElement	183 B	2025-02-26	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-26 09:02 Last Seen2025-04-25 19:14 Times Seen585 Hash bc7f7cf0b713068c13a5e0a3ec9a8eb6 904d15e0fef9f4b5d0c8e8d20e43eff72834b78b 611f465dffee2d9eb1b662fb125bc9c25388d41f80d0964e2bace7b773e2f8ce Loading...

	powercash99.top/	ScriptElement	70 B	2023-03-07	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-04-25 19:14 Times Seen6938 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	powercash99.top/	ScriptElement	542 B	2024-12-20	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-20 09:51 Last Seen2025-04-25 11:32 Times Seen115 Hash 07778504727a5537755de54319c89666 3abd2f97d4306261740d1242eed3abd533768391 24499d8c13b51066c48f418912b6d8ecdea6998c25b175f3807bb9ddc3a34b02 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=9.7.1	ScriptElement	15 kB	2025-01-21	2025-04-24
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-21 20:00 Last Seen2025-04-24 08:27 Times Seen556 Hash b37924334164622fcfc7c158cf5502da 0a2c0a37143f9681ddf4380bc3535daa4b1817f3 b5a19699e09d5c45d619e187081d069d46987ea3815799948dcdfd80b65c86e8 Loading...

	powercash99.top/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2	ScriptElement	19 kB	2024-03-13	2025-04-25
Pretty URL powercash99.top/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02 Last Seen2025-04-25 18:25 Times Seen45422 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	powercash99.top/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	ScriptElement	88 kB	2023-11-03	2025-04-25
Pretty URL powercash99.top/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-04-25 22:45 Times Seen88361 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	powercash99.top/wp-includes/js/imagesloaded.min.js?ver=5.0.0	ScriptElement	5.5 kB	2023-11-08	2025-04-25
Pretty URL powercash99.top/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 01:34 Last Seen2025-04-25 18:23 Times Seen15122 Hash 6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1 Loading...

	powercash99.top/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.27.6	ScriptElement	5.4 kB	2025-02-18	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.27.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-18 18:53 Last Seen2025-04-25 10:44 Times Seen906 Hash 85000f8fc8f17ac7bfbf5bb6c774bb6e 93756297a1d306eac3d5bcedce0fb3f98eb8fab3 ac4c254fda1f489c8a150a0cac9b909a5527b5517e0e312cef2be51b96dc10f7 Loading...

	powercash99.top/wp-includes/js/wp-util.min.js?ver=6.7.2	ScriptElement	1.4 kB	2023-03-08	2025-04-25
Pretty URL powercash99.top/wp-includes/js/wp-util.min.js?ver=6.7.2 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-04-25 19:14 Times Seen17856 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	powercash99.top/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3	ScriptElement	22 kB	2024-07-16	2025-04-25
Pretty URL powercash99.top/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-16 20:15 Last Seen2025-04-25 20:27 Times Seen15008 Hash 8fbc22c79d40119dde9a5d16897002b9 e9837519aca724457792e2d5ee98a97a0367cdf9 7e84c9f8d71bc6eb2dac2fce59a6caea62da51ffa8cf56b41806f59386ab1322 Loading...

	powercash99.top/	ScriptElement	922 B	2024-04-08	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-08 18:49 Last Seen2025-04-25 21:08 Times Seen10977 Hash 6e434b0b4f43ec7216073eed1f3ffb51 8d8a4ab1ed63889095bdf38ba646319b639feabc dd0ec57abf154d52c161fae92db6014f042417d9660679097ae55287041ec52e Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.9.7.1	ScriptElement	9.6 kB	2023-08-09	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 05:33 Last Seen2025-04-25 20:50 Times Seen15718 Hash ef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=9.7.1	ScriptElement	4.0 kB	2024-12-04	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-04 12:48 Last Seen2025-04-25 19:14 Times Seen2925 Hash d287805a49a165617edb2c8e53108510 be03d1aa839358050674f937277da8941cbcb69a 1f00e7386753e6994b5ff5ee61a772c3b5d9742694d00041e28fff83fee413cd Loading...

	powercash99.top/	ScriptElement	152 B	2023-03-07	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 20:50 Times Seen22484 Hash b8c40bf7c92768058d743847cccdb147 4fbbbcb2dda4d05e2e58bf43330c559b4165fc0b 7872ff233c7b2bfa962f491d0575e71f0b0b487bc63899ff4c72c7c9d5197688 Loading...

	powercash99.top/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6	ScriptElement	9.1 kB	2024-04-03	2025-04-25
Pretty URL powercash99.top/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-03 08:25 Last Seen2025-04-25 21:56 Times Seen26498 Hash a8127c1a87bb4f99edbeec7c37311dcd 9997a1745f48bdd233dbe9bd8164daa53eba105b f313d12ea6124bd28fc4a6b7163d253bb83d5aeab5edce594880c5c3df475cbc Loading...

	powercash99.top/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.21.3	ScriptElement	25 kB	2024-05-20	2025-04-21
Pretty URL powercash99.top/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.21.3 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-20 23:30 Last Seen2025-04-21 20:19 Times Seen569 Hash b33aae3ec2063fe0d08af8c7a0903b81 d42cec8fd2681c81590121329c90ccf052992b5c 3bc6a0f70b8792cf5564c7d756264316f1dce7b89e09db51730c6e8563fe5ecb Loading...

	powercash99.top/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.21.3	ScriptElement	38 kB	2024-05-20	2025-04-24
Pretty URL powercash99.top/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.21.3 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-20 23:30 Last Seen2025-04-24 13:18 Times Seen568 Hash 327e23ba197ee19ab77b76946f9ff5b1 7ff44359371dd08e1b868932f8f9154c60f51c87 a2a915b430d2ecabd493dab5cd1c465e2cfe2b1515e51417f836896ce7be84f8 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.9.7.1	ScriptElement	9.7 kB	2023-08-10	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 10:58 Last Seen2025-04-25 11:32 Times Seen2491 Hash bc5828df78492a4a4f6bd2ce666a3e10 ab13242beaf38e1eef2e649975c138d2a444ae1a 3aee8dfd37c44e7c9cfaf8b961d2d820689302840fa5b38477cc8492e0609f14 Loading...

	powercash99.top/	ScriptElement	180 B	2025-03-09	2025-04-23
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-09 18:21 Last Seen2025-04-23 19:31 Times Seen43 Hash 8383ccfbdc75de841604af671020a237 56a4737f0c5b73ef6500c0661f04b0c9c68eb5c1 d40c8b0b7348b942facba19ecaf89577b51c8ed9685295e49eaed9257ff1d27e Loading...

	powercash99.top/wp-includes/js/underscore.min.js?ver=1.13.7	ScriptElement	19 kB	2024-09-19	2025-04-25
Pretty URL powercash99.top/wp-includes/js/underscore.min.js?ver=1.13.7 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-19 21:06 Last Seen2025-04-25 17:07 Times Seen4538 Hash 16699a7f2aebe8d676042962c3bb5537 9697e3fe2d92c79debd82478603d4b59fc249714 5152316fade8c592fbfd38bc491e059464d967d3d31a582b0c885c0961deed30 Loading...

	powercash99.top/	ScriptElement	757 B	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash c4022cb7911ee875ea97b4178b085c78 4009ba1256dd4bd8c12987881bf20915b73847fd 741286ef2866fbeb1c172198b1077d8fec68901f2afad986e5cd6805588ce70b Loading...

