Report - top-kuwait.com/iirm/

Report Overview

Submitted URL
top-kuwait.com/iirm/
IP
172.67.152.89
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-25 12:08:24
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
top-kuwait.com	unknown	unknown	2020-10-13	2023-02-28	5.9 kB	1.1 MB	172.67.152.89
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-24	1.3 kB	2.8 kB	142.250.74.131
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-24	523 B	17 kB	142.250.74.35
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-24	1.3 kB	47 kB	142.250.74.106
tracking-protection.cdn.mozilla.net	9282	1998-01-31	2015-09-17	2023-05-24	2.0 kB	1.9 MB	34.120.158.37

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-25	medium	top-kuwait.com/iirm/
2023-05-25	medium	top-kuwait.com/wp-content/cache/minify/1/b195d.js
2023-05-25	medium	top-kuwait.com/wp-content/uploads/2020/10/New-Project-1.svg
2023-05-25	medium	top-kuwait.com/
2023-05-25	medium	top-kuwait.com/wp-content/cache/minify/1/bcf3d.js
2023-05-25	medium	top-kuwait.com/wp-content/cache/minify/1/bcf3d.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	top-kuwait.com/	2.2 kB	2023-05-25	2023-05-25
Pretty URL top-kuwait.com/ IP 172.67.152.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 14:08:26 Last Seen2023-05-25 14:08:26 Times Seen1 Hash af9726fecac38a0c655961a55fc96651 50d393b251c53bc384494c96082c134a7daca24d 25437ecebdd8639928aa3358027f29ef131e10244b9f55d3ac258702c8f20aaa Loading...

	top-kuwait.com/wp-includes/js/wp-emoji-release.min.js?ver=1ebaba3465f39106375be623a0ebab45	19 kB	2023-03-07	2024-04-19
Pretty URL top-kuwait.com/wp-includes/js/wp-emoji-release.min.js?ver=1ebaba3465f39106375be623a0ebab45 IP 172.67.152.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:52 Times Seen37996 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	top-kuwait.com/	2.7 kB	2023-05-25	2023-05-25
Pretty URL top-kuwait.com/ IP 172.67.152.89 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 14:08:26 Last Seen2023-05-25 14:08:26 Times Seen1 Hash 27bae107630a6f77e42ae13251e83b8a ee93dc90448985c865c0800c4e30612629163761 a02b09c59087d82dec8f90a13a0f7420457965546702a45ae2b4823bbae289fc Loading...

HTTP Transactions (25)

URL IP Response Size

tracking-protection.cdn.mozilla.net/ads-track-digest256/1684337778

34.120.158.37

56 kB

URL
tracking-protection.cdn.mozilla.net/ads-track-digest256/1684337778
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
56 kB (56534 bytes)
Hash
e82f812913b6a06c608d7bb688e184b4
ea5db373525ee7dfa0abaf0befb2dae54e62b699
46fb1d72ca8047216ad4c5349f791a385049e1025042a3fbca56a7bf94ff2e89

HTTP Headers

GET /ads-track-digest256/1684337778 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: pilSRHIncUDyjWUqf42D2n8+qDLBfssxFb5k3BEKutd8lGVA3gHhcejFo92ZuCroN4hel3AMpYY=
x-amz-request-id: RR9789EK4H0YT3EB
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 56534
via: 1.1 google
date: Wed, 24 May 2023 15:36:56 GMT
age: 73871
last-modified: Wed, 17 May 2023 15:36:30 GMT
etag: "e82f812913b6a06c608d7bb688e184b4"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/analytics-track-digest256/1683905755

34.120.158.37

10 kB

URL
tracking-protection.cdn.mozilla.net/analytics-track-digest256/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
10 kB (10486 bytes)
Hash
feffee93ee53bd6b02687bb9d9a11425
f9fab28225d6eb2ed2e72ce675d5d5b624383658
3b09c3bc75d40a2dc370d7a9e88433d74de203f31056900b995b497950f2d672

