Report - printingpoint.co/

Report Overview

Submitted URL

printingpoint.co/
IP

162.0.229.232

ASN

#22612 NAMECHEAP-NET
Submitted

2023-09-23T03:30:12Z

Access

public
Website Title

Printingpoint
Final URL

printingpoint.co/
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

72

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com (4)	unknown	2014-09-09 02:40:21	2023-09-22 07:59:59	2132	136712	216.58.207.227
fonts.googleapis.com (1)	8877	2013-06-10 22:14:26	2023-09-22 06:24:32	480	140674	142.250.74.106
ocsp.sectigo.com (1)	487	2019-11-29 12:50:24	2023-09-22 07:26:58	330	963	104.18.15.101
printingpoint.co (72)	unknown	2021-09-29 19:45:44	2023-09-21 20:16:45	32644	11789013	162.0.229.232
ocsp.pki.goog (7)	175	2018-07-01 08:43:07	2023-09-22 05:10:04	2331	4893	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed
2023-09-23	medium	printingpoint.co	Sinkholed

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (85)

URL IP Response Size

ocsp.sectigo.com/

104.18.15.101

471

URL

ocsp.sectigo.com/
IP

104.18.15.101:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

471
Hash

df8ff8ac48f3a52871f0c5e0eddf486c

2c8ee802d4431609a00bd0a419f033dcfd5e5136

31c827ec006a6c6f1b20cadc495e048a853ec78e88a4c7c1b2f7823ced510727

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Sat, 23 Sep 2023 03:29:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 23 Sep 2023 02:31:26 GMT
Expires: Sat, 30 Sep 2023 02:31:25 GMT
Etag: "2c8ee802d4431609a00bd0a419f033dcfd5e5136"
Cache-Control: max-age=600692,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80afb4ad0f7cb4ed-OSL

printingpoint.co/

162.0.229.232

200 OK

4281

URL User Request GET HTTP/2

printingpoint.co/
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (352)

Size

4281
Hash

13d98eeab7f08545df39f5d8e77a58d2

0ec8592b64e16725b7d9887541b1a65c14de52c3

87415db1109d9afaa57a01cee82ad31a5660b6adbab39f3e64335195da905443

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET / HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
x-powered-by: PHP/7.0.33
content-type: text/html; charset=UTF-8
content-length: 4281
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 03:29:52 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/bootstrap.min.css

162.0.229.232

200 OK

19089

URL GET HTTP/2

printingpoint.co/assets/css/bootstrap.min.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (65324)

Size

19089
Hash

a9dc9a40ccafc15939ed014f54f92f2c

5ea213dae04d97762b1465cf1a5392bccf80e4d0

4d5bc92645660a6749189663c6b9c1b3625d6f6207e6b2e069db3cfe1046ea77

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/bootstrap.min.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sun, 15 Dec 2019 05:25:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19089
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/owl.carousel.min.css

162.0.229.232

200 OK

789

URL GET HTTP/2

printingpoint.co/assets/css/owl.carousel.min.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (2846)

Size

789
Hash

de0dfbabe627afa1b718d848b6b58e97

73d8a692734089983b00005d99ef8e5e5b0dadeb

016ab0bd0de4839680e4a717a57db9b182a8c2c5fdeec4c24db7a8df761fca4d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/owl.carousel.min.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 08 Sep 2018 01:20:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 789
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/gijgo.css

162.0.229.232

200 OK

8700

URL GET HTTP/2

printingpoint.co/assets/css/gijgo.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with CRLF line terminators

Size

8700
Hash

d882ab48fec107ab15ad9a24cfa99d27

f4d2f2dad9e2fbb57a84d91348187969cbf814b4

06648fb45d23723bf2bcfa2321c93597963d07c594fc9a3d666e0d217ccd76b2

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/gijgo.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Tue, 14 Jan 2020 16:13:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8700
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/slicknav.css

162.0.229.232

200 OK

1282

URL GET HTTP/2

printingpoint.co/assets/css/slicknav.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

1282
Hash

74459401298110ced0a09c6543bae024

a0a0a5b67291cb64b22441bf004d20223eab7dbe

6c77ad2463a65b07ab16f6b13458b5d6480181fd01b307a1e9602dac63b25329

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/slicknav.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 18 Jan 2020 02:25:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1282
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/animate.min.css