	powercash99.top/	ScriptElement	68 B	2023-03-07	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 21:56 Times Seen23377 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	powercash99.top/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.9.0	ScriptElement	24 kB	2025-03-06	2025-04-23
Pretty URL powercash99.top/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.9.0 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-06 18:00 Last Seen2025-04-23 06:23 Times Seen94 Hash 89a7126b1123d0261a0371f7633f2059 749c238914e5c1d320de6ed691bc437d0813f5ad 8ebd90228f2ab8870aa03f29501910d879d2c2ea2197f1f113e4b16e1f489fd4 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=9.7.1	ScriptElement	15 kB	2024-06-19	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-19 04:58 Last Seen2025-04-25 20:50 Times Seen7156 Hash fc06080ebf979384eaf92a5f1cd7a50b 1474b07026c758629a82df51a5e4fbb7abf531df c50a0b33030ba0ec063be642c297f48af94359e2222ff140817248d591faf837 Loading...

	powercash99.top/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.27.6	ScriptElement	44 kB	2025-02-18	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.27.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-18 18:53 Last Seen2025-04-25 10:44 Times Seen919 Hash 2f4178ab3a59c6620d2446c1726976eb b861b102f989bed593aaf661d37f90ac03548218 75dd67187032c51f70fec4ff879b978202b184bfe6e5b8fff120ca6db4b2ee33 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=9.7.1	ScriptElement	3.8 kB	2025-02-25	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-25 22:19 Last Seen2025-04-25 20:50 Times Seen1215 Hash 8a8e50701dcf4550cfcde58f326d72f6 e8481df81508293f165d1e56332aecb6f17ce77e e073ff094226a8196931af17459be5dc394e221611e39704eb1a7916c383da2f Loading...

	powercash99.top/	ScriptElement	2.0 kB	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash 5ae690a178617ba491965f84fa322776 3c70fd97936d6f9845ac3b2de914e5c692ed79eb bda95bb802046b63268097d7fa948c9742510f7e3d8e0175d5381a4ff2757009 Loading...

	powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=9.7.1	ScriptElement	2.4 kB	2024-06-19	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=9.7.1 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-19 04:58 Last Seen2025-04-25 20:50 Times Seen7134 Hash 9cf70b7d6f2cc90cba9ee4f76eeaa92c e8b296c630f6a246a051e71b463e00c66e43876d 363aa2d4106f0f661a989977347dc0a55b612de18d3c0247cecc0ca725f98270 Loading...

	powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/popup-single-product.min.js?ver=1.6	ScriptElement	10 kB	2023-05-15	2025-03-27
Pretty URL powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/popup-single-product.min.js?ver=1.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-15 12:50 Last Seen2025-03-27 12:04 Times Seen2 Hash 3679ad631dc888dc16ecbc14fccc267a 117805e8529e977bce10dfc4cb8c581a91e13e8f ab7bd188a1598146e3641d9f3ca49889494edfc68baf12ef083e7e2e75ea413a Loading...

	powercash99.top/	ScriptElement	1.3 kB	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash 5f1d459319dd6c09b8529dfc5101ca4a a394922f1b316026806d3d7264285a62cd39844b 701300344626195fc4b8159d19aa724e78287843bc06b1d4a4c32306b110f2fe Loading...

	powercash99.top/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.27.6	ScriptElement	60 kB	2025-02-18	2025-04-25
Pretty URL powercash99.top/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.27.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-18 18:53 Last Seen2025-04-25 10:44 Times Seen905 Hash 120d8ab8e0d07a0ca8c76ccbdccf6b00 817fa6e1ec814f2e37f8737177e761a7823205ae 6f7b29d71370d557c6735320304d96ca4b70e4bc7a3ebcbe8fb6ea2340f1c9a1 Loading...

	powercash99.top/	ScriptElement	2.7 kB	2025-03-27	2025-03-27
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-27 12:04 Last Seen2025-03-27 12:04 Times Seen1 Hash 0b28aa0c1f1da07f625f2e7884369ac7 b98d065d1a041a133897877ecaa19a467eacf83e 712196a5dc7f34e5a37ddf963e3780ea128d6ef329b61c19745b8dcf4068b805 Loading...

	powercash99.top/	ScriptElement	333 B	2023-03-07	2025-04-25
Pretty URL powercash99.top/ IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-04-25 18:12 Times Seen7267 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/sweetalert2.min.js?ver=1.6	ScriptElement	73 kB	2023-03-26	2025-03-27
Pretty URL powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/sweetalert2.min.js?ver=1.6 IP 104.21.77.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:06 Last Seen2025-03-27 12:04 Times Seen2 Hash 55999eabf8eace7ee62062a3d5bec6d1 5bcf9ead00de37ff6643b1d784524714436f8271 1702c668c25366fb67b4ab83b08f6a610ae42af67beb443419d4c45f21d9e397 Loading...

HTTP Transactions (62)

URL IP Response Size

powercash99.top/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=9.7.1

104.21.77.194

200 OK

7.9 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (7947), with no line terminators
Size
7.9 kB (7947 bytes)
Hash
8006427850065a7c5cb201106526e8e8
eaf74274d33c573ceba6b77007030a667a95b637
41addf481815e1b8edad5e8b3a7db1cd9cb070046b7e60a5d042baaa01f7b202

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/photoswipe/default-skin/default-skin.min.css?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JTBUsr7q3SfiK77FKrThcvI%2FXQYXs2yPqc4S3AO4evr%2BNgihwYtIi3z3FazuLo8UJCl46F8B9gWwyEZ%2BdEziwx2EENyWorDpdAi%2FatKTtled0Ffbgbjj%2FBz3XQlCYR5xIDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce1fdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=91&recv=63&lost=0&retrans=0&sent_bytes=81297&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9922&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/2025/03/138-up-1-300x300.jpg

104.21.77.194

200 OK

19 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/138-up-1-300x300.jpg
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
Size
19 kB (18780 bytes)
Hash
aede4ebf1134f390a76abaa99a0902a4
7e224d65fd2d5b0b7ccaf8be2fb0cff4c5854b37
18a4d171e4f9d8e0ccce490dd0cb940da730b881ac7164d2e1087fdd56f7be52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/138-up-1-300x300.jpg HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: image/jpeg
content-length: 18780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BPJk0mrtM4zT53bB2uBGeu1EovP9C%2FV2IOQG1hxM9S8pRYwG9cAFIzSMRIjdh5RSr3AoiJiOlNtBNCcTyE7b1mKoI3rbEDMF6KiPQSONgsFg7d2Iav83KzFQnT5c8%2FLvLXE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Wed, 12 Mar 2025 19:47:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf223c04febb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

us-central1-emerge-email.cloudfunctions.net/app/tracker/d60d559abcff582bb5ec38009c666928/0c1b85c1-0e79-4a71-97e7-4b24e5577aab/click?redirect=https://powercash99.top/

216.239.36.54

302 Found

195 kB

URL User Request GET
us-central1-emerge-email.cloudfunctions.net/app/tracker/d60d559abcff582bb5ec38009c666928/0c1b85c1-0e79-4a71-97e7-4b24e5577aab/click?redirect=https://powercash99.top/
IP
216.239.36.54:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services
Subjectmisc.google.com
Fingerprint66:66:17:8A:0A:82:CB:9F:B3:66:1F:CE:88:E4:BD:CC:BE:E5:F3:8E
ValidityMon, 10 Mar 2025 08:36:15 GMT - Mon, 02 Jun 2025 08:36:14 GMT

File type

Size
195 kB (195284 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /app/tracker/d60d559abcff582bb5ec38009c666928/0c1b85c1-0e79-4a71-97e7-4b24e5577aab/click?redirect=https://powercash99.top/ HTTP/1.1
Host: us-central1-emerge-email.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
x-powered-by: Express
location: https://powercash99.top/
vary: Accept
content-type: text/html; charset=utf-8
function-execution-id: cbb66o0gsu08
x-cloud-trace-context: 5346d501ab2acbae6c2041b1d5b7ad75
content-encoding: gzip
date: Thu, 27 Mar 2025 12:03:38 GMT
server: Google Frontend
content-length: 90
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.9.0