HTTP Headers

GET /analytics-track-digest256/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 8R3tOhABQRkZFRBWteRANt3fr6gbwbrNlOZUWZngC6cbkFw/I4PR53SrwNcn8Yph+eSh0Sd0ogM=
x-amz-request-id: G0PWSNM7XC9C0Q1M
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 10486
via: 1.1 google
date: Wed, 24 May 2023 15:36:35 GMT
age: 73892
last-modified: Fri, 12 May 2023 15:36:10 GMT
etag: "feffee93ee53bd6b02687bb9d9a11425"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-track-digest256/1683905755

34.120.158.37

15 kB

URL
tracking-protection.cdn.mozilla.net/content-track-digest256/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (15350 bytes)
Hash
adff9f8518019ddb5b72e09fa471bd56
2a5cf28dcda107605da2bb4f6e56a07e514a927f
900f414ea63bb7f4e5a33041d77112c309aa8dfebd93681895c596d948ed12bf

HTTP Headers

GET /content-track-digest256/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: qYn3ItadL7aM9CfW8nGG3khlP1hQunw1vC8aqF6ea51m1/VNPGFapyn/wGBvWnWLoadzIBCXDW4=
x-amz-request-id: CQ7K0RYHESZ2NWZE
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 15350
via: 1.1 google
date: Wed, 24 May 2023 15:36:57 GMT
age: 73870
last-modified: Fri, 12 May 2023 15:36:06 GMT
etag: "adff9f8518019ddb5b72e09fa471bd56"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/1683905755

34.120.158.37

1.5 MB

URL
tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 MB (1476920 bytes)
Hash
501d3f65be5457b0986a2f0b880e88f2
0df631bbe10a12e255c8d323fed084f51ffb842d
e3acbced9ab46ff7a41311445b2bd1f6f70f8716d35131670528417d2c9a6627

HTTP Headers

GET /google-trackwhite-digest256/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: RZLUwKXBc72Kezq9QkGVYKtN+IwHyP5d7DFxty/zfK5guu5j67wMgUWXpPzg6pHSt11wXL368Rc=
x-amz-request-id: 8VVBPNNXGECFWF0D
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Wed, 24 May 2023 15:36:45 GMT
age: 73883
last-modified: Fri, 12 May 2023 15:36:17 GMT
etag: "501d3f65be5457b0986a2f0b880e88f2"
content-type: application/octet-stream
content-length: 1476920
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/1684337778

34.120.158.37

346 kB

URL
tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/1684337778
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
346 kB (345943 bytes)
Hash
dc048d310df250632824a0ef784c0503
349ed5134df1bb49ba48bab8498c932655795279
a217142987da561fafd04a5f77dcab5860687e0089002eec43cd8bd619b9870a

HTTP Headers

GET /mozstd-trackwhite-digest256/1684337778 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: +lDWY7uwlv8dhwh/zxlvGxUM90kKPWcNLtyYBCWqRSun2KS0UJ3gmXhHy7/yXNYvhYND7ij4Tvk=
x-amz-request-id: AREPA1J2PNCYPQ2Z
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 345943
via: 1.1 google
date: Wed, 24 May 2023 15:36:59 GMT
age: 73869
last-modified: Wed, 17 May 2023 15:36:35 GMT
etag: "dc048d310df250632824a0ef784c0503"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

top-kuwait.com/iirm/

172.67.152.89

302 Found

232 B

URL User Request GET HTTP/2
top-kuwait.com/iirm/
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
232 B (232 bytes)
Hash
912d9a2e0dc5daab7db5b7a7ee23cf6f
f52c537790b67919afcfa6ffeb7b52efde6d992b
d5e739d5cbcac90c246c0a5ac22dbe42bb4cff87a3232bdf13d065513a015e25