162.0.229.232

200 OK

3780

URL GET HTTP/2

printingpoint.co/assets/css/animate.min.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (55851)

Size

3780
Hash

a06a3525da854143cc38f8df7e73d44e

fa9712d2322f5081e50643eae56c604b40444a8b

ed3871a7cdd082cbc715537d7c18b41c05c8f228a10bf7ebda096f8e182997fb

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/animate.min.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 08 Sep 2018 01:20:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3780
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/magnific-popup.css

162.0.229.232

200 OK

1660

URL GET HTTP/2

printingpoint.co/assets/css/magnific-popup.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

1660
Hash

30b593b71d7672658f89bfea0ab360c9

d6963db6faa9294387bb3175813a61bc3f859437

45d1f5f6cf913746c45dd697b1a8f3b719c02d8b3f678dc7fc2766d54e1aaf6e

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/magnific-popup.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Mon, 05 Jun 2017 11:11:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1660
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/fontawesome-all.min.css

162.0.229.232

200 OK

7317

URL GET HTTP/2

printingpoint.co/assets/css/fontawesome-all.min.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (34502)

Size

7317
Hash

bd9137572740e34967ec04a7bfed0e99

e821c999606eff3cc6f1081a8661ea83dce67ed5

4c91619ce3fbb1027b88729a8250d3c489f78802efade94e57db7eb8593b4783

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/fontawesome-all.min.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 08 Sep 2018 01:20:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7317
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/themify-icons.css

162.0.229.232

200 OK

2679

URL GET HTTP/2

printingpoint.co/assets/css/themify-icons.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

2679
Hash

8517fe559800aec67c8dba22142a0e22

dcff8291b8c20608b183e1b32af357e50768930f

dc50c9234e531dc0a85c496648772db66cc4d037ec385554305c65c99d85b526

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/themify-icons.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sun, 12 Jan 2020 18:00:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2679
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/slick.css

162.0.229.232

200 OK

483

URL GET HTTP/2

printingpoint.co/assets/css/slick.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

483
Hash

f38b2db10e01b1572732a3191d538707

a94a059b3178b4adec09e3281ace2819a30095a4

de1e399b07289f3b0a8d35142e363e128124a1185770e214e25e58030dad48e5

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/slick.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Wed, 18 Dec 2019 14:14:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 483
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/nice-select.css

162.0.229.232

200 OK

1018

URL GET HTTP/2

printingpoint.co/assets/css/nice-select.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

1018
Hash

ee5fcd5b3ea3feb711be6898b55965a1

235d164ac689f63f99712c0a7db80b1379183115

4a191e0afffffeb7610e6380fe76ff727778dc84a6ea7389a92e8f86811d1cf4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/nice-select.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Tue, 14 Jan 2020 16:06:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1018
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/style.css

162.0.229.232

200 OK

16156

URL GET HTTP/2

printingpoint.co/assets/css/style.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

16156
Hash

2661c747605d28dcaedc4b7d4140234b

57ae732dd668480ec4d73679f1e261e2a4bbba08

9c22944dd641bc32d087c1736d808f8972a85b48344a9514695e9d3c80f49438

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/style.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 01 Feb 2020 23:18:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16156
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/css/responsive.css

162.0.229.232

200 OK

170

URL GET HTTP/2

printingpoint.co/assets/css/responsive.css
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with CRLF line terminators

Size

170
Hash

5c248d86f45e38fa9e269f05fc010d33

6fa33f4edb09e0dccfe1b8ee9f15f95e503c95e3

e4793a53d144b5f1d545e01748d61e125b2c33f301e086a742ef8442b240ccaa

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/css/responsive.css HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: text/css
last-modified: Sat, 08 Sep 2018 01:20:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 170
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/logo/logo.png

162.0.229.232

200 OK

7326

URL GET HTTP/2

printingpoint.co/assets/img/logo/logo.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 347 x 80, 8-bit/color RGBA, non-interlaced\012- data

Size

7326
Hash

91698e8cdfd3b016d8cab3253cfa7539

93b9e664239642c76d406b29895e3c69651727b5

dae949bf7591ef38f0174a68abe74cdc82caabc10dc33a3a1ff7bc125d79d0d8

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/logo/logo.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Wed, 21 Oct 2020 23:09:14 GMT
accept-ranges: bytes
content-length: 7326
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/customer/customar2.png