104.21.77.194

200 OK

46 kB

URL GET
powercash99.top/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.9.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (43557)
Size
46 kB (45739 bytes)
Hash
7aa9be2b6bc3772350fa1059d461af6b
25b94188cde43738f3a0e658b22401a534e5be48
44622e9d59e3d2c9c4ffb9fc53d368e250f382ab07a3df978410eaa86556cff9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.9.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:47 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 09:20:35 GMT
last-modified: Sun, 09 Mar 2025 14:19:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 9792
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rurh1%2BBU%2FkfDDpzDz8pOsC8ujgCfvA%2Bxbu6uKJoTx%2B5eBd0Ff8F46TepEPT1GkMzAQQdYZ7mPxdt6IshOFQzTMkGhzqTGAcjA4j0UwU%2Fu4384ziBFky7QMJ%2BKESM%2F73k2kI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adb0db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20165&min_rtt=19588&rtt_var=974&sent=32&recv=39&lost=0&retrans=0&sent_bytes=27392&recv_bytes=2522&delivery_rate=800361&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9844&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.21.3

104.21.77.194

200 OK

5.8 kB

URL GET
powercash99.top/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.21.3
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (5964), with no line terminators
Size
5.8 kB (5825 bytes)
Hash
0342ec0bf9df135330e54758b32cd710
a83559852e0b5363e7e95057f54eca29245533ef
e9b25ed50b495ebc00b74af4abc4883343ac6c2f2fc3f2406ef7562104a77265

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.21.3 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LaJnNau5c99lRaPgtn812xAj7Mkw3%2FSbKCs%2FR6KTeqO5N2EHWJKBm%2FlpgwcIQWNWqYw%2BzXrDgpLwMCTQ6qt7h1zpvvCRQUqQQoVcSfhI0al1xvoJWu7hjhso3oRgJPtvIPg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Mar 2025 18:18:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf232c2cfebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/favicon.ico

104.21.77.194

404 Not Found

1.3 kB

URL GET
powercash99.top/favicon.ico
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
HTML document, ASCII text, with very long lines (1285), with no line terminators
Size
1.3 kB (1251 bytes)
Hash
94f08a3a6562f7f079c4f5a67b7260e2
cc5d03e17c41ee6bb2ebf0d26d4354a486ca1823
44ea069d9a3f7dcea953ac173384578b6185f4b2ece05a6f4513b9fda29c4c29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fpowercash99.top%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j3YJax56wMaA4FW8smflSR96SwicsjnnCuXHl7VP2KJwcg0E5AD%2Ba3bpPdeXpeaVI4yUQI62Z9ilZ4mCcMoq8R0q0aKMY%2BA93HrzMfG3YWmYByuftmNrikNNbVTRSsrXpZA%3D"}],"group":"cf-nel","max_age":604800}
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
content-encoding: br
cf-ray: 926ebf260c8efebb-AMS
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://powercash99.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 10:03:46 GMT
expires: Fri, 27 Mar 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 7202
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/

104.21.77.194

200 OK

195 kB

URL User Request GET
powercash99.top/
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
195 kB (195284 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z40sD9P9jsq5vlNDC4whqVPqa%2B33M0uMxiyMo%2BzOksckfYUGZsca%2FY6g2jZ21lQ%2B0vRL84cqsVqZ9ItfzA8YI2%2BZWKSpHUF67WpE9CXXKvjGZMMY%2FkGy6nk%2Fr6YE2f4uT4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebee37d02db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=24956&min_rtt=19679&rtt_var=12841&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3283&recv_bytes=1253&delivery_rate=219515&cwnd=220&unsent_bytes=0&cid=9145aa09e0046b57&ts=9225&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.9.0

104.21.77.194

200 OK

118 kB

URL GET
powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.9.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
118 kB (118098 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.9.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:47 GMT
last-modified: Sun, 09 Mar 2025 14:19:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YHoBs7yjkiF%2FiJHmK%2FCVqtaPkvcGgTx2qFPRMc941FOWVoCUall3%2Brw%2F7%2BjLcFlNqMTXzvU24%2FtUW7WyC2e6MlUUnsrbD4Mo2GOuoD%2Bo4IP73%2B%2BelnRdKIT5GJFNLrq1CTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adb7db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19847&min_rtt=19565&rtt_var=236&sent=163&recv=72&lost=0&retrans=0&sent_bytes=149313&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9934&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/sweetalert2.min.js?ver=1.6

104.21.77.194

200 OK

73 kB

URL GET
powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/sweetalert2.min.js?ver=1.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (48397), with CRLF line terminators
Size
73 kB (73141 bytes)
Hash
55999eabf8eace7ee62062a3d5bec6d1
5bcf9ead00de37ff6643b1d784524714436f8271
1702c668c25366fb67b4ab83b08f6a610ae42af67beb443419d4c45f21d9e397

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/sweetalert2.min.js?ver=1.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3rVvla6asa6dQ0GB8tN6cGgSW%2FxYzb%2Fv8XLLGmoIZgg16e4NR61rxxBANRLNISghthHjs%2BSLgIPbR6QZLLwAHYZq1HrnbdMkRLmG0iIFfT8bj%2BD2Zj%2FSVuN3Xfgfq4YSgW8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 11 Mar 2025 06:19:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac1afebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/popup-single-product.min.js?ver=1.6

104.21.77.194

200 OK

10 kB

URL GET
powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/popup-single-product.min.js?ver=1.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
10 kB (10474 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/popup-single-product.min.js?ver=1.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BJDSufIiOEW0hXlk6UPvVwHJLtCIKhWMIeaeItuRDsmQhpzT3kd7inDXQHbTWkO%2F7isJvUUOJf1Tu1Ma6YGEIwgR4cBiUDApkaUpulB1wddSvBBTVvHz1mF8Q3RHLHkhmcg%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 11 Mar 2025 06:19:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac1bfebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=9.7.1

104.21.77.194

200 OK

2.4 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (2412), with no line terminators
Size
2.4 kB (2356 bytes)
Hash
3b2c8ddc31fa184eed82fd0b7833b5d4
d3020e8b5dbcc5606dc81c044ea77ec9e1ee498f
f01617cf6b795c77b9336107cce1f8bd9bb4f8ddce3e0d40dfbd821728b98c3b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3ZKUBTEiVvCtCkvjINJ2tKMzPSuF66bU6SzOBLpxnkxwIaebGQlozGdsjovAN%2F4gAcaa9clNtmCJh3Wm8E5ffFdLa5cG5%2FRdFtGTDRz2%2F%2Fmp9JMuSNI9Op7PYF1V0GXf6FA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac17febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://powercash99.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 10:03:46 GMT
expires: Fri, 27 Mar 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 7202
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.27.6

104.21.77.194

200 OK

5.4 kB

URL GET
powercash99.top/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.27.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (5457), with no line terminators
Size
5.4 kB (5350 bytes)
Hash
5b85eb9adcff1ad788bbb07d3c7741e5
3a9214921666abdee8ef18ba14e162bdd3a7ca17
1d78ecd09e0c9cc884adf302b40f79982cfdc34322daa31ed4bbd95519f3caee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.27.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s5OGP3PJKIOFdG5%2BM3qXWhAcwGQkbEJqlx6kD%2FNlWYBlqHrYYtvwbtfBp%2FL3esyq59mtPxBsdLVUYdabKVJEMsTUKRPFsd%2FWFYWPisCu146kG5eqKxG6%2FJmK4Yf7XOjnSwY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:45 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c2ffebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.27.6