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /iirm/ HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 25 May 2023 12:08:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
location: /
cache-control: max-age=0
expires: Thu, 25 May 2023 12:08:07 GMT
vary: User-Agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prqD%2FR60K%2Bc4e%2FxD3gaJIbV%2BuEiajx9Qbk4ZjftD8GkjiMB9ARpJorrgaLvtItnmY6uHnzuQWE06suiJnMf24UoaksSOyW1j%2BoHV8eFnpjABn6%2BL%2F%2FhbjC4fP4LHLxnBRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda973ecf5b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 12:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 12:08:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 12:08:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

top-kuwait.com/wp-includes/js/wp-emoji-release.min.js?ver=1ebaba3465f39106375be623a0ebab45

172.67.152.89

200 OK

5.3 kB

URL GET HTTP/3
top-kuwait.com/wp-includes/js/wp-emoji-release.min.js?ver=1ebaba3465f39106375be623a0ebab45
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5346 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=1ebaba3465f39106375be623a0ebab45 HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 May 2023 12:08:09 GMT
content-type: application/x-javascript; charset=utf-8
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Sun, 26 Jun 2022 07:28:55 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
pragma: public
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rA7kbtoYWi1nPGAbYCaYxhFtVdyREb4J5EnU%2BTto2Qgp%2Fww4KRPPePDDr2Ui8yhHxwWQSwhft9YopgHu%2FyqXRE9Wzesq4s59ZKJ34B%2BkJVtwR3vsfSYIyTy5TIRdAr%2BCow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97eab1fb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://top-kuwait.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://top-kuwait.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 138510
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 12:08:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

top-kuwait.com/wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-150x150.png

172.67.152.89

200 OK

4.8 kB

URL GET HTTP/3
top-kuwait.com/wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-150x150.png
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
PNG image data, 150 x 150, 8-bit colormap, non-interlaced\012- data
Size
4.8 kB (4780 bytes)
Hash
9394548cc808819fa79fa3944493feb1
18fc242629606518bb50ba913d510d866b2f385b
24bb00538a614c28b61a75e20de5cd74b1e2b9ac723a4cc5e999a8fe50e0c5ea

HTTP Headers

GET /wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-150x150.png HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 25 May 2023 12:08:10 GMT
content-type: image/png
content-length: 4780
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 19 Jan 2021 09:16:26 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 May 2024 12:08:10 GMT
vary: Accept-Encoding
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Mwhx7thXT004NwGql%2FsGSRWV%2Fl96E8%2B5%2FSYFwD38%2Bkzr5F8MShjZlCESwDQbCCE2UtU7OVaNbk1Td3nUfb2REAAYaeu4dxmwd1CYTb8cSyJlNFmqKhc3EeUkP3VRtjPaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda987db23b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/b195d.js

172.67.152.89

500 Internal Server Error

357 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/b195d.js
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (50979)
Size
357 kB (356702 bytes)
Hash
0129231b6a3074fdf9f21cadc37b4130
365fd698e03598d9f63623a2e00030d1db8539d4
f8015e5ee24cdfae77ea337e84657c35b1f22ce1771acf292bbd23523855643f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/minify/1/b195d.js HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:10 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:23 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ljtdlpaInS%2FE7C1obJe6RHBUe4TxmMYhQaPjqK2wmh03z2fk0DBFgbTFRftQY1wlorml72atWlxCLk%2BRtwamKglGUqBKBNKBDrJlPM3C3tlLuptui09l7IoqUploLlC55A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e7ac2b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/8efe2.css

172.67.152.89

500 Internal Server Error

95 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/8efe2.css
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type

Size
95 kB (94873 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/1/8efe2.css HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:09 GMT
content-type: text/css; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Sat, 20 May 2023 08:10:34 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HaXuJ%2BxjCDxWxJKx%2Bx1raDSupiqIuglyPenYugRR3ao161wyiyqJLXYzu5w5V7gx8K6oLb41XXeTZsNuTJ3eSsOgJ0F%2F8nMDTFpwmDEZzGK2vT0zKYVg0AE9WC0onZzZqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e6aabb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.3

142.250.74.106

200 OK

46 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.3
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://top-kuwait.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text
Size
46 kB (45536 bytes)
Hash
c7b7b53656ed005a8a4c0faf070cf62e
228c26b24c6fda1676994413c25bfb1555e2a1d2
af56f9a97ba9853d88e0dc672d67e32e3ff2f829df312625ef64a878f8632cf2