162.0.229.232

200 OK

2143

URL GET HTTP/2

printingpoint.co/assets/img/customer/customar2.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 351 x 373, 8-bit/color RGBA, non-interlaced\012- data

Size

2143
Hash

155c0b97d799cc7ac55a0201e3eff142

414ce731cc77ed9ae15f0287f9d050b6e99a43b8

f14d2c4498cba8ca2e668151f624879406b5f3bc28bfaa33d4568a263a2792e6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/customer/customar2.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sun, 12 Jan 2020 15:44:04 GMT
accept-ranges: bytes
content-length: 2143
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

8fe5097b12ddbaa7731f5c6d445db349

b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af

3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

8fe5097b12ddbaa7731f5c6d445db349

b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af

3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2a9cb3694beef11368f7284821163a4d

32d723fad91ccd0c154e5d7e489266cfe596aa61

08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2a9cb3694beef11368f7284821163a4d

32d723fad91ccd0c154e5d7e489266cfe596aa61

08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2a9cb3694beef11368f7284821163a4d

32d723fad91ccd0c154e5d7e489266cfe596aa61

08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2a9cb3694beef11368f7284821163a4d

32d723fad91ccd0c154e5d7e489266cfe596aa61

08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

23580

URL GET HTTP/2

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP

216.58.207.227:443
ASN

#15169 GOOGLE

Requested by

https://printingpoint.co/
Certificate

IssuerGoogle Trust Services LLC

Subject*.gstatic.com

Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27

ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data

Size

23580
Hash

e1b3b5908c9cf23dfb2b9c52b9a023ab

fcd4136085f2a03481d9958cc6793a5ed98e714c

918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

                                        GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://printingpoint.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:16:10 GMT
expires: Fri, 20 Sep 2024 15:16:10 GMT
cache-control: public, max-age=31536000
age: 130424
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2

216.58.207.227

200 OK

43380

URL GET HTTP/2

fonts.gstatic.com/s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2
IP

216.58.207.227:443
ASN

#15169 GOOGLE

Requested by

https://printingpoint.co/
Certificate

IssuerGoogle Trust Services LLC

Subject*.gstatic.com

Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27

ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 43380, version 1.0\012- data

Size

43380
Hash

7b691f4e1d30003c41561b6e4264f164

2c554a5a6d7dcd6f0b975c489b0dedd6d4d95fea

9fba21cadf406469bf9bf6a18ed755edbd245f48efaaeb8a19ff6dff655aefdb

HTTP Headers

                                        GET /s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://printingpoint.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 43380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 16 Sep 2023 11:12:58 GMT
expires: Sun, 15 Sep 2024 11:12:58 GMT
cache-control: public, max-age=31536000
age: 577016
last-modified: Tue, 30 May 2023 21:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2

216.58.207.227

200 OK

43380

URL GET HTTP/2

fonts.gstatic.com/s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2
IP

216.58.207.227:443
ASN

#15169 GOOGLE

Requested by

https://printingpoint.co/
Certificate

IssuerGoogle Trust Services LLC

Subject*.gstatic.com

Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27

ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 43380, version 1.0\012- data

Size

43380
Hash

7b691f4e1d30003c41561b6e4264f164

2c554a5a6d7dcd6f0b975c489b0dedd6d4d95fea

9fba21cadf406469bf9bf6a18ed755edbd245f48efaaeb8a19ff6dff655aefdb

HTTP Headers

                                        GET /s/notoserif/v22/ga6daw1J5X9T9RW6j9bNVls-hfgvz8JcMofYTYf6D30.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://printingpoint.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 43380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 16 Sep 2023 11:12:58 GMT
expires: Sun, 15 Sep 2024 11:12:58 GMT
cache-control: public, max-age=31536000
age: 577016
last-modified: Tue, 30 May 2023 21:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.227