104.21.77.194

200 OK

60 kB

URL GET
powercash99.top/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.27.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
60 kB (59749 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.27.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5TwGcm%2FNemoXuSl%2FtoXeaAbu67is1LXv34gvlxs1QK9DXgAG7ZNM4GtW8wheIk%2FxYQxRT8XNiO95rIv2f1fkQjYHg8GVP1eQTQlmTv0HdkHaEP%2BB0iLD4PUTTDx%2BuFAMvQw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:45 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c31febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.27.6

104.21.77.194

200 OK

53 kB

URL GET
powercash99.top/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.27.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (53229)
Size
53 kB (53269 bytes)
Hash
4f506205bcc683507cebd23be376b7bb
02c84bab95351436b6e9b703230fa55939c80b39
e57d779ca78ccaeba427caad02796710cc04d789f6da7c65a573b3f0bd179d08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.27.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:47 GMT
last-modified: Sun, 09 Mar 2025 14:20:45 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Ilavf97MC%2BLB2poKAumi9XCeDSyn6BbmZzmvKe4vobHklTf9EZE2ERtEt4Z5Z%2BsSNcRBNGbCS1AsZxjWi8XvV%2BKH77Xqp1zyapdmS3KtGsODfQlgS%2FzzVGf2TH4oM%2BfGQI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adbddb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=67&recv=63&lost=0&retrans=0&sent_bytes=61879&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9905&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

104.21.77.194

200 OK

88 kB

URL GET
powercash99.top/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Mon, 28 Aug 2023 11:14:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gJVQZN3nmhgIPmEGtDcErsmF4gD%2BMcyTroBftyrjWcXepS0dHrcxmmraIYu1fMpfIAtQnEziGfayFlUQiou9K47w1aZmASU9M6pPTFPaFm37qf3lsZgaqsbYpQV0Z4ahU6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce21db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19847&min_rtt=19565&rtt_var=236&sent=149&recv=72&lost=0&retrans=0&sent_bytes=129952&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=3763&cid=9145aa09e0046b57&ts=9931&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=9.7.1

104.21.77.194

200 OK

3.8 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (3990), with no line terminators
Size
3.8 kB (3804 bytes)
Hash
cacfa516bca55e358bdf50e4f6895d34
f932fcd7fc6d630a63d883615809bd497e193025
527bcffd66c6c99543c062826ceb84b86eb388ca68f5ee1c3a909fcc658f27b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LRGd4fAgZIvvxS%2BtCBIbDk%2F9Rn4gxKyUJKPvrV5bGkdmlrEguHEo%2BogsZHHRbl%2BXctY8MFTfjjgiKgxUpb81CTxJu3IXdKoNmAYIKkDkiwnwg6%2FAHEJ6hb20UscMVsZn5rs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce29db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=100&recv=69&lost=0&retrans=0&sent_bytes=87810&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9926&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.9.7.1

104.21.77.194

200 OK

9.7 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (10054), with no line terminators
Size
9.7 kB (9749 bytes)
Hash
971063913c23ffc0b41e3c06d7332277
59634db526f5a8ed5af36da498577a88bd22c89a
59c4d86173a777a983d4e30188f83bc474a846598ca23a913fa62c34c8e359e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe-ui-default.min.js?ver=4.1.1-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yc3pGbdZTaK7UQ8NS9vFQ3QrvDB4bbMfiXG0iGnam%2BSK1BWeQwodRBpc72X1%2BsecDjLQQtiE1clYJh9AQkVV7GsbDI8lr6ZRu1wd53YTvJeNB%2FCZ%2BkyvAjGC9%2FcCeEEOxR0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce2fdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19847&min_rtt=19565&rtt_var=236&sent=148&recv=72&lost=0&retrans=0&sent_bytes=129510&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9931&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.9.7.1

104.21.77.194

200 OK

1.7 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (1759), with no line terminators
Size
1.7 kB (1720 bytes)
Hash
40fb244b78cdf7946fec16564a2bdc9a
e80ebc14cdb2cf0a3625116ddb770da57bbbd506
76c56d908e9de1877fbe3f7bc1c90656c07bc7b9a69b2bde9f950456d37cbb9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vU8O3qsw%2BBr1EuIQc6mbnIVs76Z7r0U4flYIxG3O82cLJrGC2eVviUML8mhplACSV%2FFwNjBbZ8syS4udkO2Ts9GwH48GH071QsXpjsbyCo%2Bps12HCLj89fRQC4wztttMO4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce28db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=116&recv=69&lost=0&retrans=0&sent_bytes=99611&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9928&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/2025/03/slider-01.jpg

104.21.77.194

200 OK

148 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/slider-01.jpg
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1050x450, components 3
Size
148 kB (148202 bytes)
Hash
2c015ba0b82ee2d9eb6cbb39c4a6052c
e2e8bebf893d5f66caa88cf3580d70e5394b305d
c81b6a26ce13e80ae8be3dbef2a7ec988fea578e09e3db39b5571feceb77c846

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/slider-01.jpg HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/wp-content/uploads/elementor/css/post-146.css?ver=1742842724
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: image/jpeg
content-length: 148202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4VrP4yPN29FwgtAsKIqB799xW%2Fye9B8v9gT%2BIe6I2573ucNfj9Q%2BFtu1SOEy408lOdYqLdjEi%2FXMiHhmOi1Rc8jW4lQk8GldHnpPMtULQHwzkZAWrDjO9bXxwVCLNjHM0kM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 15:26:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf22cc20febb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.27.6

104.21.77.194

200 OK

4.3 kB

URL GET
powercash99.top/wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.27.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (4301), with no line terminators
Size
4.3 kB (4298 bytes)
Hash
4d0b58ca9e020c57c94505e4b087ac31
90da69c50fd8d97a5f963795b02629454769b4b0
bf608acda2a81ef742f16702533819d8175c7b9e5ca52e645e6d1d98edf541cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-divider.min.css?ver=3.27.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:20:45 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Gql0rXnDpFYghhO%2BLGNa5z5He1LhE4NoC1BygC7GEDcpffDWJQ1uU5l18RmYa3JwDWHbprdmHS16F9oqAog4wz657UHXOc9Ji1TrclNIMm7uhFUtJGVhWAaZP%2FKMhtl5aY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adcbdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=79&recv=63&lost=0&retrans=0&sent_bytes=72292&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9910&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/elementor/css/post-146.css?ver=1742842724

104.21.77.194

200 OK

8.7 kB

URL GET
powercash99.top/wp-content/uploads/elementor/css/post-146.css?ver=1742842724
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (8695), with no line terminators
Size
8.7 kB (8693 bytes)
Hash
52a7325a32a6984dd42f72d8f2b3e53e
36929e4bb97c37844b8abcebf4023769bedd932f
f31092654e3b35bb776c9ba91484b9dc288b5bd8dc19b4a5443c868c4ed56b3b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-146.css?ver=1742842724 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Mon, 24 Mar 2025 18:58:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xOsDBYjq2v9DUoyIb5lgk0xjj2ToLWOYyxL7W4RQBRonoeYSRLoR9TGjH4j%2BORdBROL%2BrWKl87mOIYd50vHLDl20IDI2D%2BPbgjEhHAy7PBiB6dDUPgq6EC27a8Ccj24AhbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20bdcedb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=82&recv=63&lost=0&retrans=0&sent_bytes=73593&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9916&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.9.0

104.21.77.194

200 OK

6.0 kB

URL GET
powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.9.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (6007), with no line terminators
Size
6.0 kB (6005 bytes)
Hash
a660cab6518150985112c85b34422115
de08a93c0021e647fda481a34b02b7bb567379f1
6e757008914c08b29ae10a6a944423bb53ade18300a32e6261a41b552a01e927