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top-kuwait.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 May 2023 12:08:08 GMT
date: Thu, 25 May 2023 12:08:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

top-kuwait.com/wp-content/uploads/2020/10/New-Project-1.svg

172.67.152.89

200 OK

23 kB

URL GET HTTP/3
top-kuwait.com/wp-content/uploads/2020/10/New-Project-1.svg
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type

Size
23 kB (22559 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2020/10/New-Project-1.svg HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 May 2023 12:08:09 GMT
content-type: image/svg+xml
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Sat, 17 Oct 2020 23:58:39 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
pragma: public
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sx7JVNxtU%2BZ%2FKfGdZwdY5Rr78bBLO0QEWBqjifTOfipGxfgPZxgDEYwYQsn3GGnElAgRlMT2AFnRgLoiazB7eQSjhX3CSvQorKZ4exF708TOSHG0pf7CYa338wDq%2B5Trng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e7ab9b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/f33a7.css

172.67.152.89

500 Internal Server Error

279 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/f33a7.css
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type

Size
279 kB (279175 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/cache/minify/1/f33a7.css HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:09 GMT
content-type: text/css; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:23 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=woZIvXGNeYjxJYUyoS1hJro86snH1txLltd1gmIyivfBdClEQ1PGy8D5%2FR5Ka1UFHhImXhixEBK3j8xRPJCEh4rqv1DTd2oNhAFUUYL9HfqnyHB3vuCShf6wJrrc%2BUhQvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e6aa8b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-256x256.png

172.67.152.89

200 OK

9.5 kB

URL GET HTTP/3
top-kuwait.com/wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-256x256.png
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Size
9.5 kB (9485 bytes)
Hash
4a855aae1949668734f86232382552c9
dd2485869000da43ac7a4116f6df3392618d9a6d
ef7ccbbfd752963ac54117694d2570f82e76b5b84bf844d311eb6d9dc70f685a

HTTP Headers

GET /wp-content/uploads/2020/10/pngfind.com-sap-logo-png-2057447-256x256.png HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 25 May 2023 12:08:10 GMT
content-type: image/png
content-length: 9485
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 19 Jan 2021 09:16:27 GMT
cache-control: public, max-age=31536000
expires: Fri, 24 May 2024 12:08:10 GMT
vary: Accept-Encoding
pragma: public
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gUoEo1CgFJiaT4RIRSNTEx7W0nXTLKN2XaUEmSfGQznKW3Phud29CH%2F73usYK%2FA09OoUc7iB0n7D0kpZQ1kSsYxFmgXHjyofg3foAkFaHwRTfn0nBdm%2FXkh4PBddEVhqWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda987db22b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/

172.67.152.89

200 OK

102 kB

URL User Request GET HTTP/2
top-kuwait.com/
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type

Size
102 kB (102528 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 12:08:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
pragma: public
cache-control: max-age=3600, public, max-age=0
vary: Accept-Encoding,User-Agent
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Thu, 25 May 2023 12:08:08 GMT
expires: Thu, 25 May 2023 12:08:08 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=otfOUeJ9pGJ6Xt8xykIHw75VwFUyDRmuqQVgxjwrs%2Bavi9%2Fs9ZrsJILQaBij5RPsFlOpQZsREmI81RWAZpuTApK8d0KCl9nGhpdYkphmSICdNRrkP1x2wCX3z2g%2FiGhPJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97b0a6bb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=-apple-system%3A400&1&display=swap&ver=2.2.1