200 OK

23040

URL GET HTTP/2

fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP

216.58.207.227:443
ASN

#15169 GOOGLE

Requested by

https://printingpoint.co/
Certificate

IssuerGoogle Trust Services LLC

Subject*.gstatic.com

Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27

ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data

Size

23040
Hash

de69cf9e514df447d1b0bb16f49d2457

2ac78601179c3a63ba3f3f3081556b12ddcaf655

c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

                                        GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://printingpoint.co
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:25:37 GMT
expires: Fri, 20 Sep 2024 15:25:37 GMT
cache-control: public, max-age=31536000
age: 129857
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

2a9cb3694beef11368f7284821163a4d

32d723fad91ccd0c154e5d7e489266cfe596aa61

08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 03:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

printingpoint.co/assets/img/logo/logo2_footer.png

162.0.229.232

200 OK

5481

URL GET HTTP/2

printingpoint.co/assets/img/logo/logo2_footer.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 191 x 44, 8-bit/color RGBA, non-interlaced\012- data

Size

5481
Hash

ac8b05b1a511c0182b33cdca8896094e

ee1ca9a274245537aba91029208292aae0f89800

5ca7672e388adabfa670b4bae75f5831341f967e1bce2a7cfb609f3631991225

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/logo/logo2_footer.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Wed, 21 Oct 2020 23:36:52 GMT
accept-ranges: bytes
content-length: 5481
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/logo/form-iocn.jpg

162.0.229.232

200 OK

2070

URL GET HTTP/2

printingpoint.co/assets/img/logo/form-iocn.jpg
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 20x18, components 3\012- data

Size

2070
Hash

47d1e318e889bb0b436ab801350a07cd

b3544bd3e2ff593c688851b5c6c5c4fcb1981163

aba462f3f7b86fa3338795f25a890ac86641ab0d199ed1a6ab375b4746270e50

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/logo/form-iocn.jpg HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/jpeg
last-modified: Thu, 09 Jan 2020 23:49:04 GMT
accept-ranges: bytes
content-length: 2070
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/vendor/modernizr-3.5.0.min.js

162.0.229.232

200 OK

3395

URL GET HTTP/2

printingpoint.co/assets/js/vendor/modernizr-3.5.0.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (8320)

Size

3395
Hash

d7c97fdd45a562ace6cffddc9437a779

eb6a5e550ab67f95986363a87da875212ba2f139

525ba420f42f72699e059e5c20dd3acd591da3d54d70a319b0e360369482dde8

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/vendor/modernizr-3.5.0.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Sat, 08 Sep 2018 01:23:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3395
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/popper.min.js

162.0.229.232

200 OK

6644

URL GET HTTP/2

printingpoint.co/assets/js/popper.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (19015)

Size

6644
Hash

70d3fda195602fe8b75e0097eed74dde

c3b977aa4b8dfb69d651e07015031d385ded964b

a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/popper.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Thu, 18 Jan 2018 21:29:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6644
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/bootstrap.min.js

162.0.229.232

200 OK

12542

URL GET HTTP/2

printingpoint.co/assets/js/bootstrap.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (48664)

Size

12542
Hash

14d449eb8876fa55e1ef3c2cc52b0c17

a9545831803b1359cfeed47e3b4d6bae68e40e99

e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/bootstrap.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Thu, 18 Jan 2018 19:33:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12542
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.slicknav.min.js

162.0.229.232

200 OK

2496

URL GET HTTP/2

printingpoint.co/assets/js/jquery.slicknav.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (8320)

Size

2496
Hash

abb6ece52a5d3b908359c3dfa21d08a2

cdd58421d34de7c63034acb2726a678c55a546f5

190402f488a1616b47304ae066078580059ca6a5958b7f217d2156d0a73931a9

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.slicknav.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Tue, 21 May 2019 01:19:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2496
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/owl.carousel.min.js

162.0.229.232

200 OK

10649

URL GET HTTP/2

printingpoint.co/assets/js/owl.carousel.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (32000)

Size

10649
Hash

b7b9c97cd68ec336d01a79d5be48c58d

1a99890b57c9859a622337ed0b2f989d6e30cc0e

b394d33b2a7ec654a6b037ebfda6618341b3f897a362be624c923c2711b54a43

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/owl.carousel.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Wed, 01 Mar 2017 14:43:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10649
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/slick.min.js

162.0.229.232

200 OK

10097

URL GET HTTP/2

printingpoint.co/assets/js/slick.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (42862)