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen-grid.min.css?ver=4.9.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ySPkBUcjAKpCIMxPjV45Ky9%2FkNlQk1Pii0xLqyrEDqdCXWIB2e46Xnv1qOzAk18LNEuINffZn0pPh4LygtocNr1e21ZnUOLlFh%2FI4gq%2BRkvhJFy0%2FeKLJKnZoKrLb7dJsYY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:19:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf224c06febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-9.7.1

104.21.77.194

200 OK

13 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
13 kB (12942 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/client/blocks/wc-blocks.css?ver=wc-9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ll4cJmVRGa4TGueUcYhLJB%2FFxlEbljMmw0MjV7DVuVvqDhmd8F198h5P6gv0xOv6yFxed5BDXWw7jfvhC7Y5sS4M1Y%2F5sM6s7%2F2J%2Fu2maCfOSm3iNwYMRGoX3HVZR9sTxTY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf229c12febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6

104.21.77.194

200 OK

9.1 kB

URL GET
powercash99.top/wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (9425), with no line terminators
Size
9.1 kB (9141 bytes)
Hash
1fb2af886396b544159f85c0c83bd895
e95db4a68dcaf71d20f92f4626ad7818496b3c35
0b05f9ebb0e1023e006019337a5642980ac33491097276b0851b9e8e42ae5daf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=5e580eb46a90c2b997e6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUCuTSnN63vFyA%2FO4LseY%2FaQhK4Cfa%2BK%2BADmJIKp04mHnNkH%2B76VzdOLdCql%2BUhj7fjz574D8JHEw%2BTHavPj7omj%2B7dntbPsJY%2BHvpDsvVMQ5jenwQxnYGfyvHIwC1cNxy0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 15 Feb 2024 10:53:16 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22bc1dfebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://powercash99.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 10:03:46 GMT
expires: Fri, 27 Mar 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 7202
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.9.0

104.21.77.194

200 OK

16 kB

URL GET
powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.9.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (16313), with no line terminators
Size
16 kB (16313 bytes)
Hash
4321978db50e5bce02a0e65f44740ddd
b83fbe98c317005296e90acda65ea8c70702f871
a6c33567692ef51c1b155cf5dd8ade9021e887419acc78e2342535c007e7f2a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout-grid.min.css?ver=4.9.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:47 GMT
last-modified: Sun, 09 Mar 2025 14:19:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NGzkyu71Sy5ua3DqGrv7t2FA9jKdWfwaqQ690CFq2u%2BOkn35RZ%2B5DDMMO11%2BoiUoMs8MzGAU7U08ObdJWH%2B1NLX5gP1ocrtJij5wmhhNcMXzchzm2yc8HI3ATEhwN5pRSfA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adb3db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=75&recv=63&lost=0&retrans=0&sent_bytes=69698&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9906&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/elementor/css/post-10.css?ver=1742842724

104.21.77.194

200 OK

1.2 kB

URL GET
powercash99.top/wp-content/uploads/elementor/css/post-10.css?ver=1742842724
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (1235), with no line terminators
Size
1.2 kB (1227 bytes)
Hash
6ec65965e4a37b4f3fee45bfd02e2365
2f7737ade3237362bc066c7c18635928b4a3c8d9
20a1f81b349ccf5fab583f18a41b210176ecb10d0b269b33b810a4a15ce1f0a3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/elementor/css/post-10.css?ver=1742842724 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:47 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Tue, 01 Apr 2025 12:58:39 GMT
last-modified: Mon, 24 Mar 2025 18:58:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169508
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aZ%2F%2FblcCoFrTY%2BATNAxuxRdjTKQ8hVcQ0bKYChgqq9Gz1ZM5iwCqN9RnzEm9I0w5Fr6cCWCAu8kHLT52VWqNGUZ%2Bj6pZfUXgjvvEggbMZFIIT0GUtS8s6w3qg7f72nD2w4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adc1db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=20165&min_rtt=19588&rtt_var=974&sent=41&recv=39&lost=0&retrans=0&sent_bytes=37452&recv_bytes=2522&delivery_rate=800361&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9845&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/fonts/star.woff

104.21.77.194

200 OK

1.3 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/fonts/star.woff
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
Web Open Font Format, CFF, length 1304, version 1.0
Size
1.3 kB (1304 bytes)
Hash
335cbf607c55aa32fd06809d1f9eb127
e70dd0cd93614997e251f26477ea815435981e19
d87af7a2528beb59a990e0414df87b4e4115f77f3a4a750f6616ff189b70345a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/fonts/star.woff HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-grid.min.css?ver=4.9.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: font/woff
content-length: 1304
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BGQQQn5tVv1Bst8jD9ISn5eK6N73SXj5OikQGmAxenx3lDKNfHV6KPQnxSpfADs2aOLboof5ovA5nUCZqKKztj1XwaRMstI%2BbgM%2Bj0vZJ0q1xXP6TaUjeZe%2BpPWL0JQlABM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf23ec4ffebb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/uploads/2025/03/139-up-300x300.jpg

104.21.77.194

200 OK

17 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/139-up-300x300.jpg
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
Size
17 kB (16603 bytes)
Hash
16355e14cc2c89a1dce06045bfdab566
8af22da6736512c0e557654511448fb0e3b54c4e
cf68626bd57e753f320fed746fd08ebcb2e097e49b9bf5b00a9f24e74fba671b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/139-up-300x300.jpg HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fpowercash99.top%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: image/jpeg
content-length: 16603
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cXY7mW7n6ZYxoapcN3jxOpOk6%2B4diK%2BiqmqbxSvxFA1bcY7b0v0JoLdE5G6l6KzDFah3ouLfIxc%2FEffxJ%2BKK5slN0PqyslDzGEdH750UY3z4K536Z9219sePEk%2Bv4z0FNLQ%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Wed, 12 Mar 2025 19:47:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf251c80febb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.21.3

104.21.77.194

200 OK

456 kB

URL GET
powercash99.top/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.21.3
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
456 kB (456376 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.21.3 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Wed, 12 Mar 2025 18:18:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fgcg6S5YgUYVW8r%2BEYJri7qRdVN37xrYKVx8TZ%2BaHKEm53C40w%2FAIg1jlfcBECg3z0nJTVa52bhv2aBNg59wCwf8OsJZ%2Fs62h%2FU6QobijMiZt0wZ8jn3RG%2F%2Be2eNDtzBQzk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adc6db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19846&min_rtt=19565&rtt_var=243&sent=177&recv=89&lost=0&retrans=0&sent_bytes=166264&recv_bytes=4507&delivery_rate=1354360&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9945&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/animate.min.css?ver=1.6

104.21.77.194

200 OK

72 kB

URL GET
powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/animate.min.css?ver=1.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (65341), with CRLF line terminators
Size
72 kB (71757 bytes)
Hash
6bb3d3878a972db2c6bb9c01264f755b
a884562320da3256afbe0767485b709a32f80a27
36317431694c83b2a0c5b265f4a141aa8a95debdfcac454e83caead0b908a9d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/quick-view-and-buy-now-for-woocommerce/core/assets/libs/animate.min.css?ver=1.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Tue, 11 Mar 2025 06:19:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7iPf%2F8lzLm8Z1BqznmdIG8zvZ3NBUAnfktW%2B6nhjLX8JqtSi4kbKw3js7bVrNjR%2BXNM0cB8fLXhNo81AbHqxw%2BqmKAl2wGsM%2BipDucbzWxcGQ4o%2Fm6clsLHdrUH5FDCF2%2Fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20bdcfdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=85&recv=63&lost=0&retrans=0&sent_bytes=75347&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9917&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.9.7.1