142.250.74.106

400 Bad Request

0 B

URL GET HTTP/2
fonts.googleapis.com/css?family=-apple-system%3A400&1&display=swap&ver=2.2.1
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://top-kuwait.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css?family=-apple-system%3A400&1&display=swap&ver=2.2.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://top-kuwait.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 May 2023 12:08:08 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

top-kuwait.com/wp-content/cache/minify/1/bcf3d.js

172.67.152.89

500 Internal Server Error

83 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/bcf3d.js
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (40585)
Size
83 kB (82638 bytes)
Hash
deb44211513cdca6b28a4995b9a5aacd
f6bcc412c814215ee0a23be2685ac285807665b0
069c382a6b9d6c113b9d740e29bbefedcc6617d25a28c48af7df65833a4145a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/minify/1/bcf3d.js HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:09 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:16 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1x%2FUcvIWtyLXwOfQAREi6nmfOLY7vEDi%2BI%2B9fxOVlU%2F%2FdUvqJTvJcuqWRGZ4PkvYOXa56oN10VHwOVXe0azW3A%2BPT352mGq%2Fwrc2AxHp3cpJ5f2oQGedPEBzUjhPJ8EaPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e7ac4b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/33382.css

172.67.152.89

500 Internal Server Error

61 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/33382.css
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (57729)
Size
61 kB (60851 bytes)
Hash
1f7aeb463c4daadf006e66efe480b2e1
70d6f4e7ddd8a9168e78cb44fa2faaa333ab0830
abd1edad2f8988678d92da62c7892ef2e87bb0e108455d780ad25b6ff907aac9

HTTP Headers

GET /wp-content/cache/minify/1/33382.css HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:09 GMT
content-type: text/css; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:21 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uiodkl27gle%2BpWr9HQjS%2BReLw2T5KteNpwi6U97E%2FO6FDEYDbY%2FMSiq6wl7dwKC1BUaVWTx5wAyUnDlqwuwV3vf5Kljdhfr8582U918Yw8QuYGz191qZzXxX387qP3cHlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e7ab6b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/2cb5e.css

172.67.152.89

500 Internal Server Error

18 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/2cb5e.css
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10019)
Size
18 kB (18468 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

HTTP Headers

GET /wp-content/cache/minify/1/2cb5e.css HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:09 GMT
content-type: text/css; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:19 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YemacLUzElS0K1yI6zB0%2FVovYq3nd1abgGicNWnnv0HtniR9No4R61XtTZBv0aOFkZT5zitDujw3qH4GTh888eydfeIkfBZqzzzlJoi%2BwykHoLjK9qOwH25TO8P1QGTqRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda97e7abeb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

top-kuwait.com/wp-content/cache/minify/1/bcf3d.js

172.67.152.89

500 Internal Server Error

83 kB

URL GET HTTP/3
top-kuwait.com/wp-content/cache/minify/1/bcf3d.js
IP
172.67.152.89:443
ASN
#13335 CLOUDFLARENET

Requested by
https://top-kuwait.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint59:B6:6F:8D:3E:C3:00:CD:45:8E:01:3B:79:17:0D:C0:B7:3D:45:5E
ValidityMon, 15 Aug 2022 00:00:00 GMT - Tue, 15 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (40585)
Size
83 kB (82638 bytes)
Hash
deb44211513cdca6b28a4995b9a5aacd
f6bcc412c814215ee0a23be2685ac285807665b0
069c382a6b9d6c113b9d740e29bbefedcc6617d25a28c48af7df65833a4145a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/cache/minify/1/bcf3d.js HTTP/1.1
Host: top-kuwait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://top-kuwait.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 500 Internal Server Error
date: Thu, 25 May 2023 12:08:10 GMT
content-type: application/x-javascript; charset=utf-8
x-powered-by: PHP/7.4.33
pragma: public
expires: Fri, 24 May 2024 12:08:09 GMT
vary: Accept-Encoding,User-Agent
cache-control: public, max-age=31536000
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade, no-referrer-when-downgrade
last-modified: Tue, 23 May 2023 12:16:16 GMT
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a44vCUMTl9Dmn9REtxSBvatBrAeHfEG6uWR0ZkNKFcAbX2cY%2B0XXme6qZy2JQn6WXLof%2FFxjp1CQHF6tFT5NviK5qpNlB4p7Sh8zM4CFUK8a9C2JcASUzx8xvXXGlzDDvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ccda987bad6b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type