Size

10097
Hash

d5a61c749e44e47159af8a6579dda121

3b41b3bc956685015a347a2238e71db29dfa0dbb

0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/slick.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Tue, 12 Sep 2017 14:08:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10097
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/wow.min.js

162.0.229.232

200 OK

2572

URL GET HTTP/2

printingpoint.co/assets/js/wow.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (8385)

Size

2572
Hash

36050285bfeeb7395752f0f9bbc08273

5924f7bbbf1dfa3f0926851d01f782f23a59e805

0ec632e6ab02d4fdd514da7f5edc74aa28c9d4c71af76f1c8b93a1fba85bcc69

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/wow.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Wed, 24 Jan 2018 16:35:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2572
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/animated.headline.js

162.0.229.232

200 OK

1397

URL GET HTTP/2

printingpoint.co/assets/js/animated.headline.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

1397
Hash

497ebc8ef71e0997ba5fda09be7ef211

77855aa2dfb40817b07d80d2f3e121afcdc8f427

d20866ac54b17d2205264f37b531fbb71b6a6425d124f551bd4c97a949dd43bf

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/animated.headline.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Fri, 02 Jan 2015 08:39:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1397
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.magnific-popup.js

162.0.229.232

200 OK

7043

URL GET HTTP/2

printingpoint.co/assets/js/jquery.magnific-popup.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (20087)

Size

7043
Hash

ba6cf724c8bb1cf5b084e79ff230626e

f455c5f153f872e52265f87a644ff89fe14a6fb6

3fddc6d28aba3c13d64cfd4847c333ff48c71d4a5a58bd1a0494ca6ae8ac1bb4

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.magnific-popup.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Wed, 10 Apr 2019 22:29:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.scrollUp.min.js

162.0.229.232

200 OK

853

URL GET HTTP/2

printingpoint.co/assets/js/jquery.scrollUp.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Unicode text, UTF-8 text, with very long lines (1872)

Size

853
Hash

63bbf26c1fd78c531513dd6a4a2e4f51

f349a84e4c1bf94aa3278bc578043b52a9ce33a2

b7662ba99a132eafd0b7ccc8c3404c8ae442d97e7e6b73bb3ce0d4f11c28c98c

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.scrollUp.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 30 Mar 2015 10:50:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 853
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.nice-select.min.js

162.0.229.232

200 OK

930

URL GET HTTP/2

printingpoint.co/assets/js/jquery.nice-select.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Unicode text, UTF-8 text, with very long lines (2822)

Size

930
Hash

d13462ec489f9f0c309a811f85feb3d6

d9545f8b139eae5b387de1a60a84abe949c7e88f

66bdef0724e5306421bcc7e0910e41b5645228119ad9096ca4a6099e48d94e6a

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.nice-select.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 09 May 2016 01:32:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 930
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.sticky.js

162.0.229.232

200 OK

2421

URL GET HTTP/2

printingpoint.co/assets/js/jquery.sticky.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

2421
Hash

24823208c60bfc2a92deaa50cbdc6c29

f2a855219e71fc4224376732b7c64e34670d855d

bcf6b9b28cec8958f9d3f3ee39070e85ffd46d670f1f0baa7cd21aa24c188a00

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.sticky.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Thu, 06 Apr 2017 11:22:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2421
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/contact.js

162.0.229.232

200 OK

660

URL GET HTTP/2

printingpoint.co/assets/js/contact.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with CRLF line terminators

Size

660
Hash

7c0620c689e8bfea79d4fd06eac0b9d1

91ba00c0f91a387aa03f6fd178a9a2b4584b6b81

30f4afce6fd298cc840c98c170e74c218f9fc1985bec37d0c00b5056f3b3ff2f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/contact.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2017 17:54:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 660
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.form.js

162.0.229.232

200 OK

11217

URL GET HTTP/2

printingpoint.co/assets/js/jquery.form.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

11217
Hash

9ff23d156a15ac9eba83b6f571abd83f

63b1ceaea04590b9611d3ef6dbb588b365be4559

14b30a934e36cdfc5301709bf515adc31e060bd7275eb056964cf7d2ed6e7550

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.form.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Sun, 08 Feb 2015 06:39:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11217
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.validate.min.js