104.21.77.194

200 OK

9.6 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (9963), with no line terminators
Size
9.6 kB (9636 bytes)
Hash
7ed2c573e85b2b4e5fb8b4131e95e469
140691f29cb181849892640d1b237fa6a4e5beae
a637f7d3e1ca8aeb1d7d4499419916cca6c18a2b625a616f6950f2b978a91ba6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=13ZJvSAFw0Mp%2FIMPJNHgv8Xpc3Sz3sSubgeuKNvKfDcyMA%2BKXP6cCAkM4kYjBVzRRjNoi1KXCQvdgv%2FoxsuXeRG7%2FcB4ztDIm5%2Bxu8in9ouLyiSeAnjScTcZBJ%2BlvrUHX0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce25db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=95&recv=63&lost=0&retrans=0&sent_bytes=83775&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9923&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.21.3

104.21.77.194

200 OK

38 kB

URL GET
powercash99.top/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.21.3
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (38238)
Size
38 kB (38282 bytes)
Hash
327e23ba197ee19ab77b76946f9ff5b1
7ff44359371dd08e1b868932f8f9154c60f51c87
a2a915b430d2ecabd493dab5cd1c465e2cfe2b1515e51417f836896ce7be84f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.21.3 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7GSihMi33wiTk4Ge3%2Bqc5RVtD2toWiUvS7Spes9wcHaGwyPGnvACspU10OvuT8YPwpl0OzzXGBxAG7PTJnGEro6ccV0wqqNqI%2BLn3m9ij5Y47F2cD7mzz8ZzWGaHSFLfK2s%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Mar 2025 18:18:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c32febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.21.3

104.21.77.194

200 OK

25 kB

URL GET
powercash99.top/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.21.3
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (25022)
Size
25 kB (25066 bytes)
Hash
b33aae3ec2063fe0d08af8c7a0903b81
d42cec8fd2681c81590121329c90ccf052992b5c
3bc6a0f70b8792cf5564c7d756264316f1dce7b89e09db51730c6e8563fe5ecb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.21.3 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1mgU9geWj79tHtvrFJe4nKAX1WXQxMGtDjxG%2BfTUV8W%2BLC2PiYSLpfCjl4HPqlexgRdnbsXctGKjo5zLjjeJUY6IrvZtfDLppCiveS7%2B9F8%2BQ2cMyogfG%2Bz7oLIIaMdjMbs%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Mar 2025 18:18:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c30febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.9.7.1

104.21.77.194

200 OK

2.7 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (2759), with no line terminators
Size
2.7 kB (2673 bytes)
Hash
5bf38bc51be683b4aa915d25f02cf3a1
d29bf532d9fa9652d93f36d34fcd2edae55cdaf4
81f6eb1c86d85bf8172f5f97aebef16d5df3868bf46579423d217460858f2db8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/zoom/jquery.zoom.min.js?ver=1.7.21-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
content-length: 1052
server: cloudflare
accept-ranges: bytes
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 926ebf20ce2bdb35-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/underscore.min.js?ver=1.13.7

104.21.77.194

200 OK

19 kB

URL GET
powercash99.top/wp-includes/js/underscore.min.js?ver=1.13.7
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (18843)
Size
19 kB (18878 bytes)
Hash
16699a7f2aebe8d676042962c3bb5537
9697e3fe2d92c79debd82478603d4b59fc249714
5152316fade8c592fbfd38bc491e059464d967d3d31a582b0c885c0961deed30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.7 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
content-length: 7197
server: cloudflare
accept-ranges: bytes
last-modified: Sat, 10 Aug 2024 17:57:16 GMT
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 926ebf20ce32db35-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/2025/03/Smart-Panjabi-1024x441-1.png

104.21.77.194

200 OK

22 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/Smart-Panjabi-1024x441-1.png
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
PNG image data, 1024 x 441, 8-bit colormap, non-interlaced
Size
22 kB (21887 bytes)
Hash
b9963da2ac74472e0c4ca4e02354513f
6a4d368f20a7394f3ba5eea180ec65089632c768
feb17f5e1d386ec11d2973cc9f28ac4c6567877fa4968620f7e367642bb5eee1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/Smart-Panjabi-1024x441-1.png HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:47 GMT
content-type: image/png
content-length: 21887
server: cloudflare
accept-ranges: bytes
cache-control: public, max-age=604800
expires: Tue, 01 Apr 2025 12:58:40 GMT
last-modified: Sun, 09 Mar 2025 14:27:19 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 169507
cf-ray: 926ebf20ce36db35-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/actions.min.js?ver=1.6

104.21.77.194

200 OK

14 kB

URL GET
powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/actions.min.js?ver=1.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (14478), with no line terminators
Size
14 kB (14478 bytes)
Hash
3984814ea8a24244f221692b1995c131
65bbf85c82c4065edec50ca4e5423179fb9324ec
81f1f7d9de980d5471397e18e0638d491fafaee8371f53318bf0f429a628fb5c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/js/front/actions.min.js?ver=1.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Er1Zuqu43gWl8DiWHDL6DtkG2BUVnivCFjI13DCiWgcbFpXyBq%2Fm0lHTqbaE4kxbCCIjiOkdYRlaAwjh4FYbf%2BrieV3UEYSGeU22CQ1ZgYzR%2FMTwqWkuMWkbHiaGrKboSbQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 11 Mar 2025 06:19:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf232c2bfebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=9.7.1

104.21.77.194

200 OK

15 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (15315), with no line terminators
Size
15 kB (15315 bytes)
Hash
fc06080ebf979384eaf92a5f1cd7a50b
1474b07026c758629a82df51a5e4fbb7abf531df
c50a0b33030ba0ec063be642c297f48af94359e2222ff140817248d591faf837

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LCRFETRE3d6UmVpN0z7B0whUyJiUp6FbAPLJHzNJCGMhV7DBokS4mMPEz9hNgHwonWZW4ahdfwHiza1OQbUwcHmjQ%2BNn%2Bx3M2gi1UyNsU3eFwGJCtMhsJPAnRybsXtg9df0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf229c16febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2

104.21.77.194

200 OK

19 kB

URL GET
powercash99.top/wp-includes/js/wp-emoji-release.min.js?ver=6.7.2
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
19 kB (18726 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.7.2 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fpowercash99.top%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WfR46kTNepz6MSVXBaKbKXI0B7OGKMgAUaxw6Fm66ie4YfpTj6YVyT09hAP4z1W3U7Ml6LZWlkoiVt9b3LS8fBI2Vr6q095UjmQDPYtyDXZp05wPZTw9KaRhGYGzMGg0AVo%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 27 Jun 2024 06:55:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf256c86febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.9.0

104.21.77.194

200 OK

24 kB

URL GET
powercash99.top/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.9.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (24308), with no line terminators
Size
24 kB (24308 bytes)
Hash
89a7126b1123d0261a0371f7633f2059
749c238914e5c1d320de6ed691bc437d0813f5ad
8ebd90228f2ab8870aa03f29501910d879d2c2ea2197f1f113e4b16e1f489fd4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.9.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6EqLb9gg04x%2FUjjodKIAIagWtiX4TaED0AneVa3IZ%2F4N7weiaq%2B0Xuh%2F3GhQdmvs23QJ6ES%2FA3sgQoAMhuR0Vg%2B%2FmM2RCgkJ4fvtEKnZz%2Blq0tGFUX%2B%2BU6ZFQd4DiYUxM2Y%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:19:29 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf229c15febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.27.6

104.21.77.194

200 OK

44 kB

URL GET
powercash99.top/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.27.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (44212)
Size
44 kB (44252 bytes)
Hash
2f4178ab3a59c6620d2446c1726976eb
b861b102f989bed593aaf661d37f90ac03548218
75dd67187032c51f70fec4ff879b978202b184bfe6e5b8fff120ca6db4b2ee33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.27.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0v%2B1wrnaWGUrGszSiGUQbVrJtFF8LzeEDDCbt%2BpcX%2B7CSNk1czElTv2oN%2Bh%2FmYxgINGzIf7A8wrI2MBiFtc0plGSKK5PK%2BOz5TZGiUdKQnonwUUH%2FCXUoIzoIutPnHrL7cY%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:45 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c33febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2

142.250.74.35

200 OK

34 kB

URL GET
fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34328, version 1.0
Size
34 kB (34328 bytes)
Hash
6581ab53c220b5828e37162349375431
1922912ca5ab6eb5a55db138b183b38d066e85c8
a8e429611131e3fdc2018ec943a36100dbabb4aaa788c8dead6bdcf927917293

HTTP Headers

GET /s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://powercash99.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 10:13:31 GMT
expires: Fri, 27 Mar 2026 10:13:31 GMT
cache-control: public, max-age=31536000
age: 6617
last-modified: Tue, 24 Oct 2023 01:54:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://powercash99.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 10:03:46 GMT
expires: Fri, 27 Mar 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 7202
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3

104.21.77.194

200 OK

22 kB

URL GET
powercash99.top/wp-includes/js/jquery/ui/core.min.js?ver=1.13.3
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type

Size
22 kB (21464 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.3 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EtGpUmIUalv2Nfka4vwaH5%2B8Ri4kSHhaB6YLL9LHgHn7yxf9vZ3%2FEIjjzh3hLSAY04ba1D0ooht7Tg3X%2BKmBFPW2CDOLoxIao9n9KPQH0xOrg9S%2BN8CVjeQKN54yNQlXec0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 27 Jun 2024 06:55:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf234c34febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/uploads/2025/03/138-up-300x300.jpg

104.21.77.194

200 OK

19 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/138-up-300x300.jpg
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
Size
19 kB (18780 bytes)
Hash
aede4ebf1134f390a76abaa99a0902a4
7e224d65fd2d5b0b7ccaf8be2fb0cff4c5854b37
18a4d171e4f9d8e0ccce490dd0cb940da730b881ac7164d2e1087fdd56f7be52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/138-up-300x300.jpg HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fpowercash99.top%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: image/jpeg
content-length: 18780
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bhFbbKU71DmT4xImDqBMVJrCcjxolVMbCmn00DE8iNNyUHNmrUUhLxtbQlY8JosQ7JTcPDi2sU%2ByfXB6jbBfE9pIvVdM5gDYsj09XL%2BGbFuZqCYRb3jwIxEkM0yNl3%2BZoig%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Wed, 12 Mar 2025 19:47:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf251c7ffebb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/css/front/front-styles.min.css?ver=1.6

104.21.77.194

200 OK

28 kB

URL GET
powercash99.top/wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/css/front/front-styles.min.css?ver=1.6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (27880), with no line terminators
Size
28 kB (27880 bytes)
Hash
d1508a44311375d199fb0ce4ecb8389f
af7c0165d3be5f4dda173617035c1c02f6efd8ec
8b24c05a0caa7c83c055e6778d6fffe1126f3c8c51bcc1599afa2c5468a14473

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/quick-view-and-buy-now-for-woocommerce/assets/dist/css/front/front-styles.min.css?ver=1.6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Tue, 11 Mar 2025 06:19:23 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHRZu%2ByO0lWq8KKoh61J0jQFgnxeXRvVlnsfccVWiWUnw%2BNTBRuDzZv8NPANdevUfaY1MKnfZl07jVS8x3HY6uZGWBrk9wxAHZb7hVJwGfVJ08QsXjGEKKIY5Bt85uJV%2B1Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce1bdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=108&recv=69&lost=0&retrans=0&sent_bytes=94233&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9927&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=9.7.1

104.21.77.194

200 OK

3.3 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (3287), with no line terminators
Size
3.3 kB (3287 bytes)
Hash
e65cbce40458e232c2d8c7661dfeab7a
9aea5882139ac04bc182d376c34ac6c6e9b95842
8bdb4e5d2066e5a29a162cee6b418adeb546ce98025ab4741107dfaa8485415f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/photoswipe/photoswipe.min.css?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B3fWfChoriMalWc7rnFKZYk5IJ%2FtswqXqRFATd7bg4oDDMw%2BDs6hmXijIUD5VXMXbDm7JEhtOvcFstM9LeqcIWExsgaV1BbO1dIfEPSx4HVmP86xcb0bLtzqEa56PvstPaw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce1ddb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=143&recv=69&lost=0&retrans=0&sent_bytes=126888&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9929&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

104.21.77.194

200 OK

14 kB

URL GET
powercash99.top/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Thu, 08 Jun 2023 23:49:24 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=im9Lf5CtTrsp5hq%2Fyes1ZFD4aCRR4PD0brhp9%2B9xAvlMR%2F15x2n7CD3Fb9qaOFVrH9wQWvP6L6PKdQXXSoM8Afqu0O74FHXQ16or%2F5lCClVGLLUVc0%2BnLTM2Ve%2BInL47Sgk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce24db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=119&recv=69&lost=0&retrans=0&sent_bytes=100972&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9929&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/wp-util.min.js?ver=6.7.2

104.21.77.194

200 OK

1.4 kB

URL GET
powercash99.top/wp-includes/js/wp-util.min.js?ver=6.7.2
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (1469), with no line terminators
Size
1.4 kB (1426 bytes)
Hash
4cfa97208f3196db8343dab3061e3599
538b31a3ee7b795af2a2687e1558d0bcf579e949
ce1c908010099b7d7d15bfab3630252fd30d6aa29951121f98eaa46ead8cd1a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-util.min.js?ver=6.7.2 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Mon, 19 Sep 2022 21:52:10 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XNUfGE8rYV7ZLf0JM0wtWt9W8Rz%2B07JAWAFT41uFhg0Zurj2OGHhCllFl6WeST3cSh6xuU8hjXSRJyPtmGYxeiXyMd8I2CrCa4tvHIghCULvPksgBqR1EXQkV9M31ESzC4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce34db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=113&recv=69&lost=0&retrans=0&sent_bytes=98375&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9928&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/css/brands.css?ver=9.7.1

104.21.77.194

200 OK

2.3 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/css/brands.css?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
ASCII text, with very long lines (2283), with no line terminators
Size
2.3 kB (2279 bytes)
Hash
cfec05e365959931ab711b7624212fdd
d6d9952b565b1103e954391b4175c3bf2d685d22
8d361a8c6ad473b95fdc38fc63004449ca7074299c6debfba1bf71f8978d06fd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/css/brands.css?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:47 GMT
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cum6OhiWeqJUGeObHB8W%2BMQBhZjwqFFO%2BsHFGNRfs1sCQ%2FL1YHdcMWlZlcsIpAgDXrfEWmIcp2L9UHVpOUljpLBkugRzz6FQwodCClqKMlckzatDbL5K3Rxi5hG5P78NmXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20adbbdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19811&min_rtt=19588&rtt_var=152&sent=64&recv=63&lost=0&retrans=0&sent_bytes=60675&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9905&x=0"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.7.2

142.250.74.10

200 OK

123 kB

URL GET
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.7.2
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
ASCII text, with very long lines (1572)
Size
123 kB (123129 bytes)
Hash
4f8061e0fce12006835ddf89ac548b25
7dfe5e66bb79d2f233a143723c38f831e513d454
0de5cb83e2089a541b21fccb38b6cc47e3d70f7a6c70ace74d94236104834165