162.0.229.232

200 OK

6108

URL GET HTTP/2

printingpoint.co/assets/js/jquery.validate.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Unicode text, UTF-8 text, with very long lines (20965)

Size

6108
Hash

15d67ada60f2b7a862e0fdcd1baddf72

9389012cc388a5177f0bce53fd474d16768344d0

7705fee13417229d718f14947e9860d5bb2b25bd15c9f5cd834f2545c7bad0a6

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Sun, 08 Feb 2015 06:40:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6108
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/mail-script.js

162.0.229.232

200 OK

418

URL GET HTTP/2

printingpoint.co/assets/js/mail-script.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

418
Hash

df98b7098690619c0c9e6b42b5a77b48

d3fe896ed8d259df077220f71fba197ff033d27e

01f639fd4c4119503e72e2bf2eb9c8a5984f7c83c7683c82dd0350ee9f63b3fd

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/mail-script.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 30 Apr 2018 04:54:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 418
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/jquery.ajaxchimp.min.js

162.0.229.232

200 OK

1087

URL GET HTTP/2

printingpoint.co/assets/js/jquery.ajaxchimp.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

1087
Hash

8eace32bdc314e746f5b01015115b3a8

90395aa2ff153cfb6d5c256a3f70bc4d545a3190

3c7c17459ec57867f6812625f1b95e2f878363ca728b92a5968d2fc8e60d9712

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/jquery.ajaxchimp.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 30 Apr 2018 04:54:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1087
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/plugins.js

162.0.229.232

200 OK

333

URL GET HTTP/2

printingpoint.co/assets/js/plugins.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text

Size

333
Hash

074c4c08f0730c4d4ca76f724355807c

09d6a93af6b87a67c5773163d35f40b993fca3d3

c6129bd3aeb079f5c310d2a9618478ba0d621992c1a5e5ef320917937dc2dbb7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/plugins.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 11 Sep 2017 16:48:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 333
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/main.js

162.0.229.232

200 OK

1718

URL GET HTTP/2

printingpoint.co/assets/js/main.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with CRLF line terminators

Size

1718
Hash

e47a3fdda4dc56985dbc682c5f4fd694

d6b2d149774c15dd43fe9bde6f60e545346a4631

75bfd8459e6803162d5ee1409892535a7f01282be7223235b2a7561cb9d17498

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/main.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Mon, 20 Jan 2020 18:50:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1718
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/vendor/jquery-1.12.4.min.js

162.0.229.232

200 OK

32851

URL GET HTTP/2

printingpoint.co/assets/js/vendor/jquery-1.12.4.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (32077)

Size

32851
Hash

4f252523d4af0b478c810c2547a63e19

5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb

668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/vendor/jquery-1.12.4.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Sat, 08 Sep 2018 01:23:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32851
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/js/gijgo.min.js

162.0.229.232

200 OK

36170

URL GET HTTP/2

printingpoint.co/assets/js/gijgo.min.js
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Unicode text, UTF-8 text, with very long lines (65531), with no line terminators

Size

36170
Hash

261c5b91fdec568ff41e3e6dbb95a397

537acdc868f5b364f589e630d46f6030349fb406

619854bbaf5b0a7f6e4ea4322b0c10dc6c91ca94bb79ac69ff09954b6f36b032

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/js/gijgo.min.js HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: application/javascript
last-modified: Wed, 13 Mar 2019 13:49:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36170
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room6.png

162.0.229.232

200 OK

154961

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room6.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

154961
Hash

089f2392478f33f42aac249d809e907a

d72270853f846aa73e0c4b0bed6bd992a1872e32

3b34b21c8bd2d4eb80f5a92fcc7b4f38185d2a1adc2f66e288e4c84f627be06f

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room6.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:30:46 GMT
accept-ranges: bytes
content-length: 154961
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/fonts/themify.woff?-fvbane

162.0.229.232

200 OK

56108

URL GET HTTP/2

printingpoint.co/assets/fonts/themify.woff?-fvbane
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Web Open Font Format, CFF, length 56108, version 1.0\012- data

Size

56108
Hash

a1ecc3b826d01251edddf29c3e4e1e97

9394f35bd2addd24666b79bfc36d4f9d247cb01d

0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/fonts/themify.woff?-fvbane HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/assets/css/themify-icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:54 GMT
content-type: font/woff
last-modified: Sat, 24 May 2014 01:31:42 GMT
accept-ranges: bytes
content-length: 56108
date: Sat, 23 Sep 2023 03:29:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/fonts/fa-brands-400.woff2

162.0.229.232

200 OK

54420

URL GET HTTP/2

printingpoint.co/assets/fonts/fa-brands-400.woff2
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 54420, version 1.0\012- data

Size

54420
Hash

c971847be1cd6c17abca74025b4f36ae

b2da189d7224a73a5b7d0e4d14a296c5515c1c0a

155963e3fb06f13011705c65bc52ed31f9989b87309c945948a76b35f8e7da67

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/fonts/fa-brands-400.woff2 HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/assets/css/fontawesome-all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:54 GMT
content-type: font/woff2
last-modified: Sat, 08 Sep 2018 01:20:34 GMT
accept-ranges: bytes
content-length: 54420
date: Sat, 23 Sep 2023 03:29:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/fonts/fa-solid-900.woff2

162.0.229.232

200 OK

38784

URL GET HTTP/2

printingpoint.co/assets/fonts/fa-solid-900.woff2
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

Web Open Font Format (Version 2), TrueType, length 38784, version 1.0\012- data

Size

38784
Hash

f9b85c9463af7103b9b24bbbf09a06ed

d28d7222bcbeb8ea701a771e85f7efe006e62fb1

62554277d07b20c6bfae7c6267b3198b4846f604a37d4085bf9f54c392210b56

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/assets/css/fontawesome-all.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:54 GMT
content-type: font/woff2
last-modified: Sat, 08 Sep 2018 01:20:36 GMT
accept-ranges: bytes
content-length: 38784
date: Sat, 23 Sep 2023 03:29:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/dining/dining-img.png

162.0.229.232

200 OK

128377

URL GET HTTP/2

printingpoint.co/assets/img/dining/dining-img.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 268 x 230, 8-bit/color RGBA, non-interlaced\012- data

Size

128377
Hash

898b4ff4d9ecc8041520cf8795e4615f

b820d798036e8991722b4008d4ac7337a8c81953

5a2f9a6f61b56b2997624539d402d70d24abb7b3607e279efec7cc0852fda02b

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/dining/dining-img.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/assets/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:54 GMT
content-type: image/png
last-modified: Sun, 03 Oct 2021 20:52:34 GMT
accept-ranges: bytes
content-length: 128377
date: Sat, 23 Sep 2023 03:29:54 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room10.png

162.0.229.232

200 OK

227669

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room10.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

227669
Hash

75488991e9b869e64bb6a6f6d5c33721

81a9dfdeb3a67d99274f50a4677d52bcafd25020

dd7be1b9376dcfc93fd506c0cf405d2cf351a4a5f04b4eb34a9dce88f044497d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room10.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:32:08 GMT
accept-ranges: bytes
content-length: 227669
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato:300,400,700,900|Noto+Serif:400,400i,700&display=swap

142.250.74.106

200 OK

140044

URL GET HTTP/2

fonts.googleapis.com/css?family=Lato:300,400,700,900|Noto+Serif:400,400i,700&display=swap
IP

142.250.74.106:443
ASN

#15169 GOOGLE

Requested by

https://printingpoint.co/
Certificate

IssuerGoogle Trust Services LLC

Subjectupload.video.google.com

FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49

ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

Magic

gzip compressed data, max compression\012- data

Size

140044
Hash

52b5492ac3f1d81792c245798e6f14a8

ac074d487da4e302e4466c1a18bd1ec72814db35

2095c4f5f92ae3df985c12811aa09d5043a8b44ef1c601375bd01afb2a120344

HTTP Headers

                                        GET /css?family=Lato:300,400,700,900|Noto+Serif:400,400i,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 03:29:54 GMT
date: Sat, 23 Sep 2023 03:29:54 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room9.png

162.0.229.232

200 OK

242627

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room9.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

242627
Hash

f5ca5a9f4d1e46915b16c30d40f7434b

e42ca0eeb67025f2d78eb486e3d4ca74b6a10f48

92ba6d1b39010f845695f2f49554abe34c1bbc0c175d8c5af8a515c27f0b7060

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room9.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:32:02 GMT
accept-ranges: bytes
content-length: 242627
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/customer/customar1.png

162.0.229.232

200 OK

290614

URL GET HTTP/2

printingpoint.co/assets/img/customer/customar1.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 718 x 527, 8-bit/color RGBA, non-interlaced\012- data

Size

290614
Hash

ab2d43ca77891fbaf1dd347030f73ddf

cdb751772d9801ed796dd4697273cfd887c8a4b9

8f6d9673bd610c99b5aaa2916dc1276d9e6cd65d561d9264dd5502850658a083

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/customer/customar1.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sun, 03 Oct 2021 20:55:52 GMT
accept-ranges: bytes
content-length: 290614
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room17.png

162.0.229.232

200 OK

307750

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room17.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

307750
Hash

65b129a0a1b19fae00961e426b3b6bfb

bdc604e804151354ba4510cb149d4b587d889d8f

8af87011d0079837ffeaf70929500c0050dc9138cc9028465b54bd1e31610343

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room17.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:33:16 GMT
accept-ranges: bytes
content-length: 307750
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room12.png

162.0.229.232

200 OK

358844

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room12.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

358844
Hash

ed961509d4ff71613a9596fd8ac4b1a2

d40f796ca762fd346449c3c349da0e9fa288715a

6c4e567f64412a507cf554debbdd8b047c12bd5ec38e19cddd124085bb882903

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room12.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:32:28 GMT
accept-ranges: bytes
content-length: 358844
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room13.png

162.0.229.232

200 OK

321070

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room13.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

321070
Hash

23f358d001d704285ffbd2bc2fb1571d

e2f72eb57f9a5b8d5f258b7cc8c68ac077f40619

20831c68e2f484d282cce901fc7c852a2b4f5f9ea7cc77c1d81d3a14f206f7cc

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room13.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:32:40 GMT
accept-ranges: bytes
content-length: 321070
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room19.png

162.0.229.232

200 OK

316116

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room19.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

316116
Hash

5e8bb41b7caff7dc7f8e721c26c1191f

311e28dff812394d341824b7edd1ad10efff22fc

32ec43f015be66b76c9a35a7cf4a26b7b8306c3974b1573a580043749178640d

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room19.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:33:36 GMT
accept-ranges: bytes
content-length: 316116
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room4.png

162.0.229.232

200 OK

365689

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room4.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Magic

PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data

Size

365689
Hash

0143fed97f0c5c45aadd7d7d786425d3

f90d279249d7327b6167eb58e3fc54368e6b8a6f

8bdd58ae9ec9875ed9aa71e155af50efa24e007cae91e324a85a2b3e65af3635

Detections

Analyzer	Verdict	Alert
mnemonic secure dns	malicious	Sinkholed

HTTP Headers

                                        GET /assets/img/rooms/room4.png HTTP/1.1
Host: printingpoint.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://printingpoint.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 30 Sep 2023 03:29:53 GMT
content-type: image/png
last-modified: Sat, 20 Aug 2022 16:30:20 GMT
accept-ranges: bytes
content-length: 365689
date: Sat, 23 Sep 2023 03:29:53 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

printingpoint.co/assets/img/rooms/room3.png

162.0.229.232

200 OK

416277

URL GET HTTP/2

printingpoint.co/assets/img/rooms/room3.png
IP

162.0.229.232:443
ASN

#22612 NAMECHEAP-NET

Requested by

https://printingpoint.co/
Certificate

IssuerSectigo Limited

Subjectprintingpoint.co

FingerprintFB:45:F6:B3:E3:74:98:38:9D:D6:DA:99:49:F6:3B:56:E8:97:1A:4D

ValidityWed, 28 Sep 2022 00:00:00 GMT - Fri, 29 Sep 2023 23:59:59 GMT

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

#1 JS:Script (size: 41)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#2 JS:Script (size: 177487)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#3 JS:Script (size: 1230)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#4 JS:Script (size: 4820)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#5 JS:Script (size: 8415)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#6 JS:Script (size: 10085)

URL

IP

ASN

Introduced by

Inline HTML

Observations

Hash

#7 JS:Script (size: 3108)

URL

IP

ASN

Introduced by