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=swap&ver=6.7.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Mar 2025 12:03:48 GMT
date: Thu, 27 Mar 2025 12:03:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

powercash99.top/wp-content/uploads/2025/03/215-up-300x300.jpg

104.21.77.194

200 OK

18 kB

URL GET
powercash99.top/wp-content/uploads/2025/03/215-up-300x300.jpg
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3
Size
18 kB (18076 bytes)
Hash
61d4b9bf9541856386fd5ccaf277a211
4be136b97f9799aa7a5e80fbc6e5d849267994f7
a4417fa03e0b505d8c377f44934a84d96a39f2cc7a8594298f376514611ecd7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/uploads/2025/03/215-up-300x300.jpg HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: image/jpeg
content-length: 18076
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ebPJfauQLVjiICO4FIoC4husmz41DFXdAhwGrr7QEKUmJ0QGpGU9g40o%2FFPvHPt5xBCZHt4f27P%2BPPvaNXgfmBYrod5vcqZoGeKiLQXDAqwQV2%2BIA6gU1fr4dmx%2B3qXIWJQ%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Thu, 03 Apr 2025 12:03:48 GMT
last-modified: Wed, 12 Mar 2025 19:47:47 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 926ebf223c03febb-AMS
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6

104.21.77.194

200 OK

4.8 kB

URL GET
powercash99.top/wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4857), with no line terminators
Size
4.8 kB (4776 bytes)
Hash
cfbe9331246b6a20bc00d02c1db2ed47
d8b879cbb8cb0084001505a04a9487ff985c683e
f810169ba5c970d191ecfd6385f2a1f8a95aea42d1bbb1ad039c5e4f70e56bea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4d63a3d491d11ffd8ac6 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UUQcWGZJ%2FiaoMZQBrSi9viLSqSRsA8%2Fw3HEs0aaDGo%2FyQp4cwHeQzYnTiAhtbPd38sFAE%2FCuKtAR%2FaWiwhjWfajPuedb03%2FQkuhmAf5Tw6wDahkHDdW%2BcRlVUSs8d5Hhtl8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 29 Sep 2024 23:11:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac1cfebb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.9.7.1

104.21.77.194

200 OK

22 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (21555), with no line terminators
Size
22 kB (21555 bytes)
Hash
4f6a29a1ede817f20ac364907c3de13a
82a50deb4393975d9a1adf63023ce5991e536708
2137c4e292448183917a4ede265d546ab578e8ebd600b9922c44ac08f02c92f5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DVMlfxVNhQLJe%2F%2BktOVEvgCtdaa1QDDmRpcOgacVwKLODbWwpQ9X30%2F1aWkeI%2BWtsuQ%2FiPUYn%2FvpUVctHomqXTjGROsr1Y%2BBdSRjG%2BagYpVpSJoPMCdJ7Tzid2EJq3BtzFM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac19febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js

104.21.77.194

200 OK

3.9 kB

URL GET
powercash99.top/wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4021), with no line terminators
Size
3.9 kB (3926 bytes)
Hash
616af9104d2d37d19d607be4707fd957
b2280519630dfb675c4be25de2eff2315fb30602
3d2cc10aa048143fa929050b00820616fb439787d03d3242e1331e3227b54f06

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/slides.fb6b9afd278bb9c5e75b.bundle.min.js HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2025-03-27%2012%3A03%3A48%7C%7C%7Cep%3Dhttps%3A%2F%2Fpowercash99.top%2F%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29%7C%7C%7Cplt%3D%28none%29%7C%7C%7Cfmt%3D%28none%29%7C%7C%7Ctct%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0%29%20Gecko%2F20100101%20Firefox%2F134.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fpowercash99.top%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CwoFuFoKlKY4eUooMlcl84%2FidwzlxFYqGi6HWBA2QXJTNfFxU%2Blf89pDBz0jvUf%2BnKdB4VK1z2f96Q0fpZLDOy2eE2czMJ%2F89aP5u5pxWz4rUI8fkljyx8xChk0atWSKEh4%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Mar 2025 18:18:12 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf266c94febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=9.7.1

104.21.77.194

200 OK

4.0 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4143), with no line terminators
Size
4.0 kB (4035 bytes)
Hash
6702d9eb760debca2fb00b1f157bce19
f7e2541a865595da3e70c86fa07330b6d2e84f68
a1e68d182b15eab5e6602c195df7ce7843185830c3c3608f157e16109d91dc0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
content-length: 1225
server: cloudflare
accept-ranges: bytes
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
content-encoding: br
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 926ebf20ce26db35-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.9.7.1

104.21.77.194

200 OK

32 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (31525)
Size
32 kB (31626 bytes)
Hash
8be54ef27129e20478ca502b081a26a9
b22ef871fea44dd3b5cb05371497b8ec8d12e4a5
617fd0ce1a536b748feec2602721d96a4ef4d0297c17fecb49a356abc462d1d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/photoswipe/photoswipe.min.js?ver=4.1.1-wc.9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0gOLGqmvPeq%2FLFUF%2FkfsPdex3JDwArf5PgPAcQA2ntSGjg10QPhAFIFqpVNU04FDt4qvCz5HLCPAg7OnrYwI7CUdKVxintogHHrgeYzRtJTfF4wScqlYeELmJ8ujxAzmFLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce2cdb35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=125&recv=69&lost=0&retrans=0&sent_bytes=106516&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9929&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=9.7.1

104.21.77.194

200 OK

15 kB

URL GET
powercash99.top/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=9.7.1
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (14723), with no line terminators
Size
15 kB (14723 bytes)
Hash
b37924334164622fcfc7c158cf5502da
0a2c0a37143f9681ddf4380bc3535daa4b1817f3
b5a19699e09d5c45d619e187081d069d46987ea3815799948dcdfd80b65c86e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=9.7.1 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
last-modified: Sun, 09 Mar 2025 14:20:40 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7WT71EODY0LFYHJzfIUwNEtRaRg%2B5zOjo1BoojsTxbOmOY%2FAhN8u%2F1NQu43FC2ludMlmk40P1gPIHb8gh%2BwXY3zPiKvRv9Nsmjn%2BdWf8%2Bxe6RE8a%2FXdjACzgQybjX97esEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 926ebf20ce35db35-AMS
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=19849&min_rtt=19565&rtt_var=295&sent=103&recv=69&lost=0&retrans=0&sent_bytes=89777&recv_bytes=4507&delivery_rate=1221940&cwnd=223&unsent_bytes=0&cid=9145aa09e0046b57&ts=9927&x=0"
X-Firefox-Spdy: h2

powercash99.top/wp-includes/js/imagesloaded.min.js?ver=5.0.0

104.21.77.194

200 OK

5.5 kB

URL GET
powercash99.top/wp-includes/js/imagesloaded.min.js?ver=5.0.0
IP
104.21.77.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://powercash99.top/
Certificate
IssuerGoogle Trust Services
Subjectpowercash99.top
FingerprintD4:49:40:1F:94:AF:6D:10:30:94:AA:45:D9:66:06:88:A2:D9:E1:B9
ValidityTue, 04 Feb 2025 14:42:22 GMT - Mon, 05 May 2025 15:39:57 GMT

File type
JavaScript source, ASCII text, with very long lines (5620), with no line terminators
Size
5.5 kB (5520 bytes)
Hash
bc3890f850c25498759ca3e66da8b393
cefa096be6b211430446e0b5fb931f6d3bf19b4f
447daf0f56e15ee2a1f123f9172dcde114eb14683f92fa1d13b1ff2af2d1743e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: powercash99.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://powercash99.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Mar 2025 12:03:48 GMT
content-type: text/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dzqf043lxM9V6mxxJ8MtXjzHisLiNyaZC%2BWkRkbAmvJ5EbKTMHfzriipz2%2F%2FgSHRkT8aSVGIFzTnguoZ3LNIO6ShKbXKwzN%2F72Lxz81yUS398eSmehj4BSXj7C96e6zC%2BnA%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 11 Aug 2023 12:18:26 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: MISS
content-encoding: br
cf-ray: 926ebf22ac18febb-AMS
server: cloudflare
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (46)